- Must be a US Citizen
- Must have an active Secret clearance with the ability to obtain a TS/SCI clearance
- Must be able to obtain Client Entry on Duty (EOD) Suitability prior to starting
- Must have 8+ years of directly relevant experience in cyber forensic investigations using leading-edge technologies and industry-standard forensic tools
- Perform event correlation using information gathered from a variety of sources within the enterprise to gain situational awareness and determine the effectiveness of an observed attack
- Assesses network topology and device configurations identifying critical security concerns and providing security best practice recommendations
- Collects network intrusion artifacts (e.g., PCAP, domains, URI's, certificates, etc.) and uses discovered data to enable mitigation of potential incidents
- Collects network device integrity data and analyze for signs of tampering or compromise
- Analyzes identified malicious network and system log activity to determine weaknesses exploited, exploitation methods, effects on system and information
- Tracking and documenting on-site incident response activities and providing updates to leadership through executive summaries and in-depth technical reports
- Planning, coordinating, and directing the inventory, examination, and comprehensive technical analysis of computer related evidence
- Serving as technical forensics liaison to stakeholders and explaining investigation details
- Experience with reconstructing a malicious attack or activity
- Ability to characterize and analyze network traffic, identify anomalous activity / potential threats, analyze anomalies in network traffic using metadata
- Ability to create forensically sound duplicates of evidence (forensic images)
- Able to write cyber investigative reports documenting forensics findings
- In depth knowledge and experience of:
- identifying different classes and characterization of attacks and attack stages
- CND policies, procedures and regulations
- proactive analysis of systems and networks, to include creating trust levels of critical resources
- system and application security threats and vulnerabilities
- of network topologies, Wi-Fi Networking, and TCP/IP protocols
- Splunk (or other SIEMs)
- Vulnerability scanning, assessment and monitoring tools such as Security Center, Nessus, and Endgame
- MITRE Adversary Tactics, Techniques and Common Knowledge (Telecommunication&CK)
- Must be able to work collaboratively across physical locations.
- Experience and proficiency with the following tools and techniques: EnCase, FTK, SIFT, X-Ways, Volatility, WireShark, Sleuth Kit/Autopsy, and Snort
- EDR Tools: Crowdstrike, Carbon Black, Etc
- Carving and extracting information from PCAP data
- Non-traditional network traffic: Command and Control
• Preserving evidence integrity according to national standards
• Designing cyber security systems and environments in a Linux environment
• Virtualized environments
• Conducting all-source research -
Mobile Forensic Analyst
2 weeks ago
Peraton Arlington, United States Full timeResponsibilities · Peraton is looking for a Mobile Forensic Analyst in support of the Cyber Threat Analysis Division mission. · Location: Arlington, VA; Hybrid work schedule possible; 3 days per week on-site required after onboarding process is complete. · The Cyber Threat Analy ...
-
External Forensic Analyst
2 weeks ago
Peraton Arlington, United StatesPeraton is looking for a Mobile Forensic Analyst in support of the Cyber Threat Analysis Division mission. Location: Arlington, VA; Hybrid work schedule possible; 3 days per week on-site required after onboarding process is complete. The Cyber Threat Forensic, Mobile, Analyst, Ex ...
-
Forensic Analyst
4 weeks ago
Taleo BE Bethesda, United StatesWe have an exciting opportunity for a Forensic Analyst to support our customer's mission in Bethesda, MD. The Analyst will administer CI and Insider Threat programs across network system/software information technology and telecommunications system. The Analyst will assist in the ...
-
Network Forensics Cybersecurity Analyst
2 weeks ago
Nodel Arlington, United StatesJob Description · Job DescriptionNetwork Forensics Cybersecurity Analyst / Network Based Systems Analyst · Location: Arlington, VA · Must have Top Secret Security Clearance · Node provides support for on and offsite incident response to Government agencies and critical infrastruc ...
-
Network Forensic Analyst III
2 weeks ago
Ampcus Incorporated Arlington, United StatesNetwork Forensic Analyst · Multi Year Salaried Contract · 2-3 Weeks of Training in Arlington, VA · Consultants living within 50 miles of Arlington, VA will need to be onsite 1 time per week · Hybrid (2-3) days onsite for consultants living closer than 50 miles to Arlington, VA ...
-
Mobile Forensic Analyst
2 weeks ago
Peraton Arlington, United StatesResponsibilities: · Peraton is looking for a Mobile Forensic Analyst in support of the Cyber Threat Analysis Division mission. · Location: Arlington, VA; Hybrid work schedule possible; 3 days per week on-site required after onboarding process is complete. · The Cyber Threat An ...
-
Senior Forensics/Malware Analyst
3 weeks ago
Peraton Washington, United States Full timeResponsibilities · Responsibilities include, but are not limited to: · • Leads and participates in the evaluation and analysis of complex malicious code through the utilization of tools, including dissemblers, debuggers, hex editors, un-packers, virtual machines, and network snif ...
-
Cybersecurity Host Based Forensics Analyst
5 hours ago
Solutions3 Arlington, United StatesTitle: Cybersecurity Host-Based Forensics Analyst (L4) · Description: · Solutions LLC is supporting our prime contractor and their U.S. Government customer's Hunt and Incident Response Team (HIRT) to assist in securing the Nation's cyber and communications infrastructure. The H ...
-
Cybersecurity Host Based Forensics Analyst
3 weeks ago
Solutions3 Arlington, United StatesTitle: Cybersecurity Host-Based Forensics Analyst (L4) · Description: · Solutions3 LLC is supporting our prime contractor and their U.S. Government customer's Hunt and Incident Response Team (HIRT) to assist in securing the Nation's cyber and communications infrastructure. The ...
-
Cybersecurity Host Based Forensics Analyst
3 weeks ago
Solutions³ LLC Arlington, United StatesJob Description · Job DescriptionTitle: Cybersecurity Host-Based Forensics Analyst (L4) · Description: · Solutions3 LLC is supporting our prime contractor and their U.S. Government customer's Hunt and Incident Response Team (HIRT) to assist in securing the Nation's cyber and comm ...
-
Digital Forensic Senior Analyst
2 weeks ago
Contact Discovery Services LLC Washington, United StatesJob Description · Job Description · Digital Forensic Senior Analyst · Contact Discovery Services - Washington, DC · Location: Washington, DC · Start Date: Negotiable · A leading eDiscovery technology and consulting firm headquartered in Washington, DC is looking for a qualified ...
-
Mobile Forensic Analyst
2 weeks ago
Peraton Rosslyn, United States**About Peraton** · **Responsibilities** · Peraton is looking for a **Mobile Forensic Analyst** in support of the Cyber Threat Analysis Division mission. · **Location: Arlington, VA; Hybrid work schedule possible; **3 days per week on-site required after onboarding process is com ...
-
Cyber Network Forensic Analyst II
16 hours ago
Nightwing Arlington, United StatesDate Posted: · Country: · United States of America · Location: · VA149: 1110 N Glebe Road Arlington 1110 North Glebe Road Suite 630, Arlington, VA, 22201 USA · Position Role Type: · Hybrid · You have been redirected to RTXs career page as we have recently transitioned from ...
-
Digital Forensic Analyst
2 weeks ago
Vexterra Group Bethesda, United StatesJob Description · Job DescriptionVexterra Group is searching for a Digital Forensic Analysts to provide the following support: · Conduct forensic examination of High Priority Digital Media to include: · Full-Scope forensic examinations · Advanced registry and Internet history ana ...
-
Nodel Arlington, United StatesJob Description · Job DescriptionHost Forensics Analysts/Host Based Systems Analyst · Location: Arlington, VA · Must have Top Secret Security Clearance · Node provides remote and onsite advanced technical assistance, proactive hunting, rapid onsite incident response, and immediat ...
-
Digital Forensic Incident Response Analyst
3 weeks ago
Booz Allen Hamilton Washington, United States Full timeJob Number: R0186940 · Digital Forensic Incident Response AnalystKey Role: · Collect, analyze, and present digital evidence in support of computer investigations. Apply basic principles, theories, and concepts and limited industry knowledge. Solve routine problems of limited scop ...
-
Senior Digital Forensic Analyst
4 weeks ago
Peraton Arlington, United StatesSenior Digital Forensic Analyst (Team Leader) · Peraton · Peraton drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world's leading mission capability integrator and transformative enterprise IT provider, we deliver tr ...
-
Network Forensic Analyst III
2 weeks ago
iTech Solutions Arlington, United StatesNetwork Forensic Analyst · Multi Year Salaried Contract · 2-3 Weeks of Training in Arlington, VA · Consultants living within 50 miles of Arlington, VA will need to be onsite 1 time per week · Hybrid (2-3) days onsite for consultants living closer than 50 miles to Arlington, VA ...
-
Network Forensic Analyst III
1 week ago
Ampcus Incorporated Arlington, United StatesNetwork Forensic Analyst · Multi Year Salaried Contract · 2-3 Weeks of Training in Arlington, VA · Consultants living within 50 miles of Arlington, VA will need to be onsite 1 time per week · Hybrid (2-3) days onsite for consultants living closer than 50 miles to Arlington, VA ...
-
Forensics Analyst
3 weeks ago
Insight Global Quantico, United States50-66hr · Must-haves · -Active Secret clearance (TS/SCI preferred) · -IAT III certification · -CSSP IR certification (or ability to obtain within 6 months of hire) · -Knowledge of chain of custody and the uniqueness of digital evidence. · -Demonstrated skill in performing p ...
Cybersecurity Forensics Analyst - Arlington, United States - Nine Mind Solutions
Description
We are seeking Cybersecurity Forensics Analysts to support this critical customer mission.
Eligibility:
Desired Certifications: GCFA, GCFE, EnCE, CCE, CFCE, CEH, CCNA, CCSP, CCIE, OSCP, GNF