Cybersecurity Incident Response Analyst

This position is a hybrid work schedule/location with optional remote work when no onsite activities are required.

Responsibilities:

• Perform Cyber Intrusion investigations; identify attack vectors and mitigation tactics
• Evaluate, architect, implement, and support intrusion detection stack, forensic and malware analysis tools
• Serve as a member of an incident response and digital forensic team
• Develop and maintain incident response plans
• Collaborate with technical teams to identify, resolve, and mitigate cyber threats
• Perform Live box and Dead box forensic analysis using EnCase or other tools
• Perform mobile device forensic analysis using Cellebrite or other tools
• Coordinate and interface with senior level officials in a detailed and professional manner

Skills and Qualifications Required:

• Bachelor's degree in Computer Science, Cyber Security or relevant discipline from an accredited institution
• Possess an active TS/SCI or DOE Q clearance.
• Competence in computer security, digital forensics, memory analysis and computer networking
• Experience in mobile device forensics
• Experience in malware reverse engineering.
• Demonstrated ability to differentiate between a significant event, a true positive, and a false positive.
• Experience with open-source technologies and environments
• Experience with the following: EnCase, FTK, SIFT or other Forensic tools.
• Experience with Cellebrite mobile forensics

Desired Background, some of the following:

• Certifications desired or similar:
  • GCFE (Certified Forensic Examiner)
  • SANS Digital Forensic Incident Response
  • GCIH (Certified Incident Handler)
  • GCIA (Certified Intrusion Analyst)
  • CEH (Certified Ethical Hacker)
  • GREM (SANS Reverse Engineering Malware)
  • CREA (Certified Reverse Engineer Analyst)
  • CISSP (Certified Information Systems Security Professional)
  • CCO (Cellebrite Certified Operator)
  • CCPA (Cellebrite Certified Physical Analyst)