Apply on Employer Site

USAJOBS · 2 months ago

Information Technology Specialist (Security)

Washington, District of Columbia, USA

Full-time

Onsite

Entry Level

$101K/yr - $190K/yr

1+ years exp

USAJOBS is seeking an Information Technology Specialist (Security) to join the Administrative Office of the U.S. Courts, Department of Technology Services. This role involves managing the Judiciary's IT Security program, overseeing cyber security operations, digital forensics, and conducting forensic investigations to support law enforcement operations.

ConsultingGovernmentHuman ResourcesInformation TechnologyInternetStaffing Agency

No H1B

U.S. Citizen Only

Responsibilities

Participating in the development and execution of security incident response plans

Performing network forensics from log files and packet captures, including obtaining data from affected parties, accurately reconstructing incident timelines, and conducting analysis to understand attack vectors and associated impacts

Conducting endpoint forensics, including volatile memory, Operating System , file system, user behavioral, and data integrity analyses

Performing malware analysis to disassemble and reverse-engineer potential malware, scripts, and code to identify and create compromise indicators to more effectively detect and prevent intrusion

Participating in activities to detect, investigate, and analyze lateral movement, threat persistence, and follow-on activities by threat actors

Providing technical direction to contractors and other SOC teams to steer the overall incident response plan and recovery actions

Maintaining a digital forensic laboratory including, updating hardware and software tools and performing tool evaluation

Identifying, testing, and providing recommendations for adopting and upgrading SOC forensic capabilities and infrastructure to provide the most effective, efficient, and cost-effective service available to the Judiciary

Documenting the findings of digital investigations, detailing evidence analysis, methodologies, and conclusions in clear, concise, and legally sound reports. This role requires attention to detail, strong writing skills, and the ability to communicate complex technical information effectively

Following all federal and local guidelines for digital evidence collection, processing, and retention in accordance with chain of custody requirements

Qualification

Forensic analysisMalware analysisDigital evidence collectionEnCaseFTKAxiomTechnical writingAttention to detailCommunication skills

Required

Applicants must have demonstrated experience as listed below

Specialized Experience: Applicants must have at least one full year (52 weeks) of specialized experience which is in or directly related to the line of work of this position

Specialized experience is demonstrated experience must demonstrate ALL areas defined below:

Expertise in conducting forensic analysis of digital devices, including computers, mobile phones, and cloud environments, using industry-standard tools like EnCase, FTK, and Axiom

In-depth knowledge of data recovery techniques, file system structures, and operating system internals, enabling the extraction and analysis of deleted, hidden, or encrypted data

Experience in preparing detailed forensic reports and providing expert testimony in legal settings, ensuring findings are presented clearly and comply with legal standards and procedures