Forensic and Incident Response Engineer jobs in United States
cer-icon
Apply on Employer Site
company-logo

Peraton · 4 hours ago

Forensic and Incident Response Engineer

positionUnited States
timeFull-time
remoteRemote
senioritySenior Level
money$80K/yr - $128K/yr
date5+ years exp

Peraton is a next-generation national security company that drives missions of consequence spanning the globe. They are seeking a Forensic and Incident Response Engineer to lead technical incident response activities, conduct digital forensic analysis, and support root-cause analysis while ensuring compliance with cybersecurity regulations.

Information TechnologyRobotics
badNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

Lead technical response to security incidents, including containment, eradication, and recovery
Perform digital forensic analysis on endpoints, servers, applications, network traffic, and cloud environments using forensically sound procedures to identify network / computer intrusion evidence and identifies perpetrators
Examine any electronic device that may hold evidence that could be used in a court of law and
Gather, handle and store evidence
Perform a variety of forensic and electronic discovery services, including digital evidence preservation, forensic analysis, data recovery, tape recovery, electronic mail extraction, and database examination
Collect, preserve, and analyze evidence in accordance with forensic best practices and legal requirements observing proper evidence custody and control procedures, document procedure and findings in a manner suitable for courtroom presentation and prepare comprehensive written notes and reports
Investigate malware, intrusions, unauthorized access, and data infiltration and exfiltration events
Analyze logs, memory, disk images, and network captures to determine attack scope and impact
Develop timelines, root-cause analysis, and incident reports for both technical and executive audiences
Support threat hunting and detection engineering efforts using forensic findings
Collaborate with the CSOC, engineering, legal, and compliance teams during incidents
Participate in on-call or surge incident response rotations
Assist with development and maintenance of incident response playbooks and procedures
Support security tooling evaluations and forensic lab improvements
Participate in tabletop exercises and readiness testing
Contribute to security awareness or training efforts using incident lessons learned
Maintain forensic documentation, case notes, and evidence records

Qualification

Digital ForensicsIncident ResponseCybersecurityForensic Tools ProficiencyTCP/UDP AnalysisIncident Investigation LeadershipMalware Reverse EngineeringCybersecurity Standards KnowledgeAnalytical SkillsDiscretionMITRE ATT&CK FamiliarityProblem-Solving SkillsCommunication SkillsIntegrity

Required

U.S. Citizenship Required
Must have the ability to obtain / maintain a DOE L Level or DOE Secret clearance
Degree in computer science, engineering, cybersecurity, information technology, digital forensics, homeland security, or related field
5 years of experience with BS/BA; 3 years with MS/MA
Experience in cybersecurity, incident response, or digital forensics
Strong analytical and problem-solving skills
Ability to explain complex findings to non-technical stakeholders
High integrity and discretion, with strict adherence to evidence handling and chain of custody requirements
Proficiency with industry-standard forensic and Incident Response tools
Proficiency of TCP/UDP packet capture and analysis
Strong experience in incident response methodologies and lifecycle management
Hands-on digital forensics experience across a variety of industry-standard operating systems
Ability to work effectively during high-stress incidents
Understanding of industry cybersecurity standards such as FISMA, NIST 800 series, ISO 27001 and regulatory compliance requirements
Familiarity with MITRE ATT&CK framework

Preferred

Hold technical and/or cybersecurity certification such as GIAC GSEC, GIAC GCIH, CISA SSCP, CompTIA Security+
A master's degree in computer science, engineering, cybersecurity, information technology, or related field
Demonstrated experience leading or owning incident investigations
Hands-on experience reverse-engineering malware

Benefits

Depending on the position, employees may be eligible for overtime, shift differential, and a discretionary bonus in addition to base pay.

Company

Peraton

twittertwitter
Glassdoor3.6
company-logo
Peraton Fearlessly solving the toughest national security challenges.
dateFounded in 1992
location
Woodbridge, New Jersey, USA
people-size10001+ employees
web-link
https://www.peraton.com/

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Thomas Terjesen
Chief Information Officer
linkedin

Recent News

MarketScreener
Two bidders vie to be project manager of massive FAA US air traffic overhaul
2025-09-25
Benzinga.com
Snowflake Partners With Peraton, Builds AI Fraud Detection Tools To Protect Taxpayer Dollars
2025-09-17
NDTV
Donald Trump's Golden Dome Still Shrouded In Mystery, Even For Its Builders
2025-08-15
Company data provided by crunchbase