Be an early applicantLess than 25 applicants

Company

Original Job Post

Leidos · 2 days ago

Cyber Forensics Analyst

Ashburn, VA

Full-time

Hybrid

Mid Level

$81K/yr - $147K/yr

4+ years exp

Wonder how qualified you are to the job?

Maximize your interview chances

ComputerGovernment

Actively Hiring

Insider Connection @Leidos

Discover valuable connections within the company who might provide insights and potential referrals, giving your job application an inside edge.

Responsibilities

Provide support to CBP OIT’s Cyber Defense Forensics (CDF) team in support of insider threat and security operations according to established policies, handbooks, and CBP CDF Standard Operating Procedures (SOPs).

Conduct formal digital forensic investigations and document findings in formal, forensically sound investigation reports. Perform Email hygiene activities in support of CBP investigations.

Recognize attacker and APT activity, tactics, and procedures as indicators of compromise (IOCs) that can be used to improve monitoring, analysis, and incident response.

Develop and maintain Standard Operating Procedures (SOPs) and playbooks as deemed necessary.

Install, secure, maintain and recommend forensic software and hardware within a Forensic Lab environment while following established configuration management processes.

Develop and build security content, scripts, tools, or methods to enhance forensic processes.

Effectively investigate and identify root cause findings then communicate findings to stakeholders including technical staff, and leadership.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Forensic analysisDigital media analysisSystem & network log analysisCyber analysis reportsIncident investigationsProblem-solvingFlexibleAdaptable relationship-buildingEffective communicationAttention to detailAnalytic reasoningIndependent prioritizationComputer ForensicsPythonBashVisual BasicPowerShellCyber Kill ChainMITRE ATT&CK FrameworkOperating SystemsMonitoringDetection TechniquesIncident Response LifecycleCBP/DHSInsider ThreatDigital Media ForensicCompTIA Cyber Security Analyst (CySA+)CompTIA Linux Network Professional (CLNP)CompTIA Pentest+

Required

BS degree and 4-8 or more years of direct relevant experience

Degree in computer science, IT, Information/Cyber Security field from an accredited college or university

Flexible and adaptable self-starter with strong relationship-building skills

Effective communication skills with emphasis on attention to detail, ability to accurately capture and document technical remediation details, and ability to brief stakeholders on incident statuses, recovery and root causes

Demonstrable experience performing forensic analysis, digital media analysis, and in-depth system & network log analysis in support of forensic investigations

Ability to generate forensically sound cyber analysis reports detailing forensically sound analysis procedures, findings, and recommendations from incident investigations

Strong problem-solving abilities with an analytic and qualitative eye for reasoning under pressure

Ability to independently prioritize and complete multiple tasks with little to no supervision

Preferred

Experience performing computer forensics in Federal Government, DOD or Law Enforcement environments

Ability to script in one more of the following computer languages Python, Bash, Visual Basic or PowerShell

Knowledge of the Cyber Kill Chain and MITRE ATT&CK framework

Advanced understanding of multiple Operating Systems, monitoring and detection techniques and methods, and Incident Response Lifecycle

Prior experience with CBP/DHS

Between 2-3 years of experience in two or more of these specialized areas: Insider Threat, Digital media forensic, Monitoring and detection, Incident Response

CompTIA Cyber Security Analyst (CySA+)

CompTIA Linux Network Professional (CLNP)

CompTIA Pentest+