Cyber Forensics Analyst
Cyber Forensics Analyst
Consolidated Nuclear Security
Oak Ridge, TN
Job ID : 374f2f715745312b6d4146772b746d3648413d3d
Job Description :
Location: Amarillo, TX or Oak Ridge, TN
Job Title: Cyber Forensics Analyst
Career Level From: Senior Associate
Career Level To: Senior Specialist
Organization: Chief Information Security Off (50003144)
Job Specialty: Cyber Security
Job Title: Cyber Forensics Analyst
Career Level From: Senior Associate
Career Level To: Senior Specialist
Organization: Chief Information Security Off (50003144)
Job Specialty: Cyber Security
What You'll Do
The Cyber Forensics Analyst is responsible for analyzing digital evidence to investigate internal and external computer security incidents and derive useful information in support of system/network vulnerability mitigation. This role also may include performing digital forensics activities in support of ethics and internal audit investigations.
- Conduct analysis of log files, evidence, and other information to determine best methods for identifying the perpetrator(s) of a network intrusion
- Create a forensically sound duplicate of the evidence (i.e., forensic image) that ensures the original evidence is not unintentionally modified, to use for data recovery and analysis processes
- Decrypt seized data using technical means
- Provide technical summary of findings in accordance with established reporting procedures
- Ensure that chain of custody is followed for all digital media acquired in accordance with the Federal Rules of Evidence
- Perform file signature, static media, and malware analysis
- Extract data using data carving techniques
- Use specialized equipment and techniques to catalog, document, extract, collect, package, and preserve digital evidence
- Perform Windows registry analysis
- Collect and analyze intrusion artifacts (e.g., source code, malware, and system configuration) and use discovered data to enable mitigation of potential cyber defense incidents within the enterprise
- Additional responsibilities as necessary
What You Can Expect
- Meaningful work and unique opportunities to support missions vital to national and global security
- Top-notch, dedicated colleagues
- Generous pay and benefits with a stable organization
- Career advancement and professional development programs
- Work-life balance fostered through flexible work options and wellness initiatives
Minimum Job Requirements
Bachelor's degree in Computer Science, Information Security, Information Systems or a related field with a minimum of 2 years of relevant experience.
Ten or more years of relevant education, training, and/or progressive experience may be considered to satisfy educational and years-of-experience requirements for this posting.
- Knowledge of cyber threats and vulnerabilities
- Knowledge of operating systems and file system implementations
- Knowledge of physical computer components and architectures, including the functions of various components and peripherals
- Knowledge of incident response and handling methodologies
Preferred Job Requirements
- Ability to conduct forensic analyses in both Windows and Unix/Linux environments
- Knowledge of processes for seizing and preserving digital evidence, including legal governance related to admissibility (e.g. Rules of Evidence)
- Knowledge of hacking methodologies
- Knowledge in analyzing memory dumps to extract information
- Knowledge of encryption algorithms
- Experience using forensic tool suites (e.g., EnCase, and FTK)
- Ability to perform both bit-level analysis and packet-level analysis
- Experience with analyzing malware and identifying anomalous code as malicious or benign
- Experience with reverse engineering concepts
- Knowledge of system administration concepts for operating systems such as but not limited to Unix/Linux, IOS, Android, and Windows operating systems
- Ability to identifying obfuscation techniques
- Ability to perform Windows registry analysis
- Ability to use virtual machines and decrypt digital data collections
- Strong problem solving and communication skills (both orally and in writing)
Notes
The minimum education and experience for the lowest career level in the job posting range are listed under Minimum Job Requirements. Successful candidates hired into a higher career level than the minimum in the range must meet the requirements listed in the job leveling charts for the career level into which they are being hired.
If a range of Career Levels is posted, i.e., Senior Associate to Senior Specialist, internal applicants already in one of the Career Levels would come across at their current Career Level. Internal applicants currently in a lower level Career Level would move to the lowest posted Career Level, and internal applicants in higher Career Levels may be considered, on an exception basis, to come across laterally based on the applicant's education and experience, and the scope of work being performed in the role.
Requires a Q clearance; however all qualified candidates will be considered regardless of their current clearance status. The ability to obtain and maintain a Department of Energy Q clearance is required.
Position may require entry into Materials Access Areas (MAA) and participation in the Human Reliability Program (HRP). If HRP is required, candidate must complete a counterintelligence-scope polygraph, pursuant to 10CFR 709. Medical requirements may apply.
CNS is a drug-free workplace. Candidates accepting a job offer will be required to pass a pre-placement physical, drug screening and background investigation. As an employee, you may be required to receive and maintain a security clearance from the United States Department of Energy in order to meet eligibility requirements for access to sensitive information or matter. U.S. citizenship is a requirement for security clearance applicants. All employees are subject to being randomly selected for drug testing without advance notification.
CNS is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, gender, sexual orientation, gender identity, age, religion, national origin, ancestry, genetic information, disability or veteran status.
Company Details :
Name : Consolidated Nuclear Security
CEO : Michelle Reichert
Headquarter : Oak Ridge, TN
Revenue : $100 to $500 million (USD)
Size : 5001 to 10000 Employees
Type : Subsidiary or Business Segment
Primary Industry : Aerospace & Defense
Sector Name : Aerospace & Defense
Year Founded : 2007
dutch-tavern.com is the go-to platform for job seekers looking for the best job postings from around the web. With a focus on quality, the platform guarantees that all job postings are from reliable sources and are up-to-date. It also offers a variety of tools to help users find the perfect job for them, such as searching by location and filtering by industry. Furthermore, dutch-tavern.com provides helpful resources like resume tips and career advice to give job seekers an edge in their search. With its commitment to quality and user-friendliness, dutch-tavern.com is the ideal place to find your next job.
Details
: Oak Ridge, TN
: 50793 - 75170 USD ANNUAL
: 636 days ago
