Cyber Forensics Analyst - TS/SCI
Tasks
- Analyze malicious network and system logs
- Analyze network device integrity data
- Assess network topology and device configurations
- Collect network intrusion artifacts
- Conduct comprehensive technical analysis of computer evidence
- Document incident response activities and write executive summaries
- Perform event correlation
- Plan and coordinate evidence inventory and examination
- Serve as technical forensics liaison to stakeholders
- Write cyber investigative reports
Perks/Benefits
- N/A
Skills/Tech-stack
Adversary Techniques | Adversary tactics | All-source research | Command and control | Digital forensics | EDR monitoring | EDR tools | Event Correlation | Evidence Preservation | Forensic Imaging | Intrusion analysis | Linux | Log Analysis | MITRE Adversary Common Knowledge | MITRE Adversary Tactics | MITRE Adversary Techniques | Mitre Attack | Nessus | Network Topology | Network Traffic | Network Traffic Analysis | Network intrusion | Network intrusion analysis | Network topology analysis | PCAP Analysis | SIEM | Splunk | TCP/IP | Threat detection | Topology analysis | Traffic analysis | Virtualization | Vulnerability Assessment | Vulnerability scanning | Wi-Fi | Wi-Fi networking
Education
Bachelor of Engineering | Bachelor of Science | High School Diploma
Related jobs
-
System Vulnerability Analyst USD 95K-128KAnomaly Detection | IoC | Mitre Attack | Network Analysis | Network Anomaly Detection100 percent on site | TS SCI clearance FSP active and currentMid-level Full TimeAnnapolis Junction, MD, United States7h ago
-
Cybersecurity Risk and Compliance Analyst USD 67K-119K800-53 | AWS | Audit Support | Authorization | Change ManagementCharity involvement | Recognition programs | Time off programs | Volunteer days | Wellness initiativesMid-level Full TimeUnited States R12h ago
-
Target Analyst Reporter USD 110K-195KCode disassembly | Debugging | Exploit Development | File Hashing | Fuzzy File HashingActive TS/SCI Clearance | Full Scope PolygraphSenior-level Full TimeLinthicum, MD20h ago
-
Junior Consultant USD 70K-82K800-53 | AI tools | Access Management | CIS Controls | Compliance401K Plan Eligibility | Dental insurance | Disability insurance | Life insurance | Medical insuranceEntry-level Full TimeNashville, TN, US22h ago
-
Cybersecurity Analyst - Data Protection USD 79K-153KABAC | AWS | Access Control | Alation | AuditingMid-level Full TimeTwo Destiny Way, Westlake TX, United …22h ago
-
Authority to Operate | Certification and accreditation | Cloud Computing | Cloud Storage | Cost OptimizationTop Secret/SCI clearance supportSenior-level Full TimeSpringfield, VA1d ago
-
Command Line | Cyber Kill Chain | Cybersecurity Countermeasures | Detection Signatures | Kill ChainActive TS/SCI Clearance | Onsite work | Some Remote WorkSenior-level Full TimeAlexandria, VA1d ago
-
Cyber Kill Chain | Defense in Depth | Detection Systems | Event management | Incident Response247 shift work | Weekend hoursSenior-level Full TimeArlington, VA1d ago
-
Access Controls | Certification and accreditation | Configuration Management | Encryption | NIST RMFSenior-level Full TimeFort George G Meade, MD1d ago
-
Anti-forensics | Chain of Custody | Data Recovery | Data decryption | Deleted data recoveryMid-level Full TimeSan Antonio, TX1d ago
-
ArcSight | Firewalls | IDS/IPS | Kibana | Network AnalysisMultiple shifts available | Top Secret clearanceMid-level Full TimeFort George G Meade, MD1d ago
-
Mid-level Full TimeFort George G Meade, MD1d ago
-
Senior-level Full TimeFort George G Meade, MD1d ago
-
Adversary tactics | Adversary tactics and techniques | Cloud Security | Cyber Threat | Cyber incidentMid-level Full TimeFort George G Meade, MD1d ago
-
800-53 | ACAS | ATO | Assessment and Authorization | CNSSI 1253Mid-level Full TimeReston, VA1d ago
-
Cyber Defense | Cyber Defense Tools | Cybersecurity monitoring | Data collection | Defense toolsOnsite support | Remote workMid-level Full TimeArlington, VA1d ago
-
Attack Framework | Computer Network Defense | Computer network | DMZ | DNSMid-level Full TimeArlington, VA1d ago
-
Data collection | Event Correlation | Event management | Incident Response | Intrusion DetectionSenior-level Full TimeArlington, VA1d ago
-
Alert validation | Event Correlation | Event management | Incident Handling | Intrusion Alert ValidationActive clearance support | Onsite work | Remote workMid-level Full TimeArlington, VA1d ago
-
Cyber Defense | Cyber Defense Tooling | Detection Systems | Event Correlation | Event managementMid-level Full TimeArlington, VA1d ago
-
Cyber Security Analyst (TS/SCI Rquirement) USD 86K-128KCyber Threat | Cyber threat hunting | Defense in Depth | Event Correlation | Event managementShift work | Training and self studyMid-level Full TimeArlington, Virginia1d ago
-
Bash | Cause analysis | Cellebrite | Chain of Custody | Cloud servicesSenior-level Full TimeNY, NY1d ago
-
SOC Analyst USD 52K-72KFirewall Logging | Incident Response | Intrusion Detection | Intrusion Detection System | Microsoft 365401k matching | Flexible spending accounts | Health, dental, vision insurance | Paid Holidays | Paid time offMid-level Full TimeDurham, NC, US1d ago
-
Threat Hunt Lead -- Top Secret USD 170K-230KAI/ML | AI/ML modeling | Chain of Custody | Cloud Forensics | Cyber OperationsSenior-level Full TimeUSA VA Herndon - 13857 Mclearen …1d ago
-
CECS II Field Support Representative (Region 3) USD 93K-118KAuthority to Operate | Computer Security | Continuous Monitoring | Control Systems Security | Cybersecurity401k with company match | Comprehensive health benefits | Flex work weeks | Health and wellness packages | Internal mobility opportunitiesMid-level Full TimeUSA MD Andrews AFB - Andrews …1d ago