Computer Specialist � Network and Digital Forensics Examiner (CT)

About The Position

Requirements

• Minimum of five (5) years digital forensics experience using Cellebrite UFED4PC/Physical Analyzer.
• Proficiency with FTK, and/or OSForensics.
• Expertise with various computer operating systems to include Windows, Linux/Unix, and Macintosh OS.
• Expertise with a variety of computer hardware to include servers, workstations, desktops, laptops, networking equipment, tablets and cellphones.
• Full understanding of proper forensic data collection procedures, chain of custody, and documentation procedures in a law enforcement environment.
• SANS FOR 500 or SANS FOR 585
• Cellebrite CCO and CCPA.
• Strong documentation skills.
• Ability to testify as an expert witness in judicial proceedings.
• Proficient in information security, information assurance, information technology, and cyber defense best practices and principles.
• DCITA DoD Digital Forensic Examiner or FBI Computer Analysis Response Team (CART) certification.
• This position requires the person(s) to be eligible AND adjudicated to Top Secret (TS SCI) clearance level at contract start.
• Minimum of a Bachelor's degree in a Computer Science-related field or five (5) years of equivalent work experience.

Responsibilities

• Conduct complex and high-profile, non-destructive evaluations of target computer systems to determine operating and file systems, stored information, user and program logs, ownership, and access methodology, as well as security features and usage
• Provide detailed forensic examinations for NCIS cases
• Document artifacts and deliverables according to standardized formats and approved templates created through collaboration with NCIS Divisions
• Follow NCIS organizational policies and procedures
• Work in a team environment to provide forensic support via active engagement with Cyber-Referent agents
• Liaison between NCIS agents in the field and NCIS analysts at NCISHQ
• Collect and preserve critical evidence from large data sets
• Conduct intrusion identification
• Write SQL queries to verify/retrieve data
• Perform log analysis in support of NCIS investigations
• Conduct forensic extraction and analysis of data and electronic evidence from seized digital media
• Analyze computer network security settings, server, system, router, firewall, intrusion detection system (IDS) and intrusion prevention system (IPS) logs and packet capture data
• Assist the NCIS Special Agent as a technical consultant, ensuring that the data is seized in compliance with computer forensic standards and in compliance with chain of custody guidelines
• Serve as a subject matter expert (SME) and testify in court proceedings regarding forensic procedures utilized to acquire evidence and the description of any evidence obtained
• Analyze and test network monitoring technologies
• Test and assess new commercial and government-developed network-based investigative tools for reviewing and improving NCIS' current collection platforms
• Evaluate and implement new technologies to support the improvement and modernization of the NCIS criminal and intelligence capabilities regarding the gathering digital evidence
• Provide emergent forensic response support to internal and external surge requirements
• Configure, install, and maintain Network Intrusion Detection systems and Network Forensic Analysis Tools on locally configured networks

Benefits

• Longeviti offers a comprehensive and generous benefits package.
• The Longeviti benefits package includes medical, dental, and vision insurance for the employee and/or their families.
• Longeviti also includes basic life insurance which includes AD&D plus short- and long-term disability for the employee.
• Employees may elect to enroll in our companys 401k plan.
• Employees will also accrue paid time off and holidays.
• Additional voluntary elections include legal coverage, supplemental accident, critical illness and hospital insurance plans, and commuter benefits.