Cyber Defense Forensics Analyst
About The Position
As a security operations center analyst, you're in the middle of the action, responding to and mitigating threats in real time. You're the first line of cyber defense for your organization, and they look to you for guidance on best practices and security measures. We need a Tier 2 SOC analyst like you to help us secure critical infrastructure from the constant onslaught of cyber attacks for the mission partner. As a SOC analyst on our team, you'll monitor and analyze threats, using state-of-the-art tools. You'll work with the team to understand, mitigate, and respond to threats quickly, restoring operations and limiting the impact. You'll analyze incidents to figure out just how many systems are affected and assist recovery efforts. You'll combine threat intelligence, event data, and assessments from recent events, and identify patterns to understand attackers' goals to stop them from succeeding. This is a great opportunity to hone your cybersecurity skills with hands-on experience in threat assessment and incident response. Work with us as we secure the Air Force network from malicious actors. Join us. The world can't wait.
Requirements
- 6+ years of experience in Cybersecurity
- 3+ years of experience conducting digital forensics or incident response investigations within classified DoD environments
- Experience with forensic tools such as EnCase, FTK, Autopsy, Cellebrite, Volatility, or X-Ways
- Experience with SIEMS
- Knowledge of Windows, Linux, and network forensic artifacts, including memory and disk analysis
- Ability to collect, preserve, and analyze evidence in accordance with DoD or federal chain-of-custody standards and identify, triage, and report events that occur to protect data, information systems, and infrastructure
- Ability to find trends, patterns, or correlations in security data
- TS/SCI clearance
- Bachelor's degree and 3+ years of experience with cyber or IA or 7+ years of experience with cyber or IA in lieu of a degree
- DoD 8140 Level II Certification, such as Security+, CySA+, or CISSP Certification
Nice To Haves
- Experience supporting Cyber Protection Teams (CPTs), Defensive Cyber Operations (DCO), or Air Force cyber missions
- Experience with Elastic, Splunk, Wireshark, or MISP for multi-source data correlation
- Knowledge of malware analysis, reverse engineering, or memory forensics
- Ability to prepare and brief forensic findings to commanders or senior decision-makers
- GCFA, GCFE, CHFI, or CEH Certification
- Master's degree in Digital Forensics, Information Assurance, or Cybersecurity
Benefits
- health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Industry
Professional, Scientific, and Technical Services
Number of Employees
1-10 employees
