Digital Forensics Investigator (Intelligence Center)

About The Position

Requirements

• Five+ years of related experience working in the IC or Department of War as an all-source analyst, targeting officer, technical targeter, digital forensic examiner, digital media investigator, or similar experience with a bachelor’s degree in digital forensics, computer engineering, computer science, intelligence studies, or a related field(s); or 3+ years with a master’s degree; or a PhD with relevant experience who can immediately contribute; or an equivalent combination of education, work experience, and technical certifications from industry recognized institutions (SANS, CompTIA, EEE, ISFCE, GIAC, EnCE, ISC2, ECC, DC3, Cellebrite).
• Experience with common programming languages and scripting tools (e.g., Java, Objective-C, Swift, Python, C, C++, Go)
• Understanding of IC analytical tradecraft (ICD 203) and all-source intelligence fusion.
• Proficiency with current industry tools and techniques used by digital forensic examiners and/or intelligence analysts.
• Ability to communicate complex technical concepts to non-technical colleagues.
• Familiarity with forensic examinations, triage concepts and investigative objectives
• Familiarity with threat network development, drafting finished intelligence, and/or operational reporting.
• IC, Military, or LE experience with an understanding of the various information domains used within and the various intelligence and operational reports created throughout.
• General technical proficiency and familiarity with the Microsoft Office Suite, including Outlook, Excel, and Word.
• Excellent verbal and written communication skills, note taking, and confidence in oral briefing/presentations with senior staff members
• This position has an on-site requirement of 5 days a week on-site.
• This requisition requires the candidate to have a minimum of the following clearance(s): Top Secret/SCI/Polygraph
• This requisition requires the hired candidate to have or obtain, within one year from the date of hire, the following clearance(s): Top Secret/SCI/Polygraph

Nice To Haves

• Experience working with collected exploited material (CEM) and/or DOMEX-derived data and information.
• Experience working with the Intelligence Community (IC), Department of Defense (DoD) and/or Law Enforcement (LE) partners
• Experience with operational targeting tools, workflows, and governing policies and authorities
• Experience reverse engineering and using related software/tools
• Proficiency in prototyping using Python and establishing a development environment.
• Strong familiarity with Linux operating systems and with Android OS and file system and/or iOS and iOS file system
• Familiarity with serialized report writing for USG customers and audiences and coordination across the IC, DOD, and/or Law Enforcement partners
• Familiarity/experience with mobile device forensic examinations and investigations
• Familiarity with policies and authorities governing US intelligence activities.
• Familiarity with database systems such as MySQL, Postgres, SQLite, or other common databases.
• Familiarity with environments/sponsors operating in the offensive domain.
• Ability to communicate complex intelligence reporting, analytic problem sets, and concepts to technical colleagues.
• Ability to transfer basic knowledge and skills to junior staff and technical colleagues.

Responsibilities

• Conduct digital forensics/digital media exploitation investigations, using a variety of forensic tools and processes to achieve mission objectives.
• Enrich findings from digital forensics/digital media exploitation with identity analysis and threat network development to identify terrorism threats.
• Draft written detailed reports based on investigative and intelligence findings, producing action officer level finished intelligence and operational reporting by working closely with forensic investigators and interagency partners.
• Research and maintain familiarity with various violent extremist organizations, social and cultural dynamics across various regions and ethnic groups, and ability to fluidly adapt to dynamic threats to the homeland,
• Provide analytic and technical inputs to regional/functional strategies and implementation plans to unify USG efforts for measurable impact on the counterterrorism mission.
• Coordinate with and support sponsor and IC and law enforcement (LE) partners across a dynamic and evolving threat landscape.
• Identify and provide solutions to issues within assigned work areas; develop creative intelligence and analytic methodologies, workflows, and processes for a group heavily focused on mobile forensics data and big-data
• Innovate by creating prototypes and improvements grounded in research.
• Develop and implement standard operating procedures and best practices for sponsor.
• Be comfortable with frequent engagements with senior officials and leaders, and demonstrate knowledge of customer’s operations/business, and processes.
• Maintain frequent sponsor and partner contact and demonstrate an understanding of their operations and business needs.