Journeyman Digital Forensic Analyst

About The Position

Requirements

• Bachelor’s degree and 5 years of relevant experience or Masters Degree and 3 years experience. An additional 4 years of relevant experience may be substituted in lieu of the degree requirement.
• To be considered for this position, applicants must either currently hold one of the professional certifications listed below or obtain one prior to their start date. Continued certification is required as a condition of employment. GIAC: GCFE, GASF IACIS: CFCE, ICMDE NCFI: BCERT, MDE DC3: CDFE, CDMC Opentext: EnCE Cellebrite: [CCO & CCPA], CCME Oxygen Forensics: OFC Magnet Forensics: MCFE
• Demonstrated in-depth knowledge if forensic analysis of mobile device hardware, third-party applications, Apple iOS and Android-based operating systems; Apple Macintosh, Linux and Microsoft Windows operating systems, Windows Registry, Android Debug Bridge (ADB); Apple iTunes and iCloud; various computer file systems.
• Experience in providing on-scene triaging, processing, handling, and packaging of electronic/digital evidence (chain of custody) during search and seizure warrants.
• Demonstrated knowledge in using forensic software tools such as Magnet Axiom, Cellebrite Inseyets PA, Oxygen Forensic Detective, Nuix, X-ways, EnCase and with mobile advanced extraction tools.
• Experience writing detailed notes and reports that translate complex technical information to non-technical audiences.
• U.S. citizenship required.
• Ability to obtain an interim Secret clearance before start date.
• The ability to obtain a final Top-Secret security clearance.

Nice To Haves

• A minimum of one additional certification from, but is not limited to: Cyber Crime Center (CDFE, CDMC) Cellebrite (CCO+CCPA) X-Ways (X-PERT) Oxygen Forensic Detective (OFC) Magnet Forensics (MCFE)

Responsibilities

• Leverage expertise in digital forensics to perform in-depth examinations while assuring forensic soundness of recovered digital evidence is maintained to meet court admissibility standards of the Department of Justice.
• Serve as a Mid-level Digital Forensic Analyst with 5-8 years of experience, who will support the CIF program with the ability and skillset to provide in-depth digital forensic analysis of mobile devices, electronic storage devices, cloud, server, and personal computer systems.
• Conduct forensic examinations of digital evidence through the application of recognized scientific best practices for the recognition, collection, analysis, and interpretation of digital evidence for criminal and civil law or regulatory purposes.
• Leverage skillsets to perform in-depth forensic analysis of various operating systems including Android, Apple iOS/MAC, Microsoft Windows, and Linux based operating systems.
• Leverage skillsets to perform in-depth forensic analysis of file systems including APFS, NTFS, ExFAT, HFS/+, EXT2/3/4, and FAT/FAT32.
• Leverage skillsets to perform in-depth forensic analysis of system and third-party application databases.
• As a tool-agnostic examiner, maintain proficiency in the use of industry-standard forensic hardware and software tools such as Magnet Axiom, Cellebrite Inseyets, PA/UFED, Oxygen Forensic Detective, EnCase, X- Ways, Nuix and with mobile advanced extraction tools such as Graykey and Cellebrite Premium.
• Maintain non-vendor and vendor specific certifications related to job duties.
• Provide on‐scene support during the execution of search warrants with the identification, collection, packaging, handling, and chain-of-custody procedures of digital evidence.
• Provide on-scene expertise and triaging guidance of mobile device and running computer systems regarding; encryption, RAM captures, signal-blocking, biometrics, pin-locks, and field acquisition considerations.
• Produce comprehensive notes, reports, and illustrative exhibits for federal, state, and local judicial proceedings; provide expert witness testimony to explain examination interpretations and conclusions from forensic examinations to a lay audience.
• Collaborate with program government and contractor leadership, forensic analysts, law enforcement officers, prosecutors, and other stakeholders to ensure that CIF maintains forensically-sound procedures and best practices in the imaging, analysis, and presentation of digital evidence.
• Stay abreast of new developments and trends in digital forensics, cybersecurity, forensic law, mobile devices, social media tools, mobile applications, and encryption technologies.