Technical Lead, Digital Intrusions Management

About The Position

Requirements

• TS/SCI clearance eligible
• BA/BS or equivalent experience and 8+ years of prior relevant experience or Masters with 6+ years of prior relevant experience
• Possession of at least one of the following active certifications: GIAC Certified Forensic Examiner (GCFE), EnCase Certified Examiner (EnCE), DC3 Cyber Training Academy Digital Forensic Examiner (DFE), or equivalent.
• A minimum of seven (7) years of hands-on experience in digital forensics, with at least five (5) years of that experience focused on evidence acquisition, forensic imaging, and data extraction from a variety of media (e.g., hard drives, mobile devices, IoT devices).
• A minimum of three (3) years of experience within the last five years in a leadership or supervisory role, responsible for managing a digital forensics team, overseeing laboratory workflows, and maintaining chain of custody documentation.
• Demonstrated experience within the last three years in the testing and validation of forensic imaging tools and write-blockers.

Nice To Haves

• Experience supporting digital forensics with DoD/DoW, Intelligence, Security and/or Law Enforcement

Responsibilities

• Provide management, direction, business operations support, quality control, and leadership of Contractor personnel supporting the customer.
• Provide direct management and technical oversight of all activities performed by the intrusion analysis and incident response personnel.
• Lead intrusion investigations
• Manage incident responders
• Brief technical findings to leadership
• Ensure all tasks are accomplished in accordance with applicable regulations and procedures.
• Ensure all intrusion analysis and incident response task responses include solid analysis of the advanced persistent threat (APT) activity and correlates findings from multiple data sources.
• Alert the appropriate Government and contractor staff to potential technical, programmatic, or resource limitation issues.