Tyto Athene has an exciting opportunity for a Digital Forensic and Incident Response Analyst to support one of our Federal client. This position is critical to the continued maturation of our client's operational capabilities and you will join an established and experienced group that is motivated to provide excellent services in defending federal infrastructure. You will work closely with other research and forensics analysts, threat hunters, threat analysts in an established SOC and we will rely on you to examine recovered data and to perform forensics analysis.

Responsbilities:

• Analyze digital evidence and investigate cybersecurity incidents using a variety of techniques and tools, including but not limited to file signature analysis, file system forensic analysis, malware analysis, identification of obfuscation techniques, and disassembly of PCs and inspection of computer components and architectures
• Provide a technical summary of findings in accordance with established reporting procedures
• Uses discovered data to enable mitigation of potential cyber defense incidents within the enterprise
• Conduct Hashing techniques for chain of custody and validation
• Ensure that chain of custody is followed for all digital media acquired in accordance with the Federal Rules of Evidence
• Provide support for current and planned forensic application updates and replacements as technology changes.
• Provide written reports on analysis findings for requesting customers
• Support the developing and sustainment of forensics case management procedures
• Provide advisory support on the admissibility of evidence in accordance with statutes, directives, or legal guidance and procedures
• Provide support in developing, testing, and implementing contingency and recovery plans for enterprise forensics and case management applications
• Support pilot projects to implement new forensics capabilities, including evaluating technical alternatives, defining requirements, supporting pilot implementation, and providing recommendations on next steps

Required:

• Bachelor’s Degree or an equivalent combination of formal education and experience
• Minimum of six (6) years of general experience and three (3) years of relevant functional experience performing digital forensics
• Demonstrated competency in forensic tools, such Encase and Wireshark
• Core Competencies in computer forensics, computer networking and operating systems.
• Experience with operational security, including security operations center (SOC), incident response, malware analysis, or IDS and IPS analyses
• Understanding of scripting languages such as Python and regular expressions
• Knowledge of Windows and Linux OS’ and command lines

Desired:

• Certifications
  • CISSP - Certified Information Systems Security Professional
  • CEH - Certified Ethical Hacker
  • GCFA - GIAC Certified Forensic Analyst
  • GCFE - GIAC Certified Forensic Examiner
  • GREM - GIAC Reverse Engineering Malware
  • GNFA - GIAC Network Forensic Analyst

Location:

• This is a hybrid role with expectations of being on the client site as needed.

Clearance: 

• Secret Clearance required.

Compensation:

• Compensation is unique to each candidate and relative to the skills and experience they bring to the position. The salary range for this position is typically between $145,000-$155,000. This does not guarantee a specific salary as compensation is based upon multiple factors such as education, experience, certifications, and other requirements, and may fall outside of the above-stated range.

Benefits:

• Highlights of our benefits include Health/Dental/Vision, 401(k) match, Paid Time Off, STD/LTD/Life Insurance, Referral Bonuses, professional development reimbursement, and parental leave.