Host Forensic Analyst/Host Based Systems Analyst

Location: Arlington, VA

Must have Top Secret Security Clearance

Node is seeking a Host Forensic Analyst to support this critical customer mission.

1. Assist Federal leads in overseeing and leading forensic teams at onsite engagements by coordinating evidence collection operations.
2. Provide technical assistance on digital evidence matters and forensic investigative techniques to appropriate personnel.
3. Write in-depth reports, support peer reviews, and conduct quality assurance reviews for junior personnel.
4. Support forensic analysis and mentor others on data collection, analysis, and reporting during onsite engagements.
5. Lead and coordinate forensic teams in preliminary investigations.
6. Plan, coordinate, and direct the inventory, examination, and comprehensive technical analysis of computer-related evidence.
7. Summarize analytic findings into executive summaries and detailed technical reports.
8. Serve as a technical liaison to stakeholders, explaining investigation details, forensic methodologies, and protocols.
9. Track and document on-site incident response activities and provide updates to leadership.
10. Evaluate, extract, and analyze suspected malicious code.

• U.S. Citizenship
• Active TS/SCI clearance
• Ability to obtain DHS Suitability
• 8+ years of relevant experience in cyber forensic investigations using industry-standard tools
• Ability to create forensically sound evidence duplicates (images)
• Proficiency in writing cyber investigative reports
• Experience analyzing and characterizing cyber attacks
• Knowledge of evidence handling procedures and chain of custody protocols
• Skilled in identifying attack classes and stages
• Understanding of system and application security threats and vulnerabilities
• Proactive analysis skills for systems and networks
• Ability to work collaboratively across locations

• Experience with or knowledge of tools such as EnCase, FTK, SIFT, X-Ways, Volatility, WireShark, Sleuth Kit/Autopsy, Splunk, Snort, or other EDR tools (e.g., Crowdstrike, Carbon Black)
• Proficiency in conducting all-source research

BS in Computer Science, Cybersecurity, Computer Engineering, or related field; or HS Diploma with 10+ years of relevant digital forensics experience.

• GCFA, GCFE, EnCE, CCE, CFCE, CISSP

Node.Digital is an independent Digital Automation & Cognitive Engineering company that integrates top technologies to accelerate business impact.

Our core values include:

• Identifying and developing the right people
• Customer mission focus
• Simplifying complex problems with agile delivery
• Delivering simple, secure, and fast solutions

We offer competitive benefits such as medical, dental, vision, life insurance, disability, HSA, 401K, PTO, holidays, and online training.