Host Forensic Analyst/Host Based Systems Analyst

Host Forensic Analyst/Host Based Systems Analyst

Must have Top Secret Security Clearance

Node is seeking a Host Forensic Analyst to support this critical customer mission.

1. Assisting Federal leads with overseeing and leading forensic teams at onsite engagements by coordinating evidence collection operations.
2. Providing technical assistance on digital evidence matters and forensic investigative techniques to appropriate personnel when necessary.
3. Writing in-depth reports, supporting peer reviews, and providing quality assurance reviews for junior personnel.
4. Supporting forensic analysis and mentoring/providing guidance to others on data collection, analysis, and reporting in support of onsite engagements.
5. Assisting with leading and coordinating forensic teams in preliminary investigation.
6. Planning, coordinating, and directing the inventory, examination, and comprehensive technical analysis of computer-related evidence.
7. Distilling analytic findings into executive summaries and in-depth technical reports.
8. Serving as technical forensics liaison to stakeholders and explaining investigation details including forensic methodologies and protocols.
9. Tracking and documenting on-site incident response activities and providing updates to leadership throughout the engagement.
10. Evaluating, extracting, and analyzing suspected malicious code.

1. U.S. Citizenship
2. Must have an active TS/SCI clearance
3. Must be able to obtain DHS Suitability
4. 8+ years of directly relevant experience in cyber forensic investigations using leading-edge technologies and industry-standard forensic tools
5. Ability to create forensically sound duplicates of evidence (forensic images)
6. Ability to write cyber investigative reports documenting digital forensics findings
7. Experience with the analysis and characterization of cyber attacks
8. Experience with proper evidence handling procedures and chain of custody protocols
9. Skilled in identifying different classes of attacks and attack stages
10. Knowledge of system and application security threats and vulnerabilities
11. Knowledgeable in proactive analysis of systems and networks, including creating trust levels of critical resources
12. Must be able to work collaboratively across physical locations

Experience with or knowledge of two or more of the following tools:

• EnCase
• FTK
• SIFT
• X-Ways
• Volatility
• WireShark
• Sleuth Kit/Autopsy
• Splunk
• Snort
• Other EDR Tools (Crowdstrike, Carbon Black, etc)

Proficiency in conducting all-source research.

BS in Computer Science, Cybersecurity, Computer Engineering, or related degree; or HS Diploma and 10+ years of host or digital forensics experience.

GCFA, GCFE, EnCE, CCE, CFCE, CISSP

Node.Digital is an independent Digital Automation & Cognitive Engineering company that integrates best-of-breed technologies to accelerate business impact.

Our Core Values include:

• Identifying the RIGHT PEOPLE and developing them to their full capabilities
• Our customer’s “Mission” is our “Mission”. Our MISSION FIRST approach is designed to keep our customers fully engaged while becoming their trusted partner
• We believe in SIMPLIFYING complex problems with a relentless focus on agile delivery excellence
• Our mantra is “Simple*Secure*Speed” in the delivery of innovative services and solutions

We offer competitive compensation and benefits including:

• Medical
• Dental
• Vision
• Basic Life
• Long-Term Disability
• Health Saving Account
• 401K
• Three weeks of PTO
• 10 Paid Holidays
• Pre-Approved Online Training