Digital Forensics and Incident Response Analyst

Position Title: Digital Forensics and Incident Response Analyst Location: Portland, OR | Full-Time

Cybervance is a rapidly growing information security and information technology company based in Washington, D.C., and we are an equal opportunity employer.

Cybervance combines advanced cybersecurity expertise with proven federal contracting experience to deliver innovated, mission-focused solutions for U.S. Government agencies. We are committed to helping our partners achieve measurable improvements in security and resilience.

We are seeking a full-time Digital Forensics and Incident Response Analyst who will be charged with conducting computer forensic investigations, data recovery, electronic discovery, and participate in cybersecurity incident response under a lead.

Responsibilities

• Collect, examine, and perform thorough technical analyses of computer-related evidence/information such as media storage devices (floppy disks, hard disks, magnetic tapes, disks, memory cards, magnetic strip cards, etc.).
• Use various forensic tools such as Encase, Axiom, Cellebrite, or FTK to search for and prepare information and evidence.
• Perform searches and analysis of digital devices and computers with various operating systems such as Windows, iOS, Linux and UNIX.
• Support investigative findings through documented, evidence-based analysis and maintain strict protection and integrity of all evidentiary materials.
• Prepare accurate, clear and comprehensive reports of findings which can be understood by both technical and non-technical personnel.
• Review operating practices and procedures to determine whether improvements can be made in areas such as workflow, reporting procedures, and/or expenditures. Communicate results of discussion, artifacts, and recommendations.
• Provide advice and guidance in implementing IT security policies and procedures in the development and operation of network systems.
  
  
• Interact with Federal agencies on forensics techniques to develop, implement, and coordinate forensics activities to protect systems and to monitor compliance.
• Manage multiple threat analysis sources and their integration and use in the enterprise incident response teams.
• Perform vulnerability research methodologies and sources.
• Maintain and support all forensically related equipment and software.
• Bachelor’s degree in Cybersecurity, Computer Science, IT, Computer Engineering, or other related field.
• Five to ten (10) years of combined cybersecurity experience with three to seven years in digital forensics, incident response, threat hunting, malware analysis, and/or security operations.
• Experience leading incident investigations, coordinating enterprise-wide response efforts, and presentation of findings.

Required Skills & Qualifications

• Demonstrable performance track record including potential work samples, process development, proposal library management, and win rates versus bids.
• Strong analytical thinking, high attention to detail, executive communication, report writing and documentation, and ability to work under pressure.
• Desired certifications: Certified Ethical Hacker (CEH), CompTIA Security+, CompTIA CySA+.