Salary Range: 90000 to 120000 (Currency: USD) (Pay period: per-year-salary)

What You’ll Do:

• Apply well known, substantiated and generally accepted principles in retrieving, recovering and preserving digital evidence.
• Collect, examine, and perform thorough technical analyses of computer-related evidence/information such as magnetic media storage devices (floppy disks, hard disks, magnetic tapes, optical disks, memory cards, magnetic strip cards, and the like).
• Use various forensic tools such as Encase or FTK to search for and prepare information and evidence.
• Search a wide range of digital devices and computers with various operating systems such as Windows, Linux and UNIX. 
• Retrieves, recovers, and preserves digital evidence.
• Uses various host based forensic tools such as Encase or FTK to search for and prepare information and evidence.
• Review operating practices and procedures to determine whether improvements can be made in areas such as workflow, reporting procedures, and/or expenditures.
• Examines, and performs thorough technical analyses of computer-related evidence/information.
• Prepares accurate clear and comprehensive reports of findings which can be understood by non-technical personnel. Provides advice and guidance in implementing IT security policies and procedures in the development and operation of network systems.
• Interacts with other organizations and other agencies on forensics techniques to develop, implement, and coordinate forensics activities to protect systems and to monitor compliance.
• Manages multiple threat analysis sources and their integration and use in the enterprise incident response teams.
• Performs vulnerability research methodologies and sources.
• Maintains and supports all forensically related equipment and software.

What You Have:

• Certified SANS FOR508 is required upon hire - candidates can complete Certification if not actively holding prior to offer
• Experience leveraging Forensics ToolKit to perform remote image capturing post incident – they use FTK to host an image
• Experience using Discovery Core to search user email for legal parties
• Experience with Knowbe4
• Experience leveraging Cellebrite for end-to-end Investigative Digital Intelligence (DI) Platform that provides the ability to collect and review, analyze and manage a range of digital evidence sources, including mobile phones, computers, cloud-based evidence and open-source information.
• Experience using Axiom
• Expertise in performing phishing investigations and asset discovery
• Experience dealing with litigation, data preservation, and legal experience
• Experience participating in Threat analysis
• Prior work in government is desired
• Threat Intelligence background is desired
• Experience working with a Forensics sandbox for imaging, payload detonation, etc.

What We Offer:

• 401(k), including an employer match of 100% of the first 3% contributed and 50% of the next 2% contributed  
• Medical, Dental, and Vision Insurance (available on the 1st day of the month following your first day of employment)  
• Group Term Life, Short-Term Disability, Long-Term Disability  
• Voluntary Life, Hospital Indemnity, Accident, and/or Critical Illness  
• Participation in the Discretionary Time Off (DTO) Program  
• 11 Paid Holidays Annually