Cyber Defense Forensic Analyst

Cyber Defense Forensic Analyst

Description

Leidos is a FORTUNE 500 company bringing a mix of innovative technology and sector expertise to customers in the national security, engineering, and the health industries.

The Leidos Defense Group has multiple openings for Cyber Defense Forensic Analysts for multiple levels including Journeyman and Senior level. These position are located in Joint Base Langley - VA. These opportunities are part of a large Military Intelligence Program supporting the USAF Air Combat Commands Distributed Common Ground System (AF DCGS). Applicant uses data collected from a variety of cyber defense tools to analyze events that occur within their environments for the purposes of mitigating threats. Provides detection, identification, and alerting of possible attacks/intrusions, anomalous activities, and misuse activities. Characterizes and analyzes network traffic to identify anomalous activity and potential threats to network resources. Documents and escalates incidents that may cause ongoing and immediate impact to the environment. Analyzes identified malicious activity to determine weaknesses exploited, exploitation methods, effects on system and information. Performs event correlation using information gathered from a variety of sources within the enterprise to gain situational awareness and determine the effectiveness of an observed attack. Performs security vulnerability assessments. Eliminates the threat of network intrusions by proactively probing network defenses to identify vulnerabilities and administering network scans as required. Performs proactive monitoring activity and supports implementation and operation of an insider threat capability. Identifies threats and mitigations. Ensures current/approved network security tools and patches are implemented. Conducts daily security scans and identifies potential security concerns and recommends solutions.

We are expecting award and funding of these positions in February 2024.

Primary Roles/Duties

• Conducts forensic examinations of digital evidence through the application of recognized scientific practices for the recognition, collection, analysis, and interpretation of digital evidence for criminal and civil law or regulatory purposes.

• Produces comprehensive reports, notes and illustrative exhibits to explain evidence interpretations and conclusions from forensic examinations.

• Collaborate with other forensic analysts to identify and recommend forensically-sounds procedures in imaging, analysis, and presentation of digital evidence.

• Confirm what is known about an intrusion and discover new information, if possible, after identifying intrusion via dynamic analysis.

• Perform file signature and file system analysis.

Required Qualifications

• Bachelors or masters degree; additional years of related experience will be considered in lieu of a Bachelors degree.

• Minimum of 3 to 12 years of experience in cyber industry.

• TS/SCI clearance

• DoD 8570 Compliance.

• Knowledge of investigative implications of hardware, Operating Systems, and network technologies.

• Experience developing technically detailed reports that translate complex technical information to non-technical audiences.

• Strong critical, creative, and analytical thinking skills.

• Knowledge of concepts and practices of processing digital forensic data.

• Ability to conduct forensic analyses in and for both Windows and Unix/Linux environments.

• Skill in analyzing memory dumps to extract information.

Preferred Qualifications

• GCFA or GCFE.

• Previous AF DCGS weapon system experience is highly desired.

Pay Range:

The Leidos pay range for this job level is a general guideline onlyand not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.

Original Posting Date:

While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.