The Digital Forensics Analyst performs a variety of highly technical analyses and procedures dealing with the collection, processing,preservation, analysis, and presentation of computer-related evidence, and is responsible for disseminating and reporting cyber-related activities, conducting vulnerability analyses and risk management of computer systems and recovering information from computers and data storage devices.
Computer forensic analysts use forensic tools and investigative methods to find specific electronic data, including Internet use history, word processing documents, images and other files. This expert is not only proficient in the latest forensic, response, and reverse engineering skills, but is astute in the latest exploit methodologies.
The role of the analyst is to recover data like documents, photos and e-mails
from computer hard drives and other data storage devices, such as zip and flash
drives, that have been deleted, damaged or otherwise manipulated. Analysts
often work on cases involving offenses committed on the Internet ('cyber crime')
and examine computers that may have been involved in other types of crime in
order to find evidence of illegal activity. As an information security professional,
a computer forensic analyst may also use their expertise in a corporate setting to
protect computers from infiltration, determine how a computer was broken into
or recover lost files. Computer forensic analysts use forensic tools and investigative methods to find specific electronic data, including Internet use history, word processing documents, images and other files. They use their technical skills to hunt for files and information that have been hidden, deleted or lost. They help detectives and other officials analyze data and evaluate its relevance to the case under investigation. Analysts also transfer the evidence into a format that can be used for legal purposes (i.e. criminal trials) and often testify in court themselves.
Qualifications
To be considered for this position, you must minimally meet the knowledge, skills, and abilities listed below:
- Bachelor's degree (High School Diploma and 4 additional years of experience in lieue of Bachelor's degree).
- US Citizenship
- TS/SCI required with the ability to obtain DHS Suitability
- 3+ Years of Prior Experience in Investigative or Incident Response Environments
- Computer Forensic Experience
- Technical Report Writing Experience
- Experience with EnCase, FTK, X-Ways or Other Computer Forensic Tools
- Experience identifying and analyzing malware
Preferred Qualifications:
- Bachelor's Degree in Computer Science, Information Systems or Related Field
- One or More Related Certifications such as the EnCE, CFCE, CCE, or CISSP
- Knowledge of a programming or scripting language
- Experience conducting forensic intrusion examinations, to include identification of malware, attack vector, and possible exfiltration methods
- Experience with dynamic malware analysis
- Experience with volatile memory analysis
Northrop Grumman Corporation is a leading global security company whose 75,000 employees provide innovative systems, products, and solutions in aerospace, electronics, information systems and technical services to government and commercial customers worldwide.
Northrop Grumman is an Equal Opportunity Employer committed to hiring and retaining a diverse workforce regardless of age. U.S. Citizenship is required for most positions.
|
|
|
||
|---|---|---|---|
|
|
|
|