• Cyber Forensic Analyst, Sr.

    Location US-MD-Ft. Meade
    Posted Date 2 weeks ago(2 weeks ago)
    Job ID
    N-1741
    # Positions
    1
    Experience (Years)
    8
    Category
    Cyber Security
  • Overview

    WOOD is currently hiring a Sr. Level Network Forensic Analyst to perform analysis in support of cyber operations. Collaborate with analytical counterparts across the IC- apply knowledge of network fundamentals, open source tools and current implementations of those technologies in order to devise all-source analytic/collection strategies to pursue access and exploitation of targets of interest. 

     

    Responsibilities

    • Perform all-source intelligence analyses of cyber activities to identify entities of interest; their methods, motives, and capabilities; determine malicious behavior; and recognize emergent patterns and linkages to visualize the larger picture of cyber-based operations
    • The analyst should also have familiarity with malicious code (malware) and transmission schemes so as to perform technical analysis against target systems and networks, characterize target network capabilities and vulnerabilities, and support development of new techniques to exploit targets
    • Perform extensive post-mission, produce technical intelligence reports in support of special programs and provide expertise and leadership to the team in the development of analytical models and assessments
    • Duties may include writing forensics and/or incident response reports, investigating computer attacks, and extracting data from electronic systems and training team members on analysis, tools or reporting

     

    Qualifications

    *All Candidates must have a TS/SCI clearance with a Polygraph

    • Shall have a minimum of eight (8) continuous years of work experience in network and vulnerability analysis, or a combination of a minimum of five (5) continuous years of work experience in network and vulnerability analysis and a Bachelor’s degree in an applicable (math, science, computers, engineering) field
    • Work experience shall include five (5) years of IC experience in network and vulnerability analysis
    • Shall have demonstrated expertise related to the use of relevant Computer Network Operations (CNO) and SIGINT tools and databases used for the customer mission
    • Shall also demonstrate analytic ability to discover unknown, suspicious or exploitation activity, be able to provide briefings of intrusion set activity to partner organizations/agencies, and be knowledgeable about all forms of reporting and experienced with creating each product type, and thus be able to organize training for other team members on analysis, tools, or reporting
    • Shall have demonstrated skills working through the SIGINT and/or other intelligence disciplines' production processes, to include tasking, researching, processing, reporting, and disseminating of collection, information, or final products
    • Shall demonstrate the ability to understand and interpret technical data through knowledge of technologies and network topologies
    • Shall have demonstrated expertise in documenting information and processes and gathering intelligence information of an identified threat activity through SIGINT and/or other intelligence disciplines, Internet, and other research means
    • Experience in the computer network operations analyzing vulnerabilities and mitigating threats, with an emphasis on forensics and defensive triage operations
    • Capability to administer computer networks and set up modeling and simulation enclaves
    • Intimate knowledge of the DoD intrusion detection and forensic capabilities

    Required Tools/Certifications: Wireshark/Ethereal, Nessus, Snort, tcpdump, tcp wrapper, IDS (various), ISS scanner, eEye digital vulnerability scanner, <forensics work at host, network, or software levels>, <penetration testing work>, <malware, spyware, botnet work>, GCFIH, CNDA, DoD Forensic examiner, DoD Media Collector, Security+,  Nmap, SSCP, Cisco CCNA ( and other Cisco related network certs),  Network+, Net Impact

     

    Preferred Tools/CertificationsIDA Pro, MetaSploit, EnCase, Cain and Abel, John the Ripper, Ollydebug, HBSS, GSEC, GCIA, GPEN, GCFW, GCFA, CORE Impact, DoD certified basic digital media collector, Paraben

     

     

    WOOD Consulting Services is headquartered in Fulton, Maryland with an office in Washington, DC. WOOD embraces a simple philosophy… take care of our people and they will take care of our customers. We seek to hire and retain high caliber-talent to meet the needs of our customers with excellent services. For over 20 years, WOOD has followed that philosophy and built a reputation as reliable mission-enablers helping U.S. agencies achieve mission success.

     

    WOOD is an Equal Employment Opportunity Employer; all qualified applicants are encouraged to apply and will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, or veteran status.

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed