Network Forensics Engineer
Network Forensics Engineer
Education: B.S. Computer Science or Computer Engineering, M.S. Plus
Security Clearance: Active TS SCI Security Clearance desired. TS SCI Security Clearance Eligible Required.
Description:
Perform as a member of an Incident Analysis Team chartered to utilize computer forensicdiscovery techniques to review and analyze attack tactics utilized during intrusion attempts against USAF, DoD, and Defense Industrial Base (DIB) information systems. The position requires knowledge and hands-on experience in the areas of networking, network security, scripting languages, web-based development, and open source research. Performs reverse engineering and analysis on new types of malicious software which could use techniques such as encryption, hashing, stealthy functionality, obfuscation, specific targeting & initiated time-triggered attacks. Conducts detailed assessments of COTS and GOTS network security tools to assist in determining specific applicability prior to implementation. Performs regular research of emerging network and computer system vulnerabilities and assists in the determination of the overall level of risk to DoD computer systems. The analyst will support the full spectrum of computer network operations and thus should be experienced in disassembling rootkits, performing behavioral & code analysis, bypassing authentication mechanisms, examining protected or packaged executables, and patching compiled executables. PreparesProvides technical briefings to peers and management.
Requirements:
Expertise in Microsoft Windows security provisions, UNIX file and security structures. Experience in conducting forensic examinations of networked and standalone computer systems. Familiarity with reverse engineering tools such as System Monitor, Process Explorer, Regshot, WinHEx, VMWare, IDA Pro, OllyDbg, Snort, and NetCat. Security Certifications such as Certified Computer Examiner, CISSP, GIAC highly desired. Security Clearance with Top Secret SCI eligibility required. May occasionally be required to travel outside of the United States
Education:
Requires Bachelor’s degree and seven to nine years of related experience with a minimum of four years experience in one or more of the following: computer network penetration testing and techniques;computer forensic analysis, and data recovery; computer intrusion analysis and incident response, intrusion detection; computer network surveillance/monitoring; network protocols, network devices, multiple operating systems, and secure architectures.
|
Computer Software 
