CI DIGITAL FORENSICS EXAMINER
Springfield, VA 
Share
Posted 1 month ago
Job Description
DESCRIPTION
To produce, on average, 48 weekly status reports and 12 final digital forensics reports annually, while providing support to CI Cyber Threat and Technical Analyst requirements.
REQUIREMENTS
Duties may include:
*Investigate suspected instances of computer, mobile device, and network penetrations.
*Ingest media into an archive, copy media images, and employ advanced media forensics tools during the course of a forensic examination (ENCASE and Windows Forensic Toolkit are two of the many tools used for media forensics).
*Investigate and eradicate computer viruses and malicious code and prepare, write, and present reports and briefings.
*Provide weekly status updates when conducting forensics.
*Provide a written report at the conclusion of each forensics examination. Reports will include, at a minimum, the following information (a template and standard operating procedures will be made available on site to provide additional guidance):
oCase File Number
oComputer Name
oUser Name, File Names, etc...
oBackground
oInvestigation Details
oStatus/Disposition
oRecommendations
oIntelligence Information Report (if deemed necessary by government lead)
*Personnel will conduct CI cyber inquiries to determine possible foreign intelligence entity involvement with an NGA computer system. In the process of conducting an inquiry, Reports of Inquiry must be produced and updated weekly. Reports will include, at a minimum, the following information (a template and standard operating procedures will be made available on site to provide additional guidance):
oCase File Number
oComputer Name
oUser Name
oBackground
oInvestigation Details
oStatus/Disposition

*Perform in-depth forensics examinations of computers, mobile devices, networks and other electronic and digital devices.
*Possess experience conducting computer forensics analysis within the Department of Defense and/or Intelligence Community.
*Attend periodic CI and law enforcement community cyber investigations awareness briefings.
*Brief CI cyber products and CI cyber service results to senior NGA leadership.
*Collaborate with internal and external Intelligence Community partners to share and gather technical threat information to enhance forensics examinations.
*Integrate information from forensics examinations and compile results into reports as required.
*Prepare and present forensic findings in the form of briefings and/or reports, to government leads and managers as required.
*Participate in Intelligence Community and Department of Defense technical exchange and collaboration meetings as required.
*Produce detailed CI cyber forensics reports as required.
*Provide support to all CI mission functions as required.
*Participate in IC Community and NGA technical meetings and working groups to address issues related to computer security and vulnerabilities.
*Investigate suspected instances of computer, mobile device, and network penetrations.
*Ingest media into an archive, copy media images, and employ advanced media forensics tools during the course of a forensic examination.
*Effectively utilize all applications and common analytic software tools (i.e., Word, Excel, PowerPoint, Analyst Notebook).

Skills and Experience:
Required:
*TS/SCI
*Level IV: Shall possess a minimum of 11 years of forensic experience in CI or CI cyber investigations. Level III: Shall possess a minimum of 7 years of continual forensics experience in CI or CI cyber investigations.
*Possess knowledge and understanding of foreign adversaries' security and intelligence services, terrorist organizations, and cyber threats posed to NGA, DoD and IC partners.
*Shall be a credentialed graduate of an accredited federal or DoD CI training academy (ex. FBI Academy, etc.).
*Shall possess a Bachelor's Degree in Computer Science, Engineering, or a related technical discipline,.
*Shall possess and maintain vendor-funded Encase certification as a computer forensics examiner.


PREFERRED
*Possess post-graduate degree in Computer Science, Engineering, or a related technical discipline.
*Digital Forensic Examiner certification(s) from the Defense Cyber Investigations Training Academy (DCITA) and/or Global Information Assurance Certification (GIAC).


Mission Essential considers all applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status. Mission Essential is an EEO/AA employer and a VEVRAA Federal Contractor.

 

Job Summary
Start Date
As soon as possible
Employment Term and Type
Regular, Full Time
Required Education
Bachelor's Degree
Required Experience
11+ years
Email this Job to Yourself or a Friend
Indicates required fields