Digital Forensic Examiner/Reverse Engineer

Key Role:

Provide software, hardware, and wireless, including mobile forensic examination, support to the client based on submitted requirements for functionality and use of tools that have been developed. Leverage technical comprehension of relationships, dependencies, and requirements of hardware and software components. Interpret submitted documentation, including user and functional requirements and analyze the development of forensic examination reports according to a template to be provided to the client as a final deliverable.

Basic Qualifications:

-8+ years of experience with systems engineering and computing platforms, including Windows, Mac OSX, and Linux

-3+ years of experience with advanced forensic analysis techniques, including traditional disk image analysis, memory analysis, and malware analysis

-3+ years of experience with malware reverse engineering conducting both static and dynamic binary analysis of Windows PE and Linux-based binaries

-Experience with commercial off the shelf forensics products, including Ida Pro, Ghidra, Olly Dbg, Volatility, EnCase, SANS SIFT Kit, X-Ways, or Forensic Toolkit

-Experience with Virtual Machines and using VMware to build diverse test harnesses of mixed virtual machine types, including Windows and Linux variants

-Ability to analyze deficiencies in tools tested and give risk assessment of anomalies not resolved

-Ability to document or present forensic findings during a formal review before peers or clients

-TS/SCI clearance with a polygraph required

-BA or BS degree required

Additional Qualifications:

-Experience with computer networking and network traffic analysis preferred

-Experience with writing scripts in Python

-Ability to work in an environment of rapidly changing requirements in support of the client mission

-ACE, EnCE, GCFE, CCI, GREM, CHFI, GCFA, or CCFP Forensics Certifications

Clearance:

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; TS/SCI clearance with polygraph is required.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, veteran status, or other protected characteristic—to fearlessly drive change.

#LI-AH1, CJ1, NSG1, WP1

Not ready to apply? Join our talent community and sign up for job alerts.