Digital Forensic Examiner, Senior

The Challenge:

You are a digital forensic examiner that figures out when a nefarious actor breached a system and what tools, tactics, and procedures they used. You understand the ever-evolving environment of cybersecurity and how new malware will affect different systems. You have a keen desire to learn and adapt to dynamic changes. Analytical thinking, attention to detail, and puzzle solving are among the many facets you possess. As a skilled forensic investigator, you can trace the trail of an intruder and know where and when artifacts are left on the system. Now imagine yourself in a place where you are no longer constrained by the "push-button" and "wipe-and-remediate" culture of incident response. A place where you will be afforded the time, resources, and toolsets to dive deep and explore the most advanced malware exemplars you have ever seen. A place where your technical skill is highly regarded, and you are readily given the education and training resources to expand your knowledge exponentially. Most importantly, it is a place where real impact is seen and many more untold accomplishments are made quietly in the shadows.

As a digital forensic examiner in our firm, you will no longer have to imagine a place like this, because it will become your reality. We have an immediate opportunity for a digital forensics and malware analyst like you. You will be conducting examinations and analysis of emerging threats and previously unknown malicious exploits. You will have access to industry leading tools and optimized technical environments. All while working alongside colleagues and clients united in their efforts to ensure our nation's security. Are you ready to make a difference and accelerate your technical development?

Empower change with us!

You Have:

  • 5+ years of experience with systems engineering and computing platforms, including Windows, OSX, and Linux

  • 5+ years of experience with forensic analysis techniques, including traditional disk image analysis, memory analysis, and malware analysis

  • 5+ years of experience with commercial off the shelf forensics products, including EnCase, SIFT, X-Ways, or Forensic Toolkit (FTK)

  • 5+ years of experience leading a team of forensic examiners with varying skill levels

  • Experience with Virtual Machines and using VMware to build diverse test harnesses of mixed virtual machine types, including Windows and Linux variants

  • Experience analyzing hosts compromised by malicious code and determining the chronology of events leading up to infection

  • TS/SCI clearance with a polygraph

  • Bachelor’s degree

Nice If You Have:

  • Experience with computer networking and network traffic analysis preferred

  • Experience writing scripts in Python

  • Ability to work in an environment of rapidly changing requirements in support of the client mission

  • Ability to work individually and collaboratively within a diverse team and proactively engage new tasking

  • Ability to analyze software deficiencies and give risk assessment of anomalies not resolved

  • Ability to document or present forensic findings during a formal review before peers or clients

  • · Ability to work with vague requirements, perform technical demonstrations, and investigate innovative technologies

  • · ACE, EnCE, GCFE, CCI, GREM, CHFI, GCFA, or CCFP Certification


Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; TS/SCI clearance with polygraph is required.

Build Your Career:

When you join Booz Allen, you’ll have the opportunity to connect with other professionals doing similar work across multiple markets. You’ll share best practices and work through challenges as you gain experience and mentoring to develop your career. In addition, you will have access to a wealth of training resources through our Digital University, an online learning portal where you can access more than 5000 tech courses, certifications and books. Build your technical skills through hands-on training on the latest tools and tech from our in-house experts. Pursuing certifications that directly impact your role? You may be able to take advantage of our tuition assistance, on-site courses, vendor relationships, and a network of experts who can give you helpful tips. We’ll help you develop the career you want as you chart your own course for success.

We’re an equal employment opportunity/affirmative action employer that empowers our people to fearlessly drive change – no matter their race, color, ethnicity, religion, sex (including pregnancy, childbirth, lactation, or related medical conditions), national origin, ancestry, age, marital status, sexual orientation, gender identity and expression, disability, veteran status, military or uniformed service member status, genetic information, or any other status protected by applicable federal, state, local, or international law.

Not ready to apply? Join our talent community and sign up for job alerts.