- Tyto Athene (Washington, DC)
- …+ Endpoint Logging (Windows, Linux) + Packet capture analysis + Forensics software ( Encase , FTK) + Must have strong analytical and organizational skills + Must have ... concise writing skills **Desired:** + Experience working a SOC and doing incident response is highly preferred **Location:** + This position is onsite in Washington, DC **Clearance:** + US Citizenship required with eligibility for Public Trust **About Tyto… more
- Tyto Athene (Ashburn, VA)
- …+ Utilize state-of-the-art technologies such as host forensics tools (FTK/ Encase ), Endpoint Detection & Response tools, log analysis (Splunk), and ... network forensics (full packet capture solution) to perform hunt and investigative activity to examine endpoint and network-based data + Conduct malware analysis, host and network, forensics, log analysis, and triage in support of incident response + Recognize… more
- Palo Alto Networks (Dallas, TX)
- …and compromised activity + Investigate data breaches leveraging forensics tools including Encase , FTK, X-Ways, SIFT, Splunk, and custom Unit 42 investigation tools ... Proficient with host-based forensics and data breach response + Experienced with EnCase , FTK, X-Ways, SIFT, Splunk, Volatility, WireShark, TCPDump, and open source… more
- Palo Alto Networks (Santa Clara, CA)
- …of malicious activity + Investigate data breaches leveraging forensics tools including Encase , FTK, X-Ways, SIFT, Splunk, and custom Crypsis investigation tools to ... Proficient with host-based forensics and data breach response + Experienced with EnCase , FTK, X-Ways, SIFT, Splunk, Redline, Volatility, WireShark, TCPDump, and open… more
- ARSIEM (Pensacola, FL)
- …the following tools and the basic techniques used to conduct an investigation: EnCase , Sleuth Kit, Helix. + Should be familiar with general concepts (keyword search, ... GIAC Reverse Engineering Malware (GREM), Certified Reverse Engineering Analyst (CREA), EnCase , or GIAC Certified Forensic Analyst (GCFA) is desired. Clearance… more
- Palo Alto Networks (Santa Clara, CA)
- …and compromised activity + Investigate data breaches leveraging forensics tools including Encase , FTK, X-Ways, SIFT, Splunk, and custom Unit 42 investigation tools ... with host-based forensics and data breach response + Experienced with EnCase , FTK, X-Ways, SIFT, Splunk, Volatility, WireShark, TCPDump, and open-source forensic… more
- Mission Support and Test Services (North Las Vegas, NV)
- …broad variety of computer forensic hardware and software (preferably familiar with EnCase , FTK, and other forensic suites) and incident investigation tools and ... + GIAC Cloud Threat Detection (GCTD) + Certified Computer Examiner (CCE) + EnCase Certified Examiner (EnCE) + GIAC Security Essentials (GSEC) + Certified Information… more
- Bristol Myers Squibb (Princeton, NJ)
- …and working experience with PC and mobile device collection tools (ex. EnCase , FTK, Redline, Volatility, Cellebrite, and MDM systems) + Demonstrated ability to ... a requirement. + Certified E-Discovery Specialist (CEDS) is a plus. + EnCase Certified Examiner (EnCE) and/or Certified Fraud Examiner (CFE) certifications a plus.… more
- Leidos (Bethesda, MD)
- …Forensics/eDiscovery/Document and Media Exploitation (DOMEX) processes and specialized tools (ie FTK, enCase , or similar). + Past performance as a media examiner in ... support of DOD or IC customers. At Leidos, we don't want someone who "fits the mold"-we want someone who melts it down and builds something better. This is a role for the restless, the over-caffeinated, the ones who ask, "what's next?" before the dust settles… more
- Nightwing (Sterling, VA)
- …with two or more of the following tools: Host forensics software ( EnCase , FTK, X-Ways, Sleuth Kit/Autopsy) SIFT Volatility KAPE WireShark Splunk Elastic- Proficiency ... conducting all-source research. Required Education: BS Computer Science, Cyber Security, Computer Engineering, or related degree; or HS Diploma & 7-9 years of network/host investigations experience. Desired Certifications: (One or More) GCFE, GCFA, GCLD, GCPS,… more
- Nightwing (Sterling, VA)
- …Experience with or knowledge of two or more of the following tools: EnCase FTK SIFT X-Ways Volatility WireShark Sleuth Kit/Autopsy Splunk Snort Other EDR Tools ... (Crowdstrike, Carbon Black, Etc)- Proficiency with conducting all-source research.Required Education:BS Computer Science, Cybersecurity, Computer Engineering or related degree; or HS Diploma and 10+ years of host or digital forensics experienceDesired… more
- Nightwing (Sterling, VA)
- …with two or more of the following tools: Host forensics software ( EnCase , FTK, X-Ways, Sleuth Kit/Autopsy) SIFT Volatility KAPE WireShark Splunk- Proficiency ... conducting all-source research. Required Education: BS Computer Science, Cyber Security, Computer Engineering, or related degree; or HS Diploma & 10 years of network investigations experience. Desired Certifications: (One or More) GCFE, GCFA, GCLD, GCPS, GCPN,… more
- Nightwing (Arlington, VA)
- …Desired Skills: - Experience with two or more of the following tools: EnCase FTK SIFT X-Ways Volatility WireShark Sleuth Kit/Autopsy Splunk Snort Other EDR Tools ... (Crowdstrike, Carbon Black, etc) - Experience with conducting all-source research. Required Education: BS Computer Science, Computer Engineering, Computer Information Systems, Computer Systems Engineering or related degree. Two years of related work experience… more
- Palo Alto Networks (Chicago, IL)
- …and threat landscape + Experience using forensics tools such as EnCase , FTK, SleuthKit, Volatility, etc. + Analysis experience and operational understanding ... of one or more major operating systems (Microsoft Windows, Linux, or Mac) + Knowledge of common malware persistence mechanisms + Experience identifying and triaging malware + Experience leading technical breach response teams in fast-paced environment + 10… more
- Unum Group (Dunwoody, GA)
- …Incident Response and case management. + Forensic tools such as Oxygen, encase , Atola Forensic equipment + Experience in implementing and operating security ... technology such as firewalls, multi-level security implementation, security assessment scanners, and security monitoring tools (eg IDS/IPS, SEIM, AV, Qualys, etc.) + Experience in application and network security assessment methodologies, tools, and techniques… more
- Alaka'ina Foundation Family of Companies (Honolulu, HI)
- …Monitors: (Zeek/Suricata, etc.) + Digital Forensic solutions for Hard Drive Imaging analysis: ( EnCase , FTK Imager, etc.) + Memory Analysis tools for analysis of SWAP ... & RAM: (Volatility, etc.) + Host analysis HID/HIP and other Host solutions: (Trellix HBSS/ePO, Tychon/Tanium, etc.) REQUIRED CITIZENSHIP AND CLEARANCE: + Must be a US Citizen. + Must have a TOP SECRET/SCI clearance OR a SECRET clearance with the ability to… more
- ENS Solutions (College Park, MD)
- …or CND Certification. Optional Qualifications: + Experience with Gigamon, Ansible, Encase , Fidelis, Suricata, Varonis, or VMWare tools + Experience with Cloud ... Enterprise, authorizing cloud systems, and Cloud services, including AWS, Azure, or GCP + Experience with big data analytics, machine learning, artificial intelligence, or anomaly detection + Experience with Zero-Trust Architecture + Experience with DevSecOps,… more
- The Salvation Army (West Nyack, NY)
- …(SOAR) platforms (eg, Palo Alto XSOAR, Swimlane) * Forensics Tools: EnCase , FTK, Autopsy, Volatility * Threat Intel Platforms: Recorded Future, ThreatConnect, ... MISP * Ticketing Systems: ZenDesk, ServiceNow, Jira, Remedy + Framework Proficiency: * Incident Response Lifecycle (NIST SP 800-61, PICERL model) * Knowledge of MITRE ATT&CK Framework * Vulnerability Management & Prioritization * Disaster Recovery & Business… more
- Leidos (Ashburn, VA)
- …prior to restitution. + Utilize state of the art forensic tools(FTK/ Encase ,etc.) to perform computer, mobile phone forensics and memory analysis (volatility, ... rekall) in support of incident response. + Conduct reverse engineering of suspicious files utilizing dynamic, automated and static analysis. + Properly preserve evidence, maintain chain of custody and write malware analysis or forensic reports. + Recognize… more
- TE Connectivity (Berwyn, IL)
- …pursue after joining). + Computer forensic skills (eg, MS Excel, dtSearch, Encase , Clearwell, Tableau, ACL, etc.) and IT analytic skills preferred. Experience in ... SAP is a plus. + Good interviewing skills, good command of written and verbal communication in English (and Spanish for AMER region). A second foreign language is a plus. + Work will be divided between fraud investigation / forensic accounting and computer… more
