Forensics Lead
MANTECH · Chandler, AZ · 3 wk ago
On-siteManagementFull-time
Key Responsibilities
- Conduct remote imaging and digital media analysis using enterprise forensic tools.
- Perform reverse engineering of malicious code to identify indicators of compromise.
- Support legal and investigative organizations by preserving forensically sound data.
- Respond to email attacks by identifying and blocking malicious domains and metadata.
- Thwart Advanced Persistent Threats (APT) using forensic "kill chain" processes.
Minimum Qualifications
- Bachelor's Degree.
- 5+ years of security-related experience with extensive digital forensics background.
- One of the following certifications: CISSP (Associate), CCSP, SSCP, GMON, GCIH, GCIA, GECD, CEH, or CASP.
- One of the following DOD 8570 CSSP skills: APT threat hunting, incident response, malware analysis, or post-quantum computing.
Preferred Skills
- Experience in a malware analysis lab using VM sandboxing and packet-level traffic analysis.
- Tech expertise in performing packet-level traffic analysis.
Clearance Requirements
- Must be a U.S. Citizen.
- Active Secret clearance, AND TS/SCI Eligibility.
- MUST be able to obtain and maintain an ICE Entry on Duty (EOD).
- Must pass a suitability check.
Physical Requirements
- Must be able to remain in a stationary position 50% of the time.
- Occasionally move about inside the office to access file cabinets, office machinery, or to communicate with co-workers and customers.
- Proven ability to reverse engineer malicious code and identify indicators of compromise.
- Experience supporting legal organizations with forensically sound data preservation.
- Experience with post-quantum computing assessment/implementation.