Cyber Host Forensic Analyst III

Nightwing is supporting a U.S. Government customer to provide support for onsite incident response to civilian Government agencies and critical asset owners who experience cyber-attacks, providing immediate investigation and resolution. Contract personnel perform investigations to characterize of the severity of breaches, develop mitigation plans, and assist with the restoration of services. Nightwing is seeking a Host Forensics Analyst to support this critical customer mission. Responsibilities:- Assisting Federal leads with overseeing and leading forensic teams at onsite engagements by coordinating evidence collection operations- Providing technical assistance on digital evidence matters and forensic investigative techniques to appropriate personnel when necessary- Writing in-depth reports, supports with peer reviews and provides quality assurance reviews for junior personnel- Supporting forensic analysis and mentoring/providing guidance to others on data collection, analysis and reporting in support of onsite engagements.- Assisting with leading and coordinating forensic teams in preliminary investigation- Planning, coordinating and directing the inventory, examination and comprehensive technical analysis of computer related evidence- Distilling analytic findings into executive summaries and in-depth technical reports- Serving as technical forensics liaison to stakeholders and explaining investigation details to include forensic methodologies and protocols-

Tracking and documenting on-site incident response activities and providing updates to leadership throughout the engagement- Evaluating, extracting and analyzing suspected malicious codeRequired Skills:- U.S. Citizenship- Must have an active TS/SCI clearance- Must be able to obtain DHS Suitability- 8+ years of directly relevant experience in cyber forensic investigations using leading edge technologies and industry standard forensic tools- Ability to create forensically sound duplicates of evidence (forensic images)- Able to write cyber investigative reports documenting digital forensics findings- Experience with the analysis and characterization of cyber attacks- Experience with proper evidence handing procedures and chain of custody protocols- Skilled in identifying different classes of attacks and attack stages- Knowledge of system and application security threats and vulnerabilities- Knowledgeable in proactive analysis of systems and networks, to include creating trust levels of critical resources- Must be able to work collaboratively across physical locations.Desired Skills:- Experience with or knowledge of two or more of the following tools:--- EnCase--- FTK--- SIFT--- X-Ways--- Volatility--- WireShark--- Sleuth Kit/Autopsy--- Splunk--- Snort--- Other EDR Tools (Crowdstrike, Carbon Black, Etc)- Proficiency with conducting all-source research.Required Education:BS Computer Science, Cybersecurity, Computer Engineering or related degree; or HS Diploma and 10+ years of host or digital forensics experienceDesired Certifications:- GCFA, GCFE, EnCE, CCE, CFCE, CISSP

At Nightwing, we value collaboration and teamwork. You'll have the opportunity to work alongside talented individuals who are passionate about what they do. Together, we'll leverage our collective expertise to drive innovation, solve complex problems, and deliver exceptional results for our clients. Thank you for considering joining us as we embark on this new journey and shape the future of cybersecurity and intelligence together as part of the Nightwing team. Nightwing is An Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age or any other federally protected class.