ZipRecruiter

Log In

1

Cloud Forensics Jobs (NOW HIRING)

Cybervance

Mid-Level Forensics Analyst

Portland, OR

Familiarity with cloud, SaaS, or email forensics (e.g., M365, cloud platforms). * Scripting or automation experience (Python, PowerShell, Bash). * Certifications such as GCFA, GCIH, CHFI, EnCE, or ...

New

ECS

Cyber Defense Forensics Analysts - Mid

Washington, DC · On-site

$102K - $117K/yr

Solid understanding of attacker tradecraft associated with email, app-based, cloud threats and the ... Experience using forensic tools (e.g., EnCase, Sleuthkit, FTK). * Ability to perform deep analysis ...

SAIC

Digital Forensics Analyst

Chantilly, VA

Conduct forensic acquisition and analysis on computer, mobile, IOT, digital media devices, AWS/cloud instances and any other unidentified or non-standard media. * Ability to capture volatile data ...

next page

Showing results 1-20

People also search for

All JobsCloud Forensics Jobs

Cloud Forensics information

See salary details

$10

$64

$92

How much do cloud forensics jobs pay per hour?

As of Jun 7, 2026, the average hourly pay for cloud forensics in the United States is $64.53, according to ZipRecruiter salary data. Most workers in this role earn between $56.25 and $76.68 per hour, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as a Cloud Forensics Specialist, and why are they important?

To thrive as a Cloud Forensics Specialist, you need expertise in digital forensics, cloud computing environments, and incident response, often supported by a degree in computer science or cybersecurity and relevant certifications. Familiarity with tools like EnCase, FTK, X-Ways, and cloud platforms such as AWS, Azure, or Google Cloud, as well as certifications like AWS Certified Security or GIAC Cloud Forensics, is typically required. Strong analytical thinking, attention to detail, and effective communication are crucial soft skills for investigating incidents and conveying findings clearly. These competencies are vital for effectively investigating cyber incidents in complex cloud infrastructures and ensuring organizational security and compliance.

What are Cloud Forensics?

Cloud forensics involves the application of digital forensic principles and techniques to cloud computing environments. This field focuses on investigating, collecting, preserving, and analyzing digital evidence from cloud-based systems in order to support legal or organizational investigations. Cloud forensics requires specialized approaches due to the complexity of cloud architectures, the shared responsibility model, and potential jurisdictional challenges. Professionals must understand cloud platforms, service models, and tools to effectively trace activities and reconstruct events in the cloud. As cloud adoption grows, cloud forensics plays an essential role in cybersecurity and incident response.

What are some common challenges faced by professionals in cloud forensics, and how can they be addressed?

Professionals in cloud forensics often encounter challenges such as limited access to physical hardware, data distributed across multiple geographic locations, and rapidly changing cloud service architectures. To address these issues, it’s important to stay updated on cloud provider policies, leverage specialized forensic tools designed for cloud environments, and maintain clear communication with cloud service providers. Building strong documentation practices and collaborating closely with IT and security teams can also help overcome these obstacles and ensure successful investigations.

What is the difference between Cloud Forensics vs Cloud Security Analyst?

AspectCloud ForensicsCloud Security Analyst
Required CredentialsCertifications like GCFA, GCFE, CISSPCISSP, CCSP, Security+
Work EnvironmentInvestigating security incidents, analyzing digital evidence in cloud environmentsMonitoring, implementing security measures, risk assessment in cloud platforms
Employer & Industry UsageCybersecurity firms, law enforcement, enterprise IT teamsIT departments, cloud service providers, enterprise organizations
Common Search & Comparison IntentUnderstanding forensic roles in cloud securitySecurity analysis and prevention in cloud environments

Cloud Forensics focuses on investigating security incidents and analyzing digital evidence within cloud environments, often requiring specialized certifications. Cloud Security Analysts primarily monitor, implement, and manage security measures to prevent breaches. While both roles operate in cloud security, Cloud Forensics is more investigative, whereas Cloud Security Analysts focus on proactive defense and risk management.

More about Cloud Forensics jobs
What cities are hiring for Cloud Forensics jobs? Cities with the most Cloud Forensics job openings:
What states have the most Cloud Forensics jobs? States with the most job openings for Cloud Forensics jobs include:
What job categories do people searching Cloud Forensics jobs look for? The top searched job categories for Cloud Forensics jobs are:
Cloud Forensics jobs near you
Infographic showing various Cloud Forensics job openings in the United States as of May 2026, with employment types broken down into 50% Full Time, and 50% Contract. Highlights an 79% Physical, 6% Hybrid, and 15% Remote job distribution, with an average salary of $134,230 per year, or $64.5 per hour.
Mid-Level Forensics Analyst

Mid-Level Forensics Analyst

Cybervance

Portland, OR

Full-time

Posted 2 days ago

Job description




Position Title: Mid-Level Digital Forensics Analyst

Location:Portland, OR | Full-Time

Cybervance is a rapidly growing information security and information technology company based in Washington, D.C., and we are an equal opportunity employer.

Cybervance combines advanced cybersecurity expertise with proven federal contracting experience to deliver innovated, mission-focused solutions for U.S. Government agencies. We are committed to helping our partners achieve measurable improvements in security and resilience.

We are seeking a full-time Mid-Level Digital Forensics Analyst who supports and conducts digital forensic investigations related to cybersecurity incidents, insider threats, data loss, and policy or regulatory inquiries. This role performs handson forensic analysis under established methodologies while working closely with senior forensics staff, incident response teams, and legal or compliance stakeholders.

The ideal candidate has practical forensic experience, strong attention to evidentiary detail, and the ability to independently analyze systems while escalating complex findings appropriately.

Responsibilities

  • Conduct forensic analysis on endpoints, servers, and removable media.
  • Acquire, preserve, and analyze digital evidence in accordance with forensic best practices.
  • Perform disk, memory, and artifact analysis to identify user activity, malware, or unauthorized access.
  • Support investigations involving security incidents, insider activity, and data exfiltration.
  • Assist incident response teams with forensic scoping, timeline creation, and root cause analysis.
  • Analyze forensic artifacts to determine attack vectors, persistence mechanisms, and impact.
  • Identify indicators of compromise (IOCs) and support remediation efforts.
  • Maintain proper evidence handling and chainofcustody documentation.
  • Produce clear forensic notes, findings, and supporting artifacts.
  • Contribute to forensic and incident reports used by technical, legal, or leadership teams.
  • Utilize forensic tools for data acquisition, analysis, and reporting.
  • Perform artifact validation and crossverification to ensure analytical accuracy.
  • Support improvements to forensic workflows and repeatable procedures.
  • Work closely with senior forensic analysts and incident responders.
  • Participate in tabletop exercises, incident reviews, and training activities.
  • Continue skill development in forensic techniques, tools, and emerging technologies. Required Skills & Qualifications
  • 3-5 years of experience in digital forensics, incident response, or cybersecurity analysis.
  • Handson experience performing forensic acquisitions and analysis.
  • Solid understanding of:
    • Windows and Linux operating systems
    • File systems, logs, and system artifacts
    • Common attacker behaviors and malware indicators
  • Strong documentation and written communication skills.
  • Ability to follow evidence handling and legal defensibility requirements.

Preferred Qualifications

  • Experience with memory forensics, log correlation, or malware triage.
  • Familiarity with cloud, SaaS, or email forensics (e.g., M365, cloud platforms).
  • Scripting or automation experience (Python, PowerShell, Bash).
  • Certifications such as GCFA, GCIH, CHFI, EnCE, or equivalent.
  • Experience in regulated, enterprise, or government environments.
Employment Type: FULL_TIME

Apply