ZipRecruiter

Log In

1

Computer Forensics Analyst Jobs (NOW HIRING)

NewGen

Host Forensics Analyst

Arlington, VA · On-site

Active TS/SCI Clearance * Must be able to obtain DHS Suitability * BS Computer Science ... forensics findings * Experience with the analysis and characterization of cyber attacks

BCMC

Host Forensics Analyst

Arlington, VA · On-site

BCMC is seeking Host Forensics Analysts to support this critical customer mission. Responsibilities ... Required Education: BS Computer Science, Cybersecurity, Computer Engineering or related degree; or ...

Cybervance, Inc

Forensics Analyst Lead

Portland, OR · On-site +1

Forensics Analyst Lead Location: Portland, OR | Full-Time Cybervance is a rapidly growing information security and information technology company based in Washington, D.C., and we are an equal ...

Cybervance

Forensics Analyst Lead

Portland, OR · On-site

Forensics Analyst Lead Location: Portland, OR | Full-Time Cybervance is a rapidly growing information security and information technology company based in Washington, D.C., and we are an equal ...

BCMC

Host Forensics Analyst

Arlington, VA · On-site

Supporting forensic analysis and mentoring/providing guidance to others on data collection ... Ability to create forensically sound duplicates of computer systems (forensic images) * Able to ...

Beyond SOF

Forensics Analyst II

San Antonio, TX · On-site

Perform initial analysis of log files, evidence and other information. * Utilize data decryption tools. * Perform forensic incident handling tasks (such as forensic collections, host analysis ...

Defianx

Digital Forensics Analyst

Tysons, VA · On-site

The Digital Forensics Analyst is responsible for collecting, preserving, analyzing, and documenting digital evidence associated with cybersecurity incidents, investigations, legal proceedings, and ...

Peraton

Digital Forensics Analyst

Herndon, VA · On-site

$104K - $166K/yr

D. in Computer Science, Cybersecurity, Data Science, Information Systems, Information Technology ... Demonstrated expertise in disk/memory forensics, network traffic analysis, cloud artifact ...

Cyber Centaurs

Digital Forensics Analyst

Orlando, FL · On-site

Digital Forensics Analyst (Litigation & Investigations) Central Florida (Orlando Area)Hybrid ... Knowledge of Computer Hardware * Stronganalytical thinking and attention to detail * Abilityto work ...

next page

Showing results 1-20

People also search for

All JobsComputer Forensics Analyst Jobs

Computer Forensics Analyst information

See salary details

$65K

$101.7K

$156K

How much do computer forensics analyst jobs pay per year?

As of Jun 19, 2026, the average yearly pay for computer forensics analyst in the United States is $101,672.00, according to ZipRecruiter salary data. Most workers in this role earn between $75,000.00 and $122,000.00 per year, depending on experience, location, and employer.

What does a Computer Forensics Analyst do?

A Computer Forensics Analyst is a cybersecurity professional who investigates digital devices and networks to uncover evidence of crimes or security breaches. They collect, analyze, and preserve data from computers, mobile devices, and other digital storage media, ensuring that the evidence remains admissible in court. These analysts often work with law enforcement agencies, legal teams, or private companies to identify how cybercrimes occurred and to help prevent future incidents.

What are the key skills and qualifications needed to thrive as a Computer Forensics Analyst, and why are they important?

To thrive as a Computer Forensics Analyst, you need a solid understanding of cybersecurity principles, computer systems, and digital evidence handling, often supported by a degree in computer science, cybersecurity, or a related field. Proficiency in forensic tools like EnCase, FTK, and familiarity with operating systems, as well as certifications such as GIAC Certified Forensic Analyst (GCFA) or Certified Computer Examiner (CCE), are typically required. Attention to detail, analytical thinking, and strong written communication skills help analysts effectively investigate incidents and present findings. These competencies are crucial for accurately uncovering digital evidence, supporting legal processes, and maintaining the integrity of investigations.

How much do computer forensic analysts make?

Computer forensic analysts typically earn a median annual salary of around $70,000 to $100,000, depending on experience, certifications, and location. Entry-level positions may start lower, while experienced analysts with specialized skills or certifications can earn higher salaries, especially in high-demand areas or with law enforcement agencies.

What are some common challenges faced by Computer Forensics Analysts during investigations?

Computer Forensics Analysts often encounter challenges such as dealing with encrypted or deleted data, rapidly evolving technology, and maintaining the integrity of digital evidence. They must also ensure that their investigative methods comply with legal and regulatory standards to ensure evidence is admissible in court. Additionally, analysts frequently work under tight deadlines and may need to collaborate closely with law enforcement, legal teams, and IT departments to piece together complex digital trails.

What does a computer forensic analyst do?

A computer forensic analyst investigates digital devices to recover, analyze, and preserve electronic evidence for legal or security purposes. They use specialized tools and techniques to examine data from computers, servers, and mobile devices, often working closely with law enforcement or cybersecurity teams. The role requires attention to detail, knowledge of digital forensics software, and adherence to legal standards for evidence handling.

How do you become a computer forensic analyst?

To become a computer forensic analyst, individuals typically need a bachelor's degree in computer science, cybersecurity, or a related field. Gaining experience with digital forensics tools and techniques, obtaining certifications such as the Certified Computer Forensics Examiner (CCFE) or EnCase Certified Examiner (EnCE), and developing strong analytical and technical skills are also important steps in entering the profession.

What Does a Computer Forensics Analyst Do?

As a computer forensics analyst, your duties focus on investigating electronic data and digital devices for law enforcement purposes. Your responsibilities include obtaining, accessing, and analyzing data from hard drives, emails, smartphones, and tablets. In this career, you may investigate cyber crimes (which take place on the internet) or gather digital evidence for other types of criminal investigations. In addition to collecting information, you retrieve data that someone destroyed, deleted, or obscured to hide evidence of a crime. Computer forensic analysts work for law enforcement agencies, private contractors, lawyers, or corporations. Some computer experts work on a freelance basis.

What is the difference between Computer Forensics Analyst vs Digital Forensics Specialist?

AspectComputer Forensics AnalystDigital Forensics Specialist
CertificationsEnCE, GCFAEnCE, GCFA
Work EnvironmentLaw enforcement, corporate security, consulting firmsLaw enforcement, government agencies, private sector
Industry UsageCommonly used in investigations and legal casesUsed in incident response and cybersecurity investigations

Both roles involve analyzing digital evidence, often requiring similar certifications like EnCE and GCFA. The main difference lies in their focus: Computer Forensics Analysts typically work on legal cases and investigations, while Digital Forensics Specialists often focus on incident response and cybersecurity threats. Both roles are vital in digital security and forensics fields, with overlapping skills and work environments.

Is AI taking over forensics?

Computer Forensics Analysts use AI tools to assist in analyzing large volumes of digital evidence more efficiently. While AI can automate certain tasks like data sorting and pattern recognition, human expertise remains essential for interpretation, decision-making, and ensuring the integrity of forensic investigations.
More about Computer Forensics Analyst jobs
What cities are hiring for Computer Forensics Analyst jobs? Cities with the most Computer Forensics Analyst job openings:
What are the most commonly searched types of Computer Forensics Analyst jobs? The most popular types of Computer Forensics Analyst jobs are:
Who are the top companies hiring for Computer Forensics Analyst jobs? The top employers for Computer Forensics Analyst jobs are:
What states have the most Computer Forensics Analyst jobs? States with the most job openings for Computer Forensics Analyst jobs include:
What job categories do people searching Computer Forensics Analyst jobs look for? The top searched job categories for Computer Forensics Analyst jobs are:
What are popular job titles related to Computer Forensics Analyst jobs? For Computer Forensics Analyst jobs, the most frequently searched job titles are:
Computer Forensics Analyst jobs near you

Mobile Threat & Forensics Analyst

SPECIAL AEROSPACE SECURITY SERVICES INC

Washington, DC • On-site

Full-time

Posted 28 days ago

Job description

Mobile Threat & Forensics Analyst

Location: Arlington, VA (Hybrid: Onsite & Remote)
Clearance Required: Active Secret Clearance Required (TS/SCI strongly preferred)
Employment Type: Full-Time, Regular


Position Overview

Special Aerospace Security Services, Inc. (SASSI) is seeking a highly motivated Mobile Threat & Forensics Analyst to support a U.S. Government customer in delivering advanced mobile security, malware analysis, digital forensics, and incident response support services within enterprise cybersecurity environments.

This position supports evolving cybersecurity operations focused on mobile threats, advanced forensic investigations, malware analysis, phishing investigations, mobile application analysis, and proactive threat identification activities across both traditional and mobile platforms. The selected candidate will work closely with cybersecurity operations, threat intelligence, incident response, and enterprise security teams to support investigative, analytical, and operational cybersecurity missions.

SASSI is seeking candidates capable of supporting complex investigative and analytical activities with minimal oversight while operating within fast-paced operational environments supporting federal cybersecurity missions.

Work Environment

This is a hybrid position requiring a combination of onsite support in Arlington, VA and remote work.

Candidates must be able to:

  • Maintain availability during core business hours (Monday–Friday)
  • Support onsite mission requirements, classified work, and collaborative operational activities
  • Participate in incident response, investigative, and operational activities as required
  • Remain responsive and engaged during remote support activities through Microsoft Teams, email, and other communication platforms

Key Responsibilities

  • Perform malware analysis utilizing static and dynamic analysis techniques to identify malicious behavior, persistence mechanisms, attack vectors, and indicators of compromise (IOCs)
  • Conduct digital forensic analysis of systems, removable media, and mobile devices involved in cybersecurity incidents or investigations
  • Perform mobile device forensic analysis across iOS and Android platforms utilizing forensic acquisition and analysis tools
  • Investigate phishing emails, malicious attachments, suspicious URLs, spoofed domains, and command-and-control (C2) communications
  • Analyze mobile applications, APK/IPA files, suspicious software, and mobile-specific attack techniques
  • Capture and analyze volatile memory, logs, browser artifacts, system activity, and forensic evidence from compromised devices and systems
  • Support proactive threat identification, mobile threat analysis, and investigative activities across enterprise environments
  • Develop indicators of compromise (IOCs), signatures, YARA rules, detection logic, and analytical findings to support threat detection and incident response
  • Collaborate with cybersecurity operations, threat intelligence, vulnerability management, and incident response teams
  • Prepare technical reports, forensic findings, investigative summaries, and operational briefings
  • Maintain proper evidence handling, chain-of-custody, and investigative documentation procedures
  • Support analysis of emerging threats, malware trends, and mobile security risks impacting enterprise environments

Required Qualifications (Mid-Level)

  • U.S. Citizenship required
  • Active Secret clearance required
  • Bachelor’s degree in Cybersecurity, Computer Science, Digital Forensics, Information Technology, Computer Engineering, or related discipline (equivalent experience considered)
  • Minimum 5 years of experience supporting cybersecurity operations, malware analysis, digital forensics, incident response, mobile security, or related investigative activities
  • Experience supporting forensic investigations involving Windows, Linux, iOS, and/or Android platforms
  • Experience analyzing phishing emails, malicious files, suspicious URLs, and indicators of compromise
  • Familiarity with malware analysis concepts, digital forensic methodologies, and incident response procedures
  • Experience utilizing cybersecurity and forensic tools such as:
    • Cellebrite
    • FTK
    • EnCase
    • Volatility
    • Wireshark
    • IDA Pro
    • Ghidra
    • X-Ways
    • VirusTotal
    • Sandbox analysis platforms
  • Understanding of operating systems, file systems, executable formats, and network protocols
  • Experience with scripting or automation using Python, PowerShell, Bash, or similar languages
  • Strong analytical, investigative, documentation, and communication skills
  • Ability to work independently within operational cybersecurity environments

Preferred Qualifications (Senior-Level Experience)

Candidates possessing one or more of the following advanced qualifications are strongly preferred:

  • 8+ years of experience supporting malware analysis, mobile security, digital forensics, threat hunting, or incident response operations
  • Advanced experience conducting mobile forensic investigations across iOS and Android platforms
  • Experience with advanced mobile extraction methodologies and tools such as:
    • Cellebrite Premium
    • GrayKey
    • Oxygen Forensics
  • Experience performing reverse engineering and analysis of malicious mobile applications, APK/IPA files, and mobile malware
  • Experience analyzing nation-state, spyware, or advanced persistent threat (APT) activity targeting mobile platforms
  • Familiarity with Android and iOS internals, mobile operating system artifacts, SQLite databases, plist files, logs, and mobile telemetry
  • Experience supporting enterprise mobile security initiatives, including Mobile Device Management (MDM) or Enterprise Mobility Management (EMM) environments
  • Experience performing proactive threat hunting, detection engineering, or advanced forensic analysis activities
  • Experience supporting classified, federal, or national security cybersecurity environments
  • Ability to mentor junior analysts and support complex investigative or incident response activities with minimal oversight

Preferred Certifications

One or more of the following certifications is preferred:

  • GREM
  • GCFA
  • GNFA
  • GCIH
  • GCED
  • CISSP
  • CASP+
  • CySA+
  • Security+
  • CREA
  • OSCP / OSEP
  • CEH

Desired Technical Skills

  • Malware analysis and reverse engineering
  • Mobile device forensics
  • Mobile malware analysis
  • Digital forensics and incident response
  • Threat hunting and threat analysis
  • Phishing and email analysis
  • URL/domain analysis
  • Network traffic analysis
  • Enterprise cybersecurity operations
  • Scripting and automation
  • Threat intelligence and IOC development
  • MITRE ATT&CK framework familiarity


Apply