... directing the inventory, examination and comprehensive technical analysis of computer related ... cyber forensic and network investigations using leading edge technologies and industry standard ...
... directing the inventory, examination and comprehensive technical analysis of computer related ... cyber forensic and network investigations using leading edge technologies and industry standard ...
... directing the inventory, examination and comprehensive technical analysis of computer related ... cyber forensic and network investigations using leading edge technologies and industry standard ...
... directing the inventory, examination and comprehensive technical analysis of computer related ... cyber forensic and network investigations using leading edge technologies and industry standard ...
Nightwing is seeking a Host Forensics Analyst to support this critical customer mission ... directing the inventory, examination and comprehensive technical analysis of computer related ...
Nightwing is seeking a Host Forensics Analyst to support this critical customer mission ... directing the inventory, examination and comprehensive technical analysis of computer related ...
... Under direct guidance and coaching if needed, locating critical items in various file systems to ... forensics findings - Experience with the analysis and characterization of cyber attacks ...
... Under direct guidance and coaching if needed, locating critical items in various file systems to ... forensics findings - Experience with the analysis and characterization of cyber attacks ...
Nightwing is seeking a Host Forensics Analyst to support this critical customer mission ... directing the inventory, examination and comprehensive technical analysis of computer related ...
Nightwing is seeking a Host Forensics Analyst to support this critical customer mission ... directing the inventory, examination and comprehensive technical analysis of computer related ...
Nightwing is seeking a Host Forensics Analyst to support this critical customer mission ... directing the inventory, examination and comprehensive technical analysis of computer related ...
Nightwing is seeking a Host Forensics Analyst to support this critical customer mission ... directing the inventory, examination and comprehensive technical analysis of computer related ...
... Under direct guidance and coaching if needed, locating critical items in various file systems to ... forensics findings - Experience with the analysis and characterization of cyber attacks ...
... Under direct guidance and coaching if needed, locating critical items in various file systems to ... forensics findings - Experience with the analysis and characterization of cyber attacks ...
Cyber Defense Forensics Lead
Ashburn, VA · On-site
Gritter Francona is looking for a Cyber Defense Forensics Lead to support a potential project with ... The Lead will direct a team of expert analysts responsible for conducting digital forensic ...
Cyber Defense Forensics Lead
Ashburn, VA · On-site
Gritter Francona is looking for a Cyber Defense Forensics Lead to support a potential project with ... The Lead will direct a team of expert analysts responsible for conducting digital forensic ...
Nightwing is seeking a Host Forensics Analyst to support this critical customer mission ... directing the inventory, examination and comprehensive technical analysis of computer related ...
Nightwing is seeking a Host Forensics Analyst to support this critical customer mission ... directing the inventory, examination and comprehensive technical analysis of computer related ...
Cyber Defense Forensics Lead
Ashburn, VA · On-site
Gritter Francona is looking for a Cyber Defense Forensics Lead to support a potential project with ... The Lead will direct a team of expert analysts responsible for conducting digital forensic ...
Cyber Defense Forensics Lead
Ashburn, VA · On-site
Gritter Francona is looking for a Cyber Defense Forensics Lead to support a potential project with ... The Lead will direct a team of expert analysts responsible for conducting digital forensic ...
Nightwing is seeking a Host Forensics Analyst to support this critical customer mission ... directing the inventory, examination and comprehensive technical analysis of computer related ...
Nightwing is seeking a Host Forensics Analyst to support this critical customer mission ... directing the inventory, examination and comprehensive technical analysis of computer related ...
Nightwing is seeking a Host Forensics Analyst to support this critical customer mission ... directing the inventory, examination and comprehensive technical analysis of computer related ...
Nightwing is seeking a Host Forensics Analyst to support this critical customer mission ... directing the inventory, examination and comprehensive technical analysis of computer related ...
... Under direct guidance and coaching if needed, locating critical items in various file systems to ... forensics findings - Experience with the analysis and characterization of cyber attacks ...
... Under direct guidance and coaching if needed, locating critical items in various file systems to ... forensics findings - Experience with the analysis and characterization of cyber attacks ...
Senior Cyber Lead
Linthicum, MD · On-site
Direct advanced cyber investigations and forensic examinations across Windows, Linux/Unix, macOS, mobile, and enterprise environments. * Manage forensic workflows, evidence handling procedures, and ...
Senior Cyber Lead
Linthicum, MD · On-site
Direct advanced cyber investigations and forensic examinations across Windows, Linux/Unix, macOS, mobile, and enterprise environments. * Manage forensic workflows, evidence handling procedures, and ...
Senior Cyber Lead
Linthicum Heights, MD · On-site
Direct advanced cyber investigations and forensic examinations across Windows, Linux/Unix, macOS, mobile, and enterprise environments. * Manage forensic workflows, evidence handling procedures, and ...
Senior Cyber Lead
Linthicum Heights, MD · On-site
Direct advanced cyber investigations and forensic examinations across Windows, Linux/Unix, macOS, mobile, and enterprise environments. * Manage forensic workflows, evidence handling procedures, and ...
Direct advanced cyber investigations and forensic examinations across Windows, Linux/Unix, macOS, mobile, and enterprise environments. * Manage forensic workflows, evidence handling procedures, and ...
Direct advanced cyber investigations and forensic examinations across Windows, Linux/Unix, macOS, mobile, and enterprise environments. * Manage forensic workflows, evidence handling procedures, and ...
Direct advanced cyber investigations and forensic examinations across Windows, Linux/Unix, macOS, mobile, and enterprise environments. * Manage forensic workflows, evidence handling procedures, and ...
Direct advanced cyber investigations and forensic examinations across Windows, Linux/Unix, macOS, mobile, and enterprise environments. * Manage forensic workflows, evidence handling procedures, and ...
Digital Forensics & Incident Response * Incident Response Retainers * Proactive Services * MDR Services The Director, Cyber Insurance and Legal Partnerships will work in collaboration with the North ...
Digital Forensics & Incident Response * Incident Response Retainers * Proactive Services * MDR Services The Director, Cyber Insurance and Legal Partnerships will work in collaboration with the North ...
Forensics Analyst II
San Antonio, TX · On-site
... direct system remediation) as part of flyaway Incident Response Teams (IRTs). * Detect anti ... Two years of experience as a Cyber Forensics Analyst. * Two years of demonstrated experience using ...
Forensics Analyst II
San Antonio, TX · On-site
... direct system remediation) as part of flyaway Incident Response Teams (IRTs). * Detect anti ... Two years of experience as a Cyber Forensics Analyst. * Two years of demonstrated experience using ...
Associate Director, Cyber Defense - Staff Incident Responder
Cambridge, MA · On-site +1
$174K - $235K/yr
The Associate Director, Cyber Defense - Staff Incident Responder will play a critical role in ... Perform advanced forensic analysis and proactive threat hunting to identify attacker behavior ...
Associate Director, Cyber Defense - Staff Incident Responder
Cambridge, MA · On-site +1
$174K - $235K/yr
The Associate Director, Cyber Defense - Staff Incident Responder will play a critical role in ... Perform advanced forensic analysis and proactive threat hunting to identify attacker behavior ...
Director Cyber Forensics information
See salary details
$102.5K - $120.4K
6% of jobs
$120.4K - $138.3K
6% of jobs
$138.3K - $156.2K
7% of jobs
$166.9K is the 25th percentile. Wages below this are outliers.
$156.2K - $174.1K
8% of jobs
$174.1K - $192K
14% of jobs
The median wage is $201K / yr.
$192K - $210K
16% of jobs
$210K - $227.9K
15% of jobs
$233.6K is the 75th percentile. Wages above this are outliers.
$227.9K - $245.8K
7% of jobs
$245.8K - $263.7K
6% of jobs
$263.7K - $281.6K
7% of jobs
$281.6K - $299.5K
6% of jobs
$102.5K
$207.2K
$299.5K
How much do director cyber forensics jobs pay per year?

Full-time
This job post has expired today. Applications are no longer accepted.
Job description
TS/SCI
Client seeking Cyber Forensics Analysts to support the DHS Hunt and Incident Response Team (HIRT). This team secures the Nation's cyber and communications infrastructure while providing front line response for cyber incidents and hunting for malicious cyber activity. The client, as a prime contractor to DHS, performs HIRT investigations to develop a diagnosis of the severity of breaches. Contract personnel provide front line response for digital forensics/incident response and proactively hunting for malicious cyber activity for this critical customer mission.
Responsibilities:
- Perform event correlation using information gathered from a variety of sources within the enterprise to gain situational awareness and determine the effectiveness of an observed attack
- Assesses network topology and device configurations identifying critical security concerns and providing security best practice recommendations
- Collects network intrusion artifacts (e.g., PCAP, domains, URI's, certificates, etc.) and uses discovered data to enable mitigation of potential incidents
- Collects network device integrity data and analyze for signs of tampering or compromise
- Analyzes identified malicious network and system log activity to determine weaknesses exploited, exploitation methods, effects on system and information
- Tracking and documenting on-site incident response activities and providing updates to leadership through executive summaries and in-depth technical reports
- Planning, coordinating and directing the inventory, examination and comprehensive technical analysis of computer related evidence
- Serving as technical forensics liaison to stakeholders and explaining investigation details
Required Skills:
- U.S. Citizenship
- Must have an active Secret clearance (TS/SCI eligible) and be able to obtain DHS Suitability
- 8+ years of directly relevant experience in cyber forensic and network investigations using leading edge technologies and industry standard forensic tools
- Experience with reconstructing a malicious attack or activity
- Ability to characterize and analyze network traffic, identify anomalous activity / potential threats, analyze anomalies in network traffic using metadata
- Ability to create forensically sound duplicates of evidence (forensic images)
- Able to write cyber investigative reports documenting forensics findings
- In depth knowledge and experience of:
• identifying different classes and characterization of attacks and attack stages
• CND policies, procedures and regulations
• proactive analysis of systems and networks, to include creating trust levels of critical resources
• system and application security threats and vulnerabilities
• of network topologies, Wi-Fi Networking, and TCP/IP protocols
• Splunk (or other SIEMs)
• Vulnerability scanning, assessment and monitoring tools such as Security Center, Nessus, and Endgame
• MITRE Adversary Tactics, Techniques and Common Knowledge (ATT&CK)
- Must be able to work collaboratively across physical locations.
Desired Skills:
- Experience and proficiency with the following tools and techniques:
• EnCase, FTK, SIFT, X-Ways, Volatility, WireShark, Sleuth Kit/Autopsy, and Snort
• EDR Tools: Crowdstrike, Carbon Black, Etc
• Carving and extracting information from PCAP data
• Non-traditional network traffic: Command and Control
• Preserving evidence integrity according to national standards
• Designing cyber security systems and environments in a Linux environment
• Virtualized environments
• Conducting all-source research
Required Education:
8+ years of experience and BS Computer Science, Cybersecurity, Computer Engineering or related degree; or HS Diploma and 10+ years of host or digital forensics or network forensic experience
Desired Certifications:
- GCFA, GCFE, EnCE, CCE, CFCE, CEH, CCNA, CCSP, CCIE, OSCP, GNFA
About Beyond Sof
Sourced by ZipRecruiter
Company size
11 - 50 Employees
Headquarters location
McLean, VA, US
Year founded
2011