ZipRecruiter

Log In

1

Evening Cyber Forensics Jobs (NOW HIRING)

Persistent Systems

Cyber Defense Analyst

Clearfield, UT ยท On-site

$101K - $121K/yr

Ability to work scheduled shifts including potential evening, weekend, or on-call rotation coverage ... Familiarity with endpoint detection and response (EDR) tools and host-based forensics

Peraton

CIRT Tier 2 Analyst / Active Secret

Beltsville, MD ยท On-site

$66K - $106K/yr

... Cyber Mission program. Location: Beltsville, MD; On-site Work Hours: Evening Shift, 14:00- 22:00 ... Perform forensic analysis of hosts artifacts, network traffic, and email content. * Analyze ...

Peraton

CIRT Tier 2 Analyst / Active Secret

Beltsville, MD ยท On-site

$66K - $106K/yr

... Cyber Mission program. Location: Beltsville, MD; On-site Work Hours: Evening Shift, 14:00- 22:00 ... Perform forensic analysis of hosts artifacts, network traffic, and email content. * Analyze ...

next page

Showing results 1-20

All JobsEvening Cyber Forensics Jobs

Evening Cyber Forensics information

See salary details

$69.5K

$101.6K

$154.5K

How much do evening cyber forensics jobs pay per year?

As of Jun 10, 2026, the average yearly pay for evening cyber forensics in the United States is $101,608.00, according to ZipRecruiter salary data. Most workers in this role earn between $78,500.00 and $132,000.00 per year, depending on experience, location, and employer.
What cities are hiring for Evening Cyber Forensics jobs? Cities with the most Evening Cyber Forensics job openings:
What are the most commonly searched types of Cyber Forensics jobs? The most popular types of Cyber Forensics jobs are:
What states have the most Evening Cyber Forensics jobs? States with the most job openings for Evening Cyber Forensics jobs include:
Evening Cyber Forensics jobs near you

Cyber Incident Responder Fusion Level 4 104-023

IC-CAP LLC

Washington, DC โ€ข On-site

Full-time

Posted 29 days ago

Job description

Cyber Incident Responder Fusion Level 4:
Job Description Summary:
Performs forensic analysis of digital information and gathers and handles evidence. Identifies network computer intrusion evidence and perpetrators.
Level 4:
  • Investigates, analyzes, and responds to cyber incidents within a network environment or enclave.
  • Uses data collected from a variety of cyber defense tools (e.g., IDS alerts, firewalls, network traffic logs) to analyze events that occur within their environments for the purposes of mitigating threats.
  • Interprets, analyzes, and reports all events and anomalies in accordance with computer network directives, including initiating, responding, and reporting discovered events.
  • Evaluates, tests, recommends, coordinates, monitors, and maintains cybersecurity policies, procedures, and systems, including access management for hardware, firmware, and software.
  • Ensures that cybersecurity plans, controls, processes, standards, policies, and procedures are aligned with cybersecurity standards.
  • Identifies security risks and exposures, determines the causes of security violations and suggests procedures to halt future incidents and improve security.
  • Researches and evaluates new concepts and processes to improve performance.
  • Analyzes cross-functional problem sets, identifies root causes and resolves issues.
  • Develops techniques and procedures for conducting cybersecurity risk assessments and compliance audits, the evaluation and testing of hardware, firmware and software for possible impact on system security, and the investigation and resolution of security incidents such as intrusion, frauds, attacks or leaks.
  • May coach and provide guidance to less-experienced professionals.
  • May serve as a team or task lead.

Job Description:
  • Responsible for strengthening the defensive posture and cyber defense operational readiness of an IT Enterprise. Our program defends and protects Government assets from external Cyber Security attacks and Insider Threats that can potentially cause or create data, systems, networks, and personnel vulnerabilities.
  • Performs forensic analysis of digital information and gathers and handles evidence. Identifies network computer intrusion evidence and perpetrators, and coordinates with other government agencies to record and report incidents.
  • Monitors Intrusion Detection Systems (IDS) to identify security issues for remediation.
  • Ensures the integrity and protection of networks, systems, and applications by technical enforcement of organizational security policies, through monitoring of vulnerability scanning devices.
  • Prepare incident reports of analysis methodology and results.
  • Provide guidance and work leadership to less-experienced technical staff members.
  • Participate in special projects as required.
  • Continuously evaluate and make recommendations for the enhancement of the organization's security posture.
  • Position may require evening, weekend, or shiftwork (depending on operational tempo).

Desired Skills:
  • Experience with Perl Compatible Regular Expressions (PCRE)
  • Experience authoring Yara rules
  • Experience authoring Snort signatures

Education and Experience:
  • HS/GED+12 years
  • Associate Degree+10 years
  • Bachelors Degree+8 years
  • Masters Degree+6 years
  • PhD+4 years

Required Certifications:
  • IAT II Required to start on program.
  • CSSP Analyst - Required to start on program.
  • GMON (GIAC Continuous Monitoring Certification) Required within 180 days of start date.
  • SCCU (Splunk Core Certified User) Required within 180 days of start date.

Security Clearance:
  • DoD Approved Clearance and Poly

Apply