ZipRecruiter

Log In

1

Forensics Jobs (NOW HIRING)

ECS

Cyber Defense Forensics Analysts - Mid

Washington, DC ยท On-site

$102K - $117K/yr

Everforth ECS is seeking a Cyber Defense Forensics Analysts - Mid to work in our Washington, DC office. Position Summary: ECS Federal is a leading information security and information technology ...

Cyber Centaurs

Digital Forensics Analyst

Orlando, FL ยท On-site

Digital Forensics Analyst (Litigation & Investigations) Central Florida (Orlando Area)Hybrid (Remote + On-Site + Travel)Full-Time Who We Are Cyber Centaurs is a specialized digital forensics and ...

BCMC

Host Forensics Analyst

Arlington, VA ยท On-site

BCMC is seeking Host Forensics Analysts to support this critical customer mission. Responsibilities: - Assisting Federal leads with overseeing and leading forensic teams at onsite engagements by ...

Peraton

Digital Forensics Examiner

Linthicum, MD ยท On-site

$112K - $179K/yr

Using a wide variety of forensic tools, the Digital Forensic Analyst examines the hard drives of computers, storage devices, cell phones, PDA's, or any electronic device that may hold evidence that ...

Peraton

Digital Forensics Examiner

Linthicum, MD ยท On-site

$135K - $216K/yr

Using a wide variety of forensic tools, the Digital Forensic Analyst examines the hard drives of computers, storage devices, cell phones, PDA's, or any electronic device that may hold evidence that ...

Array

Forensics Collections Analyst

Austin, TX ยท On-site +1

$70K - $80K/yr

Summary As an eDiscovery Forensic Collections Analyst at Array, you will play a critical, hands-on role in the initial phase of the eDiscovery lifecycle. You are the technical expert responsible for ...

Cybervance

Mid-Level Forensics Analyst

Portland, OR ยท On-site

Mid-Level Digital Forensics Analyst Location: Portland, OR | Full-Time Cybervance is a rapidly growing information security and information technology company based in Washington, D.C., and we are an ...

SAIC

Digital Forensics Analyst

Chantilly, VA

ORA_ON_SITE Description Seeking a Digital Forensics Analyst , to serve as a member of an organizational cybersecurity program. This position requires an active TS/SCI with Polygraph . The hired ...

Array

Forensics Collections Analyst

Austin, TX ยท On-site +1

$70K - $80K/yr

Summary As an eDiscovery Forensic Collections Analyst at Array, you will play a critical, hands-on role in the initial phase of the eDiscovery lifecycle. You are the technical expert responsible for ...

Beyond SOF

Forensics Analyst II

San Antonio, TX

Perform forensic incident handling tasks (such as forensic collections, host analysis, intrusion correlation and tracking, threat analysis, and direct system remediation) as part of flyaway Incident ...

Cybercoders

Forensics Engineer

Phoenix, AZ

Forensics Engineer Forensics Engineer Position Overview We are seeking an experienced Forensics Engineer to investigate structural failures, perform condition assessments, and produce clear ...

SAIC

Digital Forensics Analyst

Chantilly, VA ยท On-site

Conduct forensic acquisition and analysis on computer, mobile, IOT, digital media devices, AWS/cloud instances and any other unidentified or non-standard media. * Ability to capture volatile data ...

next page

Showing results 1-20

All JobsForensics Jobs

Forensics information

See salary details

$43.5K

$115.4K

$167.5K

How much do forensics jobs pay per year?

As of Jun 26, 2026, the average yearly pay for forensics in the United States is $115,449.00, according to ZipRecruiter salary data. Most workers in this role earn between $97,000.00 and $134,500.00 per year, depending on experience, location, and employer.

What are some common challenges faced by forensic professionals when collecting and analyzing evidence?

Forensic professionals often encounter challenges such as maintaining the integrity of evidence, adhering to strict chain-of-custody protocols, and working under tight deadlines. They must be meticulous in documentation and avoid contamination, as even small errors can compromise cases. Additionally, forensic teams frequently collaborate with law enforcement, attorneys, and sometimes testify in court, requiring strong communication and adaptability to different environments.

What are the key skills and qualifications needed to thrive as a Forensic Scientist, and why are they important?

To thrive as a Forensic Scientist, you need a solid background in chemistry, biology, and criminalistics, usually supported by a degree in forensic science or a related field. Familiarity with laboratory analysis tools, evidence management systems, and certifications like those from the American Board of Criminalistics are important for technical proficiency. Attention to detail, critical thinking, and strong written and verbal communication skills help you analyze evidence accurately and present findings clearly. These skills ensure the integrity of investigations and the reliability of evidence in legal proceedings.

What kind of jobs are in forensics?

Forensics jobs include roles such as forensic scientists, crime scene investigators, forensic analysts, and fingerprint examiners. These positions typically require knowledge of laboratory techniques, evidence collection, and analysis, often supported by certifications and specialized training. Forensic professionals work in laboratories, crime scenes, or law enforcement agencies to support criminal investigations.

Which is the best job in forensics?

The best job in forensics depends on individual interests and skills, but roles such as forensic scientist, crime scene investigator, and forensic toxicologist are highly regarded. These positions often require specialized training, certifications, and proficiency with tools like DNA analysis, fingerprinting, and digital forensics, and they typically involve working in labs or crime scenes.

What are the 7 types of forensic science?

Forensic science encompasses several specialized fields, including DNA analysis, fingerprint analysis, toxicology, ballistics, trace evidence analysis, digital forensics, and forensic pathology. Forensic scientists often work with laboratory tools and require certifications to analyze evidence accurately. Understanding these disciplines helps in solving crimes and presenting evidence in court.

What is the difference between Forensics vs Crime Scene Investigator?

AspectForensicsCrime Scene Investigator
Required CredentialsForensic science degree, certifications in forensic analysisCriminal justice or forensic science degree, training in crime scene processing
Work EnvironmentLaboratories, research facilities, courtroomsCrime scenes, field locations, police departments
Employer & IndustryLaw enforcement agencies, forensic labs, legal systemLaw enforcement agencies, police departments
Common Search & ComparisonForensics vs Crime Scene Investigator

Forensics involves analyzing physical evidence in labs and providing expert testimony, while Crime Scene Investigators focus on collecting evidence at crime scenes. Both roles are essential in criminal investigations but differ in their primary responsibilities and work environments.

What is the highest paying forensic job?

The highest paying forensic jobs are often forensic pathologists and forensic odontologists, with forensic pathologists earning salaries exceeding $200,000 annually due to their medical training and responsibilities. These roles typically require advanced degrees, medical licenses, and specialized certifications, and they work in medical examiner or coroner offices, often with irregular hours and high responsibility levels.

What are forensics?

Forensics refers to the application of scientific methods and techniques to investigate crimes and analyze evidence that can be used in a court of law. Forensic professionals work in various fields, such as biology, chemistry, digital technology, and crime scene investigation, to help solve criminal cases. They collect, preserve, and examine physical evidence like fingerprints, DNA, and digital data to uncover facts and support legal proceedings. Forensics plays a crucial role in the justice system by providing objective and reliable information to aid investigations and court cases.
More about Forensics jobs
What cities are hiring for Forensics jobs? Cities with the most Forensics job openings:
What are the most commonly searched types of Forensics jobs? The most popular types of Forensics jobs are:
What states have the most Forensics jobs? States with the most job openings for Forensics jobs include:
What job categories do people searching Forensics jobs look for? The top searched job categories for Forensics jobs are:
Forensics jobs near you
Infographic showing various Forensics job openings in the United States as of June 2026, with employment types broken down into 100% Full Time. Highlights an 83% In-person, and 17% Remote job distribution, with an average salary of $115,449 per year, or $55.5 per hour.
Cyber Defense Forensics Analysts - Mid

Cyber Defense Forensics Analysts - Mid

ECS

Washington, DC โ€ข On-site

$102K - $117K/yr

Full-time

Posted 12 days ago

Job description

Everforth ECS is seeking a Cyber Defense Forensics Analysts - Mid to work in our Washington, DC office.
Position Summary:
ECS Federal is a leading information security and information technology company in Washington, DC. We are looking to hire a mid-level Cyber Defense Forensics Analyst to support a full range of cyber security services on a long-term contract in Washington DC. The position is full time/permanent and will support a US Government civilian agency. The position is available immediately upon finding a qualified candidate with the appropriate background clearance.
Security Clearance Requirement:
  • Active Secret clearance

Job Requirements:
  • Strong written and verbal communication skills.
  • Create detections and automation to detect, contain, eradicate, and recover from security threats.
  • Develop new and novel defense techniques to identify and stop advanced adversary tactics and techniques.
  • Perform forensics on network, host, memory, and other artifacts originating from multiple operating systems, applications, or networks and extract IOCs (Indicators of Compromise) and TTPs (Tactics, Techniques, and Procedures).
  • Conduct proactive hunts through enterprise networks, endpoints, or datasets in order to detect malicious, suspicious, or risky activities that have evaded detection by existing tools.
  • Solid knowledge of TCP/IP networking, and network services such as DNS, SMTP, DHCP, etc.
  • Solid understanding of attacker tradecraft associated with email, app-based, cloud threats and the ability to apply defensive tactics to protect against threats.
  • Good knowledge of operating system internals, OS security mitigations, understanding of Security challenges in Windows, Linux, Mac, Android & iOS platforms
  • Experience using forensic tools (e.g., EnCase, Sleuthkit, FTK).
  • Ability to perform deep analysis of captured malicious code (e.g., malware forensics).
  • Skill in analyzing anomalous code as malicious or benign.
  • Knowledge of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, Procedural Language/Structured Query Language [PL/SQL] and injections, race conditions, covert channel, replay, return-oriented attacks, malicious code).
  • Incorporate agile, threat intelligence-driven or hypothesis-based threat hunting, and the MITRE ATT&CK framework to identify and prioritize development of missing or ineffective detection capabilities to detect, prevent, and respond to cyber events originating from threat actors.

Certifications/Licenses:
  • Bachelor's degree or higher
  • 5+ years' performing cyber threat hunting and forensics support for incident response.
  • Certifications addressing identification of malicious system and user activity, incident response in an enterprise environment, timeline artifact analysis, timeline collection, timeline processing, volatile data collection, analysis of profiling of systems and devices, analysis of file and program activity, acquisition, preparation, and preservation of digital evidence, analysis of user communications, advanced IDS concepts, applications protocols, concepts of TCP/IP and the link layer, DNS, fragmentation, IDS fundamentals and initial deployment (e.g., snort, bro), IDS rules (e.g., snort, bro), IPv6, network architecture and event correlation, network traffic analysis and forensics, or packet engineering.
  • Active Secret clearance or higher

Salary Range: $102,600 - $117,500
General Description of Benefits
Position Responsibilities:
  • Identify threat tactics, methodologies, gaps, and shortfalls aligned with the MITRE ATT&CK Framework and the Azure Threat Research Matrix (ATRM).
  • Perform Hypothesis-based or Intelligence-based Cyber Threat Hunts to identify threats and risks within environments.
  • Use cloud-native techniques and methods to identify and create threat detections for automated response activities.
  • Use Agile methodology to organize intelligence, hunts and project status.
  • Be able to independently research intelligence reports to find actionable data for conducting intel or hypothesis-based hunts.
  • Explore and correlate large data sets to uncover novel attack techniques, monitor and catalog changes in activity group tradecraft, and investigate alerts for enterprise customers.
  • Conduct analysis of log files, evidence, and other information to determine best methods for identifying the perpetrator(s) of a network intrusion.
  • Confirm what is known about an intrusion and discover new information, if possible, after identifying intrusion via dynamic analysis.
  • Create a forensically sound duplicate of the evidence (i.e., forensic image) that ensures the original evidence is not unintentionally modified, to use for data recovery and analysis processes.
  • Provide a technical summary of findings in accordance with established reporting procedures.
  • Ensure that chain of custody is followed for all digital media acquired in accordance with the Federal Rules of Evidence.
  • Recognize and accurately report forensic artifacts indicative of a particular operating system.
  • Extract data using data carving techniques (e.g., Forensic Tool Kit [FTK], Foremost).
  • Collect and analyze intrusion artifacts (e.g., source code, malware, and system configuration) and use discovered data to enable mitigation of potential cyber defense incidents within the enterprise.

Apply