Sorry, this listing is no longer accepting applications. Don’t worry, we have more awesome opportunities and internships for you.

Network & Computer Forensics Examiner

A

ARServices

Network & Computer Forensics Examiner

Camp Pendleton, CA +1 location
Full Time
Paid
Similar Jobs
  • Responsibilities

    Job Description

    ARServices is seeking NETWORK & COMPUTER FORENSICS EXAMINERS to support The Naval Criminal Investigative Service (NCIS), Cyber Directorate. NCIS, under the Department of the Navy (DoN), is responsible for providing DoN with threat status and warnings associated with terrorist, criminal, cyber, and counter-intelligence activity throughout the world.  The NCIS Cyber Directorate supports and advances the agency’s mission of investigating and defeating criminal, terrorist, and foreign intelligence threats to the DoN – in the maritime domain, ashore, and in cyberspace.

    PRINCIPAL DUTIES

    • Conduct complex and high-profile, non-destructive evaluations of target computer systems to determine operating and file systems, stored information, user and program logs, ownership and access methodology, as well as security features and usage
    • Provide detailed forensic examinations for NCIS cases
    • Document artifacts and deliverables according to standardized formats and approved templates created through collaboration with NCIS Cyber Divisions
    • Follow NCIS Cyber organizational policies and procedures
    • Work collaboratively in a team environment to identify opportunities to provide forensic support via active engagement with Cyber-Referent agents
    • Liaison between NCIS Cyber agents in the field and NCIS Cyber analysts at NCISHQ
    • Collect and preserve critical evidence from large data sets
    • Conduct intrusion identification
    • Write SQL queries to verify/retrieve data
    • Perform log analysis in support of NCIS investigations 
    • Conduct forensic extraction and analysis of data and electronic evidence from seized digital media
    • Analyze computer network security settings, server, system, router, firewall, intrusion detection system (IDS) and intrusion prevention system (IPS) logs and packet capture data
    • Assist the NCIS Special Agent as a technical consultant, ensuring that the data is seized in compliance with computer forensic standards and in compliance with chain of custody guidelines
    • Serve as a subject matter expert (SME) and testify in court proceedings regarding forensic procedures utilized to acquire evidence and the description of any evidence obtained
    • Analyze and test network monitoring technologies
    • Test and assess new commercial and government-developed network-based investigative tools for reviewing and improving NCIS' current collection platforms
    • Evaluate and implement new technologies to support the improvement and modernization of the NCIS criminal and intelligence capabilities with regard to the gathering digital evidence
    • Provide emergent forensic response support to internal and external surge requirements
    • Configure, install, and maintain Network Intrusion Detection systems and Network Forensic Analysis Tools on locally configured networks

    REQUIREMENTS

    • Top Secret clearance with SCI eligibility
    • Bachelor’s degree in a computer science-related field or five years of equivalent work experience
    • Five years computer forensics experience using Guidance Software EnCase and/or AccessData Forensic Toolkit (FTK). Proficiency with AccessData FTK, Helix and other forensic tools
    •  Expertise with various computer operating systems to include Windows, Linux/Unix, and Macintosh OS
    • Expertise with a variety of computer hardware to include servers, workstations, desktops, laptops, networking equipment, tablets and cellphones
    • Full understanding of proper forensic data collection procedures, chain of custody, and documentation procedures in a law enforcement environment
    • Required Certifications
      • EnCase Certified Examiner (EnCE), AccessData Certified Examiner (ACE), DCITA DoD Digital Forensic Examiner, or FBI Computer Analysis Response Team (CART) certification
    • Expertise with Cellebrite or XRY Cell phone forensics software
    • Strong documentation skills
    • Ability to testify as an expert witness in judicial proceedings
    • Proficient in information security, information assurance, information technology, and cyber defense best practices and principles

    ARSERVICES IS AN EQUAL OPPORTUNITY/AFFIRMATIVE ACTION EMPLOYER COMMITTED TO HIRING AND RETAINING A DIVERSE WORKFORCE, INCLUDING PROTECTED VETERANS AND INDIVIDUALS WITH DISABILITIES.

    Powered by JazzHR

    m63Z3u27Ew

  • Locations
    Camp Pendleton, CA • San Diego, CA