Forensics Analyst Remote / Telecommute Jobs
Forensic Analyst
PKH Enterprises is seeking qualified individuals to support both government and private-sector clients in the development and implementation of insider threat and asset protection programs. Qualified candidates must have a strong working knowledge of insider threat program elements, digital forensics, governance models and overall program management support operations.
Responsibilities:
ā¢ Use industry standard digital forensic utilities (standalone & enterprise) to perform collections and analyses of mobile devices and digital media in support of Insider Threat investigations.
ā¢ Properly preserve evidence, maintain chain of custody and produce forensic reports.
ā¢ Effectively communicate analysis results to stakeholders to include technical staff and leadership.
ā¢ Install, maintain, and recommend forensic hardware and software within a forensic lab environment while following established configuration management processes.
ā¢ Research and develop scripts, methods or indicators to enhance forensic processes for identifying insider threat activity.
ā¢ Use SIEM utilities to identify potential insider threat activity.
ā¢ Assist with evaluation of existing insider threat program elements.
ā¢ Assist with development of Standard Operating Procedures, workflows, process guides and playbooks.
ā¢ Assist with evaluating and recommending technical and non-technical solutions to detect and respond to potential insider threats.
ā¢ Assist with evaluating and establishing program elements to support insider threat prevention, detection and response.
ā¢ Assist in developing strategies for protecting critical assets.
ā¢ Provide support in developing business cases, resource planning, budget justifications and other documents in support of client insider threat programs.
ā¢ Assist with developing and operationalizing program performance metrics and reporting mechanisms in support of client insider threat programs.
ā¢ Evaluate technical products for their use in Insider Threat Programs and define specific program implementation use cases.
ā¢ Understand technology implementation to improve operating capability to support program maturity.
ā¢ Flexible and adaptable self-starter with strong relationship building skills.
ā¢ Strong problem-solving skills and qualitative reasoning in high pressure situations.
ā¢ Ability to independently prioritize and complete multiple tasks with minimal or no supervision.
Minimum Qualifications:
ā¢ Bachelor's degree or equivalent
ā¢ 5 years of experience in federal program support or related experience
ā¢ 5 years of combined professional experience performing insider threat analyst, and digital media forensic analysis with industry standard commercial and open-source tools in Federal Government, DOD or Law Enforcement.
ā¢ Familiarity with SIEM platforms.
ā¢ Familiarity with using case management systems.
ā¢ Familiarity with User Activity Monitoring (UAM) tools.
ā¢ Active Top Secret Clearance required.
Preferred Qualifications:
ā¢ 5-10 years of professional experience in relevant fields including digital forensics, IT security, and investigations.
ā¢ At least one of the following recognized digital forensics certifications (EnCE, ACE, CCE, GCFA, GCFE)
ā¢ Working knowledge of User Activity Monitoring (UAM) tools.
ā¢ Strong Working knowledge of SIEM utilities.
Apply tot his job
Apply To this Job
Apply tot his job
Apply To this Job
PKH Enterprises is seeking qualified individuals to support both government and private-sector clients in the development and implementation of insider threat and asset protection programs. Qualified candidates must have a strong working knowledge of insider threat program elements, digital forensics, governance models and overall program management support operations.
Responsibilities:
ā¢ Use industry standard digital forensic utilities (standalone & enterprise) to perform collections and analyses of mobile devices and digital media in support of Insider Threat investigations.
ā¢ Properly preserve evidence, maintain chain of custody and produce forensic reports.
ā¢ Effectively communicate analysis results to stakeholders to include technical staff and leadership.
ā¢ Install, maintain, and recommend forensic hardware and software within a forensic lab environment while following established configuration management processes.
ā¢ Research and develop scripts, methods or indicators to enhance forensic processes for identifying insider threat activity.
ā¢ Use SIEM utilities to identify potential insider threat activity.
ā¢ Assist with evaluation of existing insider threat program elements.
ā¢ Assist with development of Standard Operating Procedures, workflows, process guides and playbooks.
ā¢ Assist with evaluating and recommending technical and non-technical solutions to detect and respond to potential insider threats.
ā¢ Assist with evaluating and establishing program elements to support insider threat prevention, detection and response.
ā¢ Assist in developing strategies for protecting critical assets.
ā¢ Provide support in developing business cases, resource planning, budget justifications and other documents in support of client insider threat programs.
ā¢ Assist with developing and operationalizing program performance metrics and reporting mechanisms in support of client insider threat programs.
ā¢ Evaluate technical products for their use in Insider Threat Programs and define specific program implementation use cases.
ā¢ Understand technology implementation to improve operating capability to support program maturity.
ā¢ Flexible and adaptable self-starter with strong relationship building skills.
ā¢ Strong problem-solving skills and qualitative reasoning in high pressure situations.
ā¢ Ability to independently prioritize and complete multiple tasks with minimal or no supervision.
Minimum Qualifications:
ā¢ Bachelor's degree or equivalent
ā¢ 5 years of experience in federal program support or related experience
ā¢ 5 years of combined professional experience performing insider threat analyst, and digital media forensic analysis with industry standard commercial and open-source tools in Federal Government, DOD or Law Enforcement.
ā¢ Familiarity with SIEM platforms.
ā¢ Familiarity with using case management systems.
ā¢ Familiarity with User Activity Monitoring (UAM) tools.
ā¢ Active Top Secret Clearance required.
Preferred Qualifications:
ā¢ 5-10 years of professional experience in relevant fields including digital forensics, IT security, and investigations.
ā¢ At least one of the following recognized digital forensics certifications (EnCE, ACE, CCE, GCFA, GCFE)
ā¢ Working knowledge of User Activity Monitoring (UAM) tools.
ā¢ Strong Working knowledge of SIEM utilities.
Apply tot his job
Apply To this Job
Apply tot his job
Apply To this Job