Digital Forensics Analyst
Job Location:
Monthly Salary:
Experience Required:
Posted on:
Vacancies:
Job Summary
The Digital Forensics Analyst is responsible for collecting preserving analyzing and documenting digital evidence associated with cybersecurity incidents investigations legal proceedings and insider threat cases.
This position conducts forensic examinations of computers servers mobile devices cloud environments virtual systems and storage media to determine what occurred during a security incident. The analyst reconstructs timelines identifies attacker activity recovers deleted artifacts and supports root cause investigations.
The Digital Forensics Analyst maintains evidence integrity follows chain-of-custody procedures and produces detailed investigative reports suitable for executive legal regulatory and law enforcement review.
The position frequently supports ransomware investigations insider threat investigations fraud investigations intellectual property theft cases and major breach investigations.
Requirements
- The candidate must have a minimum of Secrete Clearance.
- Candidates must possess advanced knowledge of digital forensics principles evidence preservation techniques forensic acquisition methods operating systems file systems memory analysis and artifact analysis.
- The candidate should have experience using industry-standard forensic tools and conducting investigations across Windows Linux macOS cloud platforms and mobile devices. Strong documentation skills are essential due to the legal and evidentiary nature of forensic work.
- The position requires patience precision objectivity and the ability to produce defensible findings based on evidence rather than assumptions.
- Typical certifications include GCFA GCFE EnCE CHFI CFCE or equivalent forensic certifications.
Required Skills:
Essential Qualifications 1. Minimum 4 years of experience with containerization and orchestration (Docker Kubernetes OpenShift). 2. Minimum 4 years of experience in designing and maintaining CI/CD pipelines with automated testing and security validation. 3. Experience with Infrastructure as Code (Terraform Ansible Helm Pulumi). 4. Experience deploying and securing workloads in hybrid/public cloud environments (AWS Azure Google Cloud VMware OpenStack). 5. Experience implementing site reliability engineering and observability practices (Prometheus Grafana ELK/Loki OpenTelemetry). 6. Experience implementing scalable resilient high-throughput systems and service-oriented architecture. 7. Experience delivering capabilities in Agile/DevSecOps environments (Scrum SAFe Kanban). 8. Experience designing and managing secure networking and service mesh (TLS Istio Linkerd API gateways). 9. Experience applying zero-trust principles and compliance automation (OPA Kyverno SBOM CIS benchmarks). 10. Experience managing secrets and access policies using modern IAM solutions (Vault AWS KMS Azure Key Vault RBAC/ABAC). 11. Fluent in English (oral and written).
