USA, VA, McLean (8283 Greensboro Dr Hamilton) - Direct Charge
Booz Allen Hamilton
Using tomorrow’s technologies, Booz Allen advances the nation’s most critical civil, defense, and national security missions.
Key Role:
Display professional and expert knowledge of incident response processes, tools, and techniques. Handle incident investigations with little oversight and make significant contributions to any incident response efforts. Participate in cyber incident response investigations requiring forensic, malware, and log analysis, and analyze forensic images and triage datasets to identify indicators of compromise, lateral movement, and unauthorized access or exfiltration of data. Assist in DFIR matters and assigned specific tasks by team leads and assistant team leads. Due to the nature of work performed within this facility, U.S. citizenship is required.
Basic Qualifications:
- 1+ years of experience in Cyber Security, Digital Forensics, and Incident Response
- Experience with analyzing Microsoft Windows and non-Windows systems, including Mac or Linux
- Experience with using DFIR toolsets, including FTK, EnCase, XWF, or Axiom
- Experience with scripted DFIR toolsets written in Python or PowerShell
- Experience with analyzing logs including firewall, network traffic, IIS, Antivirus, and DNS
- Knowledge of common forensic artifacts analyzed during incidents to determine attack vector, lateral movement, and data exfiltration
- Ability to correlate events from multiple sources to create a timeline analysis
- Ability to work after standard business hours, including some evenings, weekends, and holidays
- HS diploma or GED
Additional Qualifications:
- Experience with forensically analyzing cloud data, including AWS, Azure, or GCP
- Knowledge of mobile device platforms, including smartphones and tablets
- Ability to prioritize work assignments without guidance
- Ability to organize case notes
- Ability to prepare detailed technical reports
- Ability to take a rotation on call
- Ability to work more than one incident at a time
- Possession of excellent oral and written communication skills with clients
- DFIR or Cyber Security Certifications, including CCE, EnCE, CFCE, CISSP, CISM, GCIA, GCFE, GCFA, GREM, or GNFA Certification
Compensation:
At Booz Allen, we celebrate your contributions, provide you with opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care. Our recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values.
The projected compensation range for this position is $67,700.00 to $154,000.00 (annualized USD).
Work Model:
- If this position is listed as remote or hybrid, you’ll periodically work from a Booz Allen or client site facility.
- If this position is listed as onsite, you’ll work with colleagues and clients in person, as needed for the specific role.
EEO Commitment:
We’re an equal employment opportunity/affirmative action employer that empowers our people to fearlessly drive change – no matter their race, color, ethnicity, religion, sex, national origin, ancestry, age, marital status, sexual orientation, gender identity and expression, disability, veteran status, military or uniformed service member status, genetic information, or any other status protected by applicable federal, state, local, or international law.
#J-18808-Ljbffr