Description:

A qualified applicant will provide guidance and support for Directive 63 by utilizing your expertise in Law, Government Affairs, Information Technology, or Corporate Fraud. You will use your knowledge to assist and respond to incidents, to collect video evidence in analog or digital form.

Duties and Responsibilities:

A Forensics Analyst conducts and performs comprehensive forensic examinations of computer-based digital evidence and manages information in support of D.63 investigations and litigations while following industry and branch established protocols and best practices.

• Demonstrated experience in and ability to demonstrate the interpretation, processing and translation of file and operating system artifacts across a variety of platforms.
• Demonstrated expert-level experience in the use of automated forensic tools (e.g. EnCase, Forensic Toolkit, Paraben Suite), Xways, etc.) and be able to articulate, in detail, the processes being conducted by these automated forensic tools.
• Demonstrated experience and be able to demonstrate the processing of large-volume forensic and ediscovery investigations.
• Demonstrated experience in non-static digital forensic examinations utilizing remote forensic software (e.g. EnCase Enterprise Edition, FTK Enterprise etc.).
• Demonstrated experience in designing, implementing, and administering networks in a LAN/WAN/MAN environment.
• Demonstrated experience in the forensic analysis of a wide variety of enterprise e-mail systems (e.g. Exchange, Lotus, etc.), archiving systems, and backup systems.
• Demonstrated experience in the manual reconstruction of a RAID array.
• Demonstrated working knowledge of and ability to make application of the Federal Rules of Evidence (FRE) and Federal Rules of Civil Procedure (FRCP) as they apply to electronic evidence as well as demonstrated experience in applying these rules to the framework of an investigation or litigation.
• Demonstrated experience testifying and taking testimony in a civil, criminal, regulatory or administrative proceeding.
• Demonstrated strong project management skills with the ability to multitask and manage several projects at any given time.
• Will be responsible for planning, organizing, directing and conducting forensic analysis on a variety of electronic media in support of agency matters.
• Will serve as a source of technical counsel and advice for productions requiring IT forensic support across diverse types of media.
• Will be responsible for managing digital forensics examinations through the entire lifecycle (case planning, intake, acquisition, examination, presentation and disposition).
• Will be responsible for performing complex, large-scale digital forensic examinations to include collection in a live client-server environment utilizing validated remote forensic software (e.g. EnCase® Enterprise Edition, etc.).
• Will provide technical guidance and assistance to legal staff while ensuring that proper precautions are taken in the preservation and prevention of spoliation of electronic evidence.
• Will provide oral and written communications to legal staff concerning results of examinations to include legal declarations as well as testimony at trial.
• Will develop, craft, and articulate subpoena language and partner with legal staff to develop strategies for productions and negotiate file and media formats.
• Performs related work as required

Required Qualifications:

• Requires bachelor's degree (in Computer Science, Management Information Systems or related field) or equivalent, and five to seven years of related experience.
• Must possess extensive experience conducting digital forensic investigations across a variety of hardware and software architectures.
• Must have extensive experience in forensic examinations at the enterprise level within the preceding 3 years
• Must possess and maintain qualified industry certification (EnCE, CFCE, CCFE, ACE, etc.).