Security Computer and Forensics Investigator 4 (Malware Investigator) - Senior

Work Description: Malicious Software Investigators respond to and investigate computer and network security incidents; support incidents referred by the CSOC; review, analyze, mitigate, and report on malicious software (i.e. Malware) found on Agency computers and networks; devise analysis techniques that identify malware; and recommend responses that mitigate the effects of malware.

Duties include:

• Respond to computer and network security incidents, investigate agency policy violations, identify risks to computers/networks, and recommend corrective actions.
• Investigate malware; determine attack vectors, payloads, and extent of damage and/or data exfiltration.
• Ensure security of computers, networks, and related hardware.
• Develop analysis techniques, recommend procedures, and suggest types of hardware or software that enhance the forensic mission.
• Maintain hardware and software documentation that complies with prevailing Federal Information Technology (IT) governance directives.
• Maintain a malware analysis laboratory (i.e. hardware, software, networks, analysis procedures, and related tools).
• Participate in technical meetings and working groups; address issues related to malware security and vulnerabilities.
• Provide input to help develop policies and procedures for investigating and mitigating malware-related incidents for the customer’s networks and recommend hardware and software that support this mission.
• Collaborate with internal and external investigators and forensic analysts.
• Author investigative-sufficient reports, brief government supervisors, and develop malware security awareness guidance.
• Employ computer and network forensic tools (i.e. Guidance EnCase, HBGary Responder, Digital DNA, Recon, Wireshark, tcpdump, etc.), as required.

Required Skills and Experience:

• 10 years of computer and network security experience in relevant areas (data analytics tools, databases, computer networks, etc.).
• Experience in malware identification, review, analysis, mitigation, and reporting.

Desired:

• Possess a Bachelor’s degree or greater in a business, computer science, counterintelligence, criminal justice, engineering, fraud investigations, information technology, mathematics, or a scientific field.
• Successful graduation from FLETC, DCITA, JCITA, DoD or other formal US Federal Government analysis courses or programs.