HOST-BASED CYBER FORENSICS ANALYST, Legato LLC, Arlington, VA
HOST-BASED CYBER FORENSICS ANALYST
Job description
** Host-Based Cyber Forensics Analyst**
Job Title Host-Based Cyber Forensics Analyst Job ID 27654376 Location Arlington, VA Other Location Description **Legato, LLC** recruiters (...@legatocorp.com) would love to speak with you regarding the following position: **Host-Based Cyber Forensics Analyst, Levels 2, 3, and 4. Some remote work is allowed for this role, but you must also be able to work onsite.**
**Security Clearance Required:** TS/SCI
**We are seeking:**
Experience with MITRE ATT&CK; Windows Event IDs; familiarity with Linux & Windows artifacts & interpretation; network topologies/architecture; basic malware analysis; incident response & threat hunting (at scale); Advanced Persistent Threats (APTs) tactics, techniques, and protocols (TTPs); computer forensics, digital forensics, memory forensics, Red/Blue/Purple Teams
**Qualifications:**
Splunk use is a must, Splunk certs are great. Operational use is key. Demonstrated use with FTK, Encase, Axiom, Xways, Autopsy, SIFT, Mandiant HX, FireEye, SOFL-ELK, Moloch, Wireshark, Network Miner, NetWitness, CyberChef, Corelight, Zeek, Bro IDS, Security Onion, ArcSight, (Bonus: Powershall, Python, etc.
**Level 2**: 2-4 years w relevant bachelor's & experience or 4-6 years w HS diploma & relevant experience. Desired certifications: CEH | Security+ | CHFI
**Level 3:** 5-7 years w relevant bachelor's & experience or 7-9 years w HS diploma & relevant experience.
Desired certifications: CEH | Security+ | CHFI | GCIH | GCFE
**Level 4**: 8+ years w relevant bachelor's & experience or 10+ years w HS diploma & relevant experience.
Desired certifications: CEH | Security+ | CHFI | GCIH | GCFE | GCFA | GNFA | GDAT | GPEN | CISSP
U.S. Citizenship and a TS/SCI clearance
**About Your New Company**
Legato, LLC is a dynamic small business headquartered in Columbia, near Ft. Meade, MD. Our positions include Cyber, Software, Systems, Networking, Data Science and other complex engineering capabilities. We set ourselves apart by having employees in the top of their field and who enjoy working at Legato for its attention to its employees, aggressive compensation, and benefits package and upward mobility possibilities.
**Legato LLC is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, protected veteran status, or disability status.**