Cyber Defense Research and Forensics Analyst **Department:** PSS **Location:** Atlanta, GA Mindpoint Group, LLC has an exciting opportunity to join the Research and Forensics team as a **Cyber Defense Research and Forensics Analyst** for one of our clients in the Atlanta, Georgia area. This position is critical to the continued maturation of the clients operational capabilities and you will join an established and experienced group that is motivated to provide excellent services in defending federal infrastructure. You will work closely with other research and forensics analysts, threat hunters, threat analysts in an established SOC and we will rely on you to examine recovered data and to perform forensics analysis. **Responsibilities:** + Decrypt seized data using technical means + Provide a technical summary of findings in accordance with established reporting procedures + Ensure that chain of custody is followed for all digital media acquired in accordance with the Federal Rules of Evidence + Identify digital evidence for examination and analysis in such a way as to avoid unintentional alteration + Perform dynamic analysis to boot an -image- of a drive to see the intrusion as the user may have seen it in a native environment + Perform static analysis to mount an "image" of a drive (without necessarily having the original drive) + Perform file signature analysis and hash comparison against the established database + Perform real-time cyber defense incident handling (e.g., forensic collections, intrusion correlation and tracking, threat analysis, and direct system remediation) tasks to support deployable Incident Response Teams (IRTs) + Perform tier 1, 2, and 3 malware analysis + Extract data using data carving techniques (e.g., Forensic Tool Kit [FTK]) + Capture and analyze network traffic associated with malicious activities using network monitoring tools + Utilize deployable forensics toolkits to support operations as necessary + Perform Windows registry and file analysis + Collect and analyze intrusion artifacts (e.g., source code, malware, and system configuration) and use discovered data to enable mitigation of potential cyber defense incidents within the enterprise **Required:** + Bachelor-s Degree in CS-related field preferred, experience may be considered in lieu of a degree + 4-7 years of experience in digital forensics, incident response, and threat hunt activities + Demonstrated competency in forensic tools like Encase and Wireshark + Core Competencies in computer forensics, computer networking and operating systems + Experience with operational security, including security operations center (SOC), incident response, malware analysis, or IDS and IPS analyses + Understanding of scripting languages such as Python and regular expressions + Knowledge of Windows and Linux OS- and command lines **Tools:** + Encase + X-Ways Forensics + Magnet Forensics (Axiom Process, Axiom Examine) + FTK Imager/Examiner + Splunk + Netwitness + Wireshark + CrowdStrike **Desired:** + CISSP - Certified Information Systems Security Professional + GCFA - GIAC Certified Forensic Analyst + GCFE - GIAC Certified Forensic Examiner + GREM - GIAC Reverse Engineering Malware + GNFA - GIAC Network Forensic Analyst **Clearance:** + Top Secret Clearance required **Location:** + This position is hybrid with expectations of being on the client site for cases needed with hands-on analysis **Compensation:** - Compensation is unique to each candidate and relative to the skills and experience they bring to the position. The salary range for this position is typically $120-$145K. This does not guarantee a specific salary as compensation is based upon multiple factors such as education, experience, certifications, and other requirements, and may fall outside of the above-stated range. **Benefits:** - Highlights of our benefits include Health/Dental/Vision, 401(k) match, Flexible Time Off, STD/LTD/Life Insurance, Referral Bonuses, professional development reimbursement, and maternity/paternity leave **Additional Information:** Tyto Athene is a trusted leader in IT services and solutions, delivering mission-focused digital transformation that drives measurable success. Our expertise spans four core technology domains-Network Modernization, Hybrid Cloud, Cybersecurity, and Enterprise IT-empowering our clients with cutting-edge solutions tailored to their evolving needs. With over 50 years of experience, Tyto Athene proudly support Defense, Intelligence, Space, National Security, Civilian, Health, and Public Safety clients across the United States and worldwide. At Tyto Athene, we believe that success starts with our people. We foster a collaborative, innovative, and mission-driven environment where every team member plays a critical role in shaping the future of technology. Are you ready to join #TeamTyto. Tyto Athene is an Equal Opportunity Employer and fully complies with all EEOC regulations. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, age, national origin, disability, status as a protected veteran, or any other protected characteristic.