Employment Opportunity

Digital Forensic Analyst

Booz Allen Hamilton, Annapolis Junction, Maryland

Salary: Not stated

Final Filing Date: Open until filled

Duties and Requirements Click to read more


  • Support Cyber investigations and operations by providing forensic acquisition and analysis of various digital media, including computer desktop systems, laptops, tablets, mobile and smart phones, and other media formats.
  • Provide technical onsite support to incident response and evidence seizures activities, maintain chain of custody for digital evidence, provide subject matter expertise on forensic capabilities for operational security concerns, and detect and analyze malware.
  • Plan, lead, and participate in unit Cyber training events and on the job training for new staff.
  • Conduct open source research and initial product evaluation of new commercial and governmental digital forensic hardware and software tools, draft language for memorandums based on forensic analysis results, and assist with the analysis and maintenance of unit standard operating procedures and lab procedure documentation.


Basic Qualifications:
  • Experience with commercial forensic software suites, including EnCase, Forensic Toolkit (FTK), or X Ways Forensics
  • Experience with examinations focused on host-based forensics
  • Experience with forensic imaging techniques
  • Knowledge of virtual environments
  • Knowledge of Microsoft Windows and Windows artifacts
  • Knowledge of file systems
  • TS/SCI clearance
  • HS diploma or GED
  • DoD DCITA Certified Digital Media Collector (CDMC) or DoD DCITA Certified Digital Forensic Examiner (CDFE)
Additional Qualifications:
  • Experience with digital evidence handling
  • Experience with malicious code behavioral analysis
  • Experience with scripting and programming
  • Experience as a former credentialed agent
  • Experience with Mac OS or Linux forensics
  • Experience with mobile forensics
  • Knowledge of intelligence or counterintelligence principles
  • BA or BS degree in Computer Information Systems or a related field
  • EnCase Certified Examiner (EnCE), AccessData Certified Examiner (ACE), Certified Forensic Computer Examiner (CFCE), or equivalent Certification
  • Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; TS/SCI clearance is required.

Do you have the Education Required? See available on-line and campus-based degree programs now!

How to apply: Apply online

Posted: December 22, 2016

NOTE: The is not responsible for typographical errors or omissions in employment notices on this web site. Often, employers change final filing dates, change duties and/or requirements, or close employment openings without notice. If you are interested in a job posted on this site be sure to contact the employer to see if changes in the filing date or job announcement have been made. Employers can also provide more information about open positions that does not appear in the announcements on these pages.