Job Description
Job Description
Job Description
Position Summary: DigiForce Security is a growing information security and information technology company in Owings Mills, Maryland. We are looking to hire an Intermediate Digital Forensics Analyst to support the Cyber Risk Management Team on an existing contract in Windsor Mill, MD. The position is full-time/permanent and will support a US Government civilian agency. The position is available starting July 15th, 2025, upon finding a qualified candidate who can attain the appropriate background clearance.
Position Responsibilities: As an Intermediate Digital Forensics Analyst, you will play a critical role in supporting cyber investigations and proactive threat detection. Your responsibilities will include:
- Assisting the Security Operations Center (SOC) with digital investigations across mobile, network, cloud, and endpoint environments.
- Collecting, preserving, and analyzing electronic evidence using industry-standard forensic tools such as EnCase, FTK, and X-Ways.
- Performing routine memory checks and system analysis on Linux and Windows servers.
- Proactively analyzing malware, conducting advanced threat hunting, and reconstructing cyber incidents from fragmented or deleted data to solve complex puzzles and uncover root causes.
- Preparing clear and detailed forensic reports, written with the intent that they may become evidence in court proceedings.
- Communicating effectively with cross-functional teams and data centers during investigations.
- Staying ahead of emerging threats by researching new attack vectors, forensic techniques, and evolving threat actor behaviors
Experience and Skill Requirements:
- 2–5 years of experience in digital forensics and malware-related investigations.
- Bachelor’s degree in Computer Science, Digital Forensics, Cybersecurity, or related discipline; or equivalent hands-on experience with programming languages such as C, C++, or Java.
- Proven ability to create and maintain a malware analysis lab to support forensic casework, using both static and dynamic techniques.
- Proficient in static malware analysis, including code inspection and de-obfuscation (especially Java-based malware).
- Skilled in dynamic malware analysis in isolated environments to observe file, process, registry, and network behavior.
- Working knowledge of Windows internals relevant to forensics, including:
- Windows Registry artifacts
- System Calls and API Behavior
- Executable file structures (e.g., PE files)
- Hands-on experience with memory analysis using Volatility or other memory forensics tools to extract malware behavior and trace artifacts.
- Competent with forensic toolkits such as FTK for evidence collection and analysis.
- Ability to extract and develop Indicators of Compromise (IOCs) to support broader investigations or threat intelligence efforts.
- Comfortable using Wireshark or similar tools for network traffic forensics related to malware communications (C2, exfiltration, etc.).
- Capable of conducting full-scope forensic investigations involving infected systems, identifying initial infection vectors, and the scope of compromise.
- Familiarity with Linux operating systems and the ability to investigate malware incidents across multiple platforms.
- Strong documentation skills — able to produce clear, defensible forensic reports that can be used in legal, compliance, or operational contexts.
Additional Experience Preferred:
- OllyDbg
- IdaPro
- X86 Intel Assembly Language
One or more Certifications/Licenses below:
- GCFE, CFCE, CGE, DFE, CCME, CCE, or GCFA
What We Look for in You:
- A champion for our clients, with a proactive mindset toward threat detection and resolution
- Adept at explaining complex threats to non-technical stakeholders
- Eager to collaborate with cross-functional teams to devise client-specific security enhancements
- A continuous learner, staying abreast of the latest threats and defense mechanisms
- Holder of relevant technical qualifications and a beacon of analytical ability
Life at DigiForce Security:
- Workforce: We believe in empowering our team with the tools, training, and support needed to excel
- Rewarding Benefits: Our competitive compensation packages are just the start—we offer rewards that recognize your invaluable contribution to the team and our clients
- Culture of Innovation: We foster an environment where innovative ideas for security are valued and implemented
- Client-Centric Approach: We’re not just a company; we’re a partner to our clients, and your work will directly impact their success
Job Type: Full-time: Monday-Friday
Job Tags
Permanent employment, Full time, Contract work, Monday to Friday,