Cyber Forensics/Incident Response Specialist

Crystal City, Virginia
16 Sep 2016
23 Oct 2016
Contract Type
Full Time
Jacobs Technology Information Solutions Group (ISG)provides information technology solutions and services to a broad range of both Government and private industry, including Department of Defense, Federal Civilian agencies, healthcare, education, and small/medium business market. Our analysts, engineers, and technicians are highly trained, qualified subject matter experts, understanding each segments specialized business processes, requirements, and functions. Combined with an extensive IT background, Information Solutions Group's enhanced IT services enable our clients to analyze existing business processes, identify process improvements, evaluate associated risks, and develop operational solutions.

The Cyber Forensics/Incident Response Specialist supports the Joint Strike Fighter (JSF) Program located in Crystal City, VA. The selected candidate will:

  • Perform system and network analysis of suspected or potential security incidents

  • Audit and report all F-35 Program It systems and subsystems

  • Use DoD provided and required tool suites and other approved tools/methods to perform vulnerability assessments to support C&A compliance and security controls

  • Provide evidentiary requirements such as executing forensics technical and gathering results on any computing assets such as mobile devices to support any investigation, inquiry, or litigation

  • Assist in the process of systems certification as directed by the F-35 CIO

  • Evaluate target systems to analyze results of scans, identify resolutions, develop POA&M, make recommendations, and continuously monitor requirements

The Cyber Forensics/Incident Response Specialist must have:

  • Demonstrated knowledge of the OSI model and TCP/IP networking, and basic knowledge of network and host exploitation techniques

  • Minimum of 10 years of information technology experience

  • Minimum of four (4) years experience with Windows OS platforms

  • Demonstrated knowledge of systems configuration and management of firewalls, IDS, servers and work stations

  • Ability to correlate incident data to identify specific vulnerabilities and make recommendations that enable remediation

  • Knowledge of incident categories, incident responses, and timelines for responses

  • Experience collecting data and reporting results; handling and escalating security issues or emergency situations appropriately; providing incident response capabilities to isolate and mitigate threats to maintain confidentiality, integrity, and availability for protected data

  • Demonstrated experience supporting external investigations

  • Good communication and presentation skills

  • Ability to listen, understand and translate client requirements

  • Ability to effectively manage conflict, and affect adequate solutions

  • Strategic planning skills, organizational skills, operating skills, and strong leadership

  • Familiarity with software development and network operations concepts and methodologies

  • Demonstrated understanding of best practices and the use of project management and IT methodologies including PMI, ITIL, ISO 9000, and CMMI, and tools, easily transitioning from one methodology to the other

  • Ability to lead projects on varying scales, and work with technical teams on all levels and disciplines

  • Demonstrated understanding of business processes and have the ability to thoroughly understand the technology to address client's requirements
This position requires a Bachelors degree in Computer Science, Information Sciences, or related IT discipline with 10 years of related experience. An IAM Level III certification is required: GSLC, CISM, CISSP, or CASP. An Active Top Secret clearance is required.

CEH Certification is desired.

Jacobs ISG is proud to be an EEO/AA employer.

Essential Functions

Work Environment

Inside office/cubicle environment. Requires ability to interact professionally with co-workers and all levels of management (100%).

Physical Requirements

Requires sitting for extended periods of time at a desk (90%). Requires sitting at a computer terminal for long periods of time (90%). There is a possibility that due to parking availability and location of work area walking moderate to long distances can sometimes be required.

Equipment and Machines

Requires ability to operate a personal computer, a telephone, copier, and other general office equipment (100%). Ability to conduct evaluation of third and fourth generation or current state of the art computer hardware and software and its ability to support specific requirements, interfacing with other equipment and systems.


Attendance is critical. Work hours are normally 8 hours per day and 5 days per week, Monday through Friday. Being prompt is important to provide continuous and on-going service to customers. Attendance is important to maintain continuity of service. Work outside of normal duty hours may be required with as little as one hour advance notice. Overtime is infrequent, but important when required (1%).

Other Essential Functions

Must be able to communicate effectively, both verbally and in writing. Must be able to interface with individuals at all levels of the organization. Must be able to obtain and retain a security clearance. Must be a U.S. citizen. Must be able to obtain unescorted access to work areas. Grooming and dress must be appropriate for the position and must not impose a safety risk/hazard to the employee or others.

This position requires a Bachelors degree in Computer Science, Information Sciences, or related IT discipline with 10 years of related experience. An IAMLevel III certification is required. An Active Top Secret clearance is required.

Anticipated travel up to 25%.