Website Administrative Office of the U.S. Courts
Applicants must have demonstrated experience as listed below. This requirement is according to the AO Classification, Compensation, and Recruitment Systems which include interpretive guidance and reference to the OPM Operating Manual for Qualification Standards for General Schedule Positions. Specialized Experience: Applicants must have at least one full year (52 weeks) of specialized experience which is in or directly related to the line of work of this position. Specialized experience must demonstrate ALL areas defined below: Conducting full digital forensics on operating systems to include, but not limited to: all version of Microsoft Windows, Unix based OS (Red Hat, CentOS, Debian, etc.), Mac OS, mobile operating systems (iOS, Android, etc.). Conducting live system and dead box digital forensics and understanding all regulatory requirements for evidence collection, processing, and retention for litigation purposes. Conducting immediate host-based and network-based forensic examinations on security incidents as they arise to determine the root cause and to reconstruct a timeline of events to facilitate incident response and recovery. Supporting the incident triage process through the examination and analysis of digital evidence and artifacts. Using a variety of tools to investigate incidents and recommend courses of action to safeguard systems. Applicants with the following qualifications are highly desirable. GIAC Certified Forensic Examiner (GCFE) GIAC Certification Forensic Analyst (GCFA) GIAC Reverse Engineering Malware (GREM) GIAC Network Forensic Analyst (GNFA) GIAC Certified Incident Handler (GCIH)
To apply for this job please visit www.usajobs.gov.