Center for Internet Security, Inc.

Senior CERT Analyst (Computer Emergency Response Team)

Job Locations US-Remote
Cybersecurity Operations
Regular Full-Time


The primary purpose of this position is to be a subject matter expert in Digital Forensics Incident Response (DFIR), conducting rapid triage and investigating cyber incidents impacting State, Local, Tribal and Territorial (SLTT) governments. This position involves critical duties and responsibilities that must continue to be performed during crisis situations and contingency operations, which may necessitate extended hours of work.

What You'll Do

  • Assist with leading efforts involving incident response and forensics for SLTT organizations and represent CIS in those engagements
  • Build and maintain successful relationships with existing and prospective members
  • Create detailed reports of investigative activity for consumption by internal and external organizations
  • Assist in training and mentoring other team members
  • Assist with improvements to policies, procedures, technologies, tools, techniques, and operational efficiencies
  • Other tasks and responsibilities as assigned

What You'll Need

  • Bachelor’s degree in a related field
  • 3+ years of experience in digital forensics and incident response or a related field
  • Thorough understanding of advanced principles, theories, standards, practices, protocols, and procedures used in Digital Forensics / Incident Response
  • Experience delivering technical presentations and reports and ability to articulate highly technical processes and information to a non-technical audience
  • Excellent interpersonal communication skills and professional demeanor
  • Understanding of advanced principles, theories, standards, practices, protocols, and procedures used in Digital Forensics / Incident Response
  • Understand various operating systems (Windows, Linux, Mac) and command line tools, network protocols, and TCP/IP fundamentals
  • Ability to conduct forensic analysis of mobile devices including Android, iOS, Blackberry, and cellular and tablet devices
  • Understanding of file system forensics including HFS, AFS, NTFS, FAT, EXT, and CDFS
  • Ability to maintain strict confidentiality
  • The position is open to U.S. citizens and requires a favorably adjudicated DHS Fitness Review for Public Trust Positions**
  • Must be authorized to work in the United States

It's a Plus if You Have:

  • Experience with scripting languages such as Bash, Perl, or Python
  • Experience with forensic tools including FTK, SANS SIFT, and EnCase
  • Certifications in related areas (CFCE, CCE, GCFE, GCIH, GCFA, GCNA, GREM, etc.)

*Additional years of relevant experience or a combination of an Associate’s degree or equivalent and relevant experience may be substituted for the Bachelor’s degree.


**Factors that may cause a negative Fitness Review decision include:

  • Criminal Conduct
  • Dishonest Conduct
  • Employment Misconduct
  • Alcohol Abuse
  • Drug Use (illegal drug use or use of a legal drug in a manner that deviates from approved medical direction) Additionally, illegal drug use includes the use of drugs that are illegal for federal purposes despite being legal in select states and countries, such as marijuana.)
  • False Statements
  • Financial Issues
  • Have not resided in the US for three (3) of the past five (5) years


Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed