Back to Job Search

Sr Cyber Forensics Specialist

  • Location: Chicago, 60601
  • Job Type:Permanent

Posted 16 days ago

Location: Richardson, TX; Chicago, IL
Job Type: Permanent

Job Purpose:
The position is responsible for performing complex digital forensic analysis functions as part of the enterprise cyber defense operations team; investigating cyber threats, conducting analysis of data sources relevant to APT (Advanced Persist Threats); evaluating and making recommendations for the of tools/technologies in support of forensic analysis and cyber defense operations.

Required Job Qualifications:

  • Bachelor’s degree and 5 years’ experience in Information Technology OR Technical Certification and 7 years’ experience in Information Technology OR 9 years’ experience in Information Technology.
  • Experience with detecting and responding to cybersecurity threats in a complex organization.
  • Knowledge of operating systems (Windows, *NIX and MacOS), log analysis and forensic tools.
  • Experience in malware analysis or malware reverse engineering.
  • Knowledge of business portfolios.
  • Knowledge of business operations including products and services.
  • Oral and written communications.
  • Problem solving / analytical skills.
  • Understanding of cyber-attack infrastructure, including computer systems and networks.
  • Experience in computer investigations or general computer forensics.
  • Experience in analysis of TCP/IP network communication protocols, packet capture, log data, and network devices.
  • Familiarity with Cyber-attack technology related platforms and tools.
  • Experience with chain of custody concepts.
  • Awareness of the Cyber Kill Chain, MITRE ATT&CK Framework, and Intelligence Driven Defense.
  • Teamwork and collaboration.
  • Organized and detail oriented.
  • Analytical and problem-solving skills.
  • Ability to work under stress in emergencies.
  • Customer focus and the ability to manage customer expectations.

Preferred Job Qualifications:

  • Bachelor’s OR Master’s Degree in Computer Science, Information Systems, or another related field. Or equivalent work experience and industry related certifications.
  • Experience using knowledge of threat actor TTPs, MITRE ATT&CK framework, and the cyber-attack life cycle in the digital investigation’s life cycle.
  • Experience with PowerShell, Python, or other scripting language and its application to incident handling and digital investigations
  • In-depth knowledge in at least one of these areas
    •       Network traffic analysis and network security monitoring concept and technologies
    •       Malware/suspicious file triage, analysis, and IOC extraction
    •       Endpoint and memory analysis knowledge across multiple operating systems
  • Experience using a variety of digital data sources to conduct analysis and deliver forensic reports
  • Knowledge of cyber security incident investigation concepts and processes
  • Experience operating in a complex environment such as a large corporate enterprise

Candidates will be responsible for following the client's COVID-19 protocols. Please refer to your MATRIX representative for specifics.

About Us

At MATRIX, we expertly match talented professionals with job opportunities to elevate careers. Since 1983, we have placed thousands of professionals at innovative clients across every industry ranging from small startups to Fortune 50 companies. It’s why we’re consistently in the top 25 of all U.S. IT staffing firms and why our consultants rate us well above the industry average, earning us ClearlyRated's Best of Staffing awards year after year. People come to us for a job, and stay with us because of our top-notch consultant care.

MATRIX is and Equal Employment Opportunity employer and provides reasonable accommodations for qualified individuals.  Supporting medical or religious documentation will be required where applicable. If you are a qualified individual with a disability, you may request a reasonable accommodation under the American Disability Act (ADA) by emailing To ensure a quick response to your request, please use the words “Accommodation request” as the subject line of your email.