• Location: Chantilly, Virginia
• Type: Contract
• Job #2770

Title: Cyber Security Analyst
Location: Chantilly, VA

*Clearance: *Active TS/SCI w/ Polygraph needed to apply *
Company Overview:
Cornerstone Defense is the Employer of Choice within the Intelligence, Defense, and Space communities of the U.S. Government.  Realizing early on that our most prized assets are our employees, we continually focus our attention on improving the overall work/life experience they have supporting the mission.  Our Team is pushed every day to use their industry leading knowledge to provide end-to-end solutions to combat our nation’s toughest and most secure problems.  If you are looking for a place to not only be professionally challenged, but encouraged and supported by a company that cares, don’t look any further than Cornerstone Defense.

Required skills and demonstrated experience 

• The candidate shall have the following required skills, certifications and demonstrated experience: 
• Demonstrated experience performing hands-on forensic review of devices to include laptops and mobile devices, using open source or commercial forensic tools, such as EnCase, FTK, X-Ways, Magnet IEF, or BlackLight. 
• Demonstrated experience handling and imaging various types of evidence from Solid State Drives (SSD), Hard Disk Drives (HDD), Thumb Drives, Volatile Memory, or Compact Disks. 
• Demonstrated experience with data extraction and analysis from various data sources including files, logs, directories, unallocated space, raw images, and custom databases. 
• Demonstrated experience parsing data types necessary to extract metadata and content of forensic value from various data sources. 
• Demonstrated experience and in depth understanding of multiple operating systems such as Windows, Linux, iOS, and Android. 
• Demonstrated experience performing hands-on forensic review or reverse engineering of modern mobile devices such as Google Android or Apple iOS. 
• Demonstrated experience working with virtualization software and virtualized environments to include ESXi, VMWare, or VirtualBox. 
• Demonstrated experience conducting analysis of identified malicious software or code using both static and dynamic malware analysis. 
• Demonstrated experience using debuggers and disassemblers such as OllyDbg, WinDbg, IDA Pro, or Binary Ninja. 
• Demonstrated experience understanding system kernel level processing to detect and report on significant kernel events such as root kits, hooked functions, call tables, and data structures. 

Highly Desired skills and demonstrated experience 

• Other skills and demonstrated experiences that are highly desired but not mandatory to perform the work, include: 
• Demonstrated experience using programming skills using scripting languages such as Perl, Python, or Bash. 
• Demonstrated experience with Sponsor’s enterprise and operational activities, capabilities, technical development programs. 
• Demonstrated experience with Sponsor’s information cyber security policies and regulations. 
• Demonstrated experience with risk management standards, Committee on National Security Systems Publication (CNSSP) 1253, Federal Information Processing Standards (FIPS) 140-2, 199, 200, and National Institute of Standards and Technology (NIST) Special Publication 800-37, 800-39, 800-53. 

​​​​​​​