Computer Forensic Analyst

Source: National Cyber Security – Produced By Gregory Evans

Taxation & Finance, State – Albany, NY
Bachelor of Science Degree in Computer Forensics, Computer Science, or related field AND a minimum of (24) months of satisfactory experience performing the duties of a Computer Forensic Analyst 3 or its equivalent in another computer forensic environment; AND possession of a Computer Forensics certification such as EnCE, CFCE, ACE or similar certification. Certification may be substituted with a minimum of (160) hours of Computer Forensics training with computer forensic tools such as Encase, Access Data FTK and ASR SMART OR a professional certification such as the Certified Computer Forensics Examiner, Certified Computer Examiner, GIAC Certified Forensic Examiner or GIAC Certified Computer Analyst; AND verifiable training with computer forensics tools such as Encase, Access Data FTK and ASR SMART; AND significant Computer Forensics casework experience and experience testifying before a court of law or administrative hearing as a Computer Forensics expert. Candidates must be able to obtain and maintain a professional certification such as the Certified Computer Forensics Examiner, Certified Computer Examiner, GIAC Certified Forensic Examiner or GIAC Certified Computer Analyst within one year of appointment to this level. 

Substitution: (4) years of work-related experience in the field of Computer Forensics may be substituted for the required Bachelor’s Degree. 

The duties that the incumbent of the vacancy will be expected to perform. Duties Description 
Under the general direction of the Director, the Computer Forensic Analyst 4 performs the following duties: 

• In accordance with Department policy, rules and regulations, office guidelines and industry standards, conducts data acquisition and archival; hardware, software and tool testing and validation; and physical examinations of computers, electronic devices and various Department computer network systems. 

• Copies data from multiple operating systems and mobile computing devices. Prepares copied data for archiving into digital media. Verifies the integrity of the forensic copies to be used for analysis. 

• Conducts physical examinations of computer and other electronic computing devices by inspecting the hardware peripherals in devices submitted as evidence. Document the physical condition of evidence computers and devices. 

• Disassemble and reassemble various types of electronic data or communication devices. 

• Test and validate computer hardware, software and forensic analytical tools using established procedures and guidelines. 

• Prepare and submit required documentation for admittance into evidence in court proceedings. 

• Perform computer hardware, software, network and internet related research to troubleshoot and maintain computer forensic laboratory equipment and network. 

• Assist in the review and preparation of evidence. Prepare computer and multimedia digital evidence for court presentations. 

• Testifies in court and other proceedings regarding casework involving routine laboratory processes such as acquisition, archival and analysis. 

• Examine computers and other electronic storage devices submitted as evidence. Analyze data by using computer forensic utilities and analytical techniques. 

• Prepare comprehensive analysis reports to be used in the course of investigations and entered into evidence during court proceedings. 

• Research industry standards and assist Department Investigators in developing procedures for the various stages of computer forensic processes, such as acquisition, archival and analysis of data. 

• Properly maintains the chain of custody and meets evidence handling requirements. 

• Provide technical assistance to Department Investigators during extraction of multimedia digital evidence from computer networks and other technical forensic processes in the field. 

• Recommends changes in operating procedures, equipment, and personnel. 

• Assists with the implementation of hardware and software, as well as modifications to the laboratory equipment and network as requested by management. 

• Analyzes the most complex cases which may involve multiple operating systems and mobile computing devices. 

• Testifies in court or other adverse proceedings regarding the validity of analysis performed by lower-level Computer Forensic Analysts; the processes used, and the relation of evidence to the overall investigation. 

• Advise Department Investigators of possible alternative methods of analysis that would increase accuracy, efficiency and timeliness. 

• Review examinations and analyses completed by staff. 

Additional comments regarding the vacancy. Additional Comments This is a newly classified position and jurisdictional class assignment (non-competitive) is still pending approval. As such, the incumbent will serve temporary in the position until the jurisdictional class is approved. At that time, the incumbent’s status can be changed to permanent. 

Work hours to be determined.

The post Computer Forensic Analyst appeared first on National Cyber Security Ventures.

Leave a Reply

Your email address will not be published. Required fields are marked *