Digital Forensics Senior Analyst
Date: Jun 4, 2025
Location: Savannah, GA, US
Company: Gulfstream Aerospace Corporation
Digital Forensics Senior Analyst in GAC Savannah
Unique Skills:
- Experience analyzing forensic artifacts of enterprise operating systems (ex. Windows, Linux, and MacOS) to discover elements of an intrusion and identify root cause.
- Experience analyzing memory images to identify malicious patterns (using tools like Volatility, Magnet AXIOM, or similar).
- Experience analyzing mobile phone artifacts to support internal investigations (using tools like Cellebrite, Magnet AXIOM, or similar).
- Experience using Hashcat or similar to perform password cracking.
- Experience performing forensic acquisition and examination of Windows, Unix/Linux, and Macintosh-based workstations and servers.
- Conduct analysis of metadata and forensic examinations of digital media from a variety of sources including preservation, acquisition, and analysis of digital evidence with the goal of developing forensically sound evidence.
- Familiarity with forensics tools for Windows and MacOS artifacts analysis as well as iPhone investigations, such as Magnet AXIOM, KAPE (Kroll Artifact Parser and Extractor) or similar.
- Familiarity with eDiscovery aka Legal Hold solutions, such as Exterro, EnCase or similar.
Education and Experience Requirements
Job Description
- Conducting forensic collections of electronic evidence including information system and network devices for legal, human resources, ethics, and information security.
- Applying forensic software/hardware applications to analyze digital media, images; determining solutions for recovery of potentially relevant information.
- Examining and analyzing network traffic, related applications and operating systems to identify potential threats, anomalous or malicious activities to network resources; validating Intrusion Detection System (IDS) alerts.
- Analyze security data to effectively detect intrusions & attempted intrusions and to initiate and engage the proper resources to mitigate the risk.
- Providing reports and documents regarding network security incidents details and outcome; leads efforts in troubleshooting problems and recommending vulnerability corrections.
- Monitoring and improving documentation and reporting processes for cyber incident status and results.
- Design and implementation of the organizational information security solutions, and continuously enhancing information security approaches and methodologies.
- Lead incident response team in addressing and managing the aftermath of a security breach or attack. Must be trained and have experience in incident response procedures and practices .
- Defining process issues and resolutions; facilitating and overseeing computer forensics processes.
- Conducting security assessments, penetration testing, and ethical hacking.
- Identifying, analyzing, and reporting threats or hidden events within the enterprise network by using defensive measures and information collected from a variety of sources to protect data, information systems, and networks.
- Perform analysis and investigations using data from firewalls, IPS, VPN, web filtering, SIEM, IDS, email filtering and forensic tools.
- Contributes to the development and maintenance of the information security strategy.
- Able to be on call for incidents and problems; also able to work different shifts. .
- Able to travel as needed. .
- Proficient in the use of incident response and forensics tools such as FTK, Encase, and Cellebrite. .
- Must have an understanding of cyber forensics, networking, and information security technologies and be able to demonstrate outside-the-box thinking and continuous learning.
- Experience with the following operating systems: Windows, OSX, IOS, Linux or UNIX.
- Security Certification such as CISSP, CEH, ACE, EnCE, CCE, Security+ etc. required.
Additional Information
Requisition Number: 226884
Category: Information Systems
Percentage of Travel: Up to 25%
Shift: First
Employment Type: Full-time
Posting End Date: 07/03/2025
Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans
Gulfstream does not provide work visa sponsorship for this position, unless the applicant is a currently sponsored Gulfstream employee.
Legal Information | Site Utilities | Contacts | Sitemap
Copyright © 2025 Gulfstream Aerospace Corporation. All Rights Reserved. A General Dynamics Company.
Gulfstream Aerospace Corporation, a wholly-owned subsidiary of General Dynamics (NYSE: GD), designs, develops, manufactures, markets, services and supports the world's most technologically-advanced business jet aircraft
Nearest Major Market: Savannah
Job Segment:
Computer Forensics, Network Security, Information Security, Linux, Testing, Security, Technology