Network Forensic Analyst (Falls Church, VA)

Network Forensic Analyst (Falls Church, VA)Network Forensic Analyst Chantilly/Falls Church (On-Site) Travel:Up to 30% as required We are seeking experienced incident responders who are ready to hit the ground running and bring their skills to an enterprise environment with points-of-presence in all 54 States and territories. The Cyber Incident Response Team (CIRT) is a group of highly skilled individuals who operate together, with purpose and urgency. Team members will have specialized knowledge and experience with overlapping general knowledge in the operations of various enterprise computing systems and network security architectures. If you enjoy network security CTF challenges and finding efficient ways to parse through large amounts of network traffic artifacts this is the spot for you! As a member of the Cyber Incident Response Team,your mission will include Responding as a group to various computing and network security incidents in a global enterprise. Responding to incidents escalated by the SOC and NOC teams, or as directed by leadership. Work together with other agencies where our computing environments or network systems converge. Threat-hunting the environment. Working together with the NOC and SOC to develop better ways to reduce risk and increase security throughout the enterprise. As a team of analysts under the direction of the CIRT Coordinator / Team Lead you will contribute to daily updates including the final incident report with documentation and artifacts, supporting your findings and remediation or hardening strategies. Be able to support the host forensic analysts and other team members with network artifacts. Add value to the Cyber Incident Response Team regarding acquisition of forensic network artifacts. Required Qualifications: Experience with TAPs, SPAN ports and local host capture. Understanding of how network traffic flows through security devices such as firewalls, IPS/IDS, routers, and switches. US Citizen Active Top Secret DoD clearance or the ability to obtain one Certifications that meet or exceed IAM or IAT Level II (Example: CCNA, CASP, CISM, CAP, CISSP) or be able to achieve one within first 30 days of hire. 3-5 years of experience (can be a combination of education and experience) Highly level of proficiency with these tools:Wireshark, tcpdump, Zeek, Suricata, NetworkMiner Highly level of proficiency with Network Protocols:ip, ipv6, icmp, tcp, udp, dns, http, tls, quic Preferred Knowledge and Qualifications: Be able to derive network understanding from disparate sources. Be able to suggest infrastructure improvements to help the NOC and SOC prevent network security incidents or to detect and isolate network security threats and risks, earlier in the attack lifecycle. Include general knowledge & experience with Windows Domain environments, Cloud Environments, RedHat and other Linux flavored operating systems. Include experience using tools or Powershell/Python scripts to parse through firewall logs, proxy logs and flow data (NetFlow, sFlow, IPFIX).GIAC Network Forensic Analyst (GNFA), GIAC Certified Intrusion Analyst (GCIA) This role has an internal job title of Security Engineer I,II or III depending on experience Working is no longer solely about the job. Here at Sealing Tech, we understand your happiness and health is vital to our success. We are innovative in our approach to cultivating balanced work environments and offer a plethora of added perks. Sealing Tech offers competitive compensation packages, health, dental, and vision insurance, retirement contributions, tuition reimbursement, flexible schedules, and generous vacation policies. We strive to be of service to those who have served our country and communities. Such as veteran support groups, outreach opportunities and transition plans. Other perks include monthly catered meals, a stocked kitchen, and company retreats and gatherings. Plus, flexible work arrangements, pet friendly offices and profit sharing with qualified employees. We are looking for a new member to join our team, take on challenges, be innovative and willing to grow with us. SealingTech offers competitive compensation packages, health, dental, and vision insurance, retirement contributions, tuition reimbursement, flexible schedules and generous vacation policies. Perks include monthly catered meals, a stocked kitchen, and company retreats and gatherings. We''re looking for a new member to join our team, take on challenges, and be willing to grow with us.Sealing Technologies, Inc. is an Equal Employment Opportunity and Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, or national origin.As a federal contractor, we provide reasonable accommodations to applicants with disabilities where appropriate. Applicants requiring reasonable accommodation for any part of the application and hiring process should contact the Human Resources Department by email at hr @ or by mail at 6750 Alexander Bell Drive, Suite 200, Columbia, MD 21046. Determinations on requests for reasonable accommodation are made by the Human Resources Manager and will be made on a case-by-case basis. This is a full time positionClosing Date:Security Clearance: Ability to obtain a Top Secret Clearance

Created: 2025-11-15