×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity

Forensic and Incident Response Engineer

Job in Herndon, Fairfax County, Virginia, 22070, USA
Listing for: Peraton
Full Time position
Listed on 2026-01-16
Job specializations:
  • IT/Tech
    Cybersecurity
  • Engineering
    Cybersecurity
Job Description & How to Apply Below

Forensic and Incident Response Engineer

Job Location s: US

Responsibilities

Position is Contingent Upon Award

Peraton seeks innovative professionals who thrive in mission‑critical environments and are passionate about protecting our national critical infrastructure. This is your chance to make an impact on one of the nation's vital organizations, working alongside leaders in cybersecurity engineering, operations, forensics, threat analysis, data science, and systems integration.

Join Peraton in supporting a large critical infrastructure operator to defend its corporate and operations networks from nation‑state attacks, ensure the confidentiality, integrity, and availability of its systems and operations infrastructure, and comply with federal and industry cybersecurity regulation. As a forensic and incident response engineer working alongside a state‑of‑the‑art 24‑hour Cybersecurity Operations Center (CSOC), you will be responsible for detecting, investigating, and responding to cybersecurity incidents while preserving evidence and supporting root‑cause analysis.

This role leads technical incident response activities, conducts digital forensic analysis, and improves organizational readiness against cyber threats.

Primary Responsibilities
  • Lead technical response to security incidents, including containment, eradication, and recovery.
  • Perform digital forensic analysis on endpoints, servers, applications, network traffic, and cloud environments using forensically sound procedures to identify network/computer intrusion evidence and identify perpetrators.
  • Examine any electronic device that may hold evidence that could be used in a court of law.
  • Gather, handle and store evidence.
  • Perform a variety of forensic and electronic discovery services, including digital evidence preservation, forensic analysis, data recovery, tape recovery, electronic mail extraction, and database examination.
  • Collect, preserve, and analyze evidence in accordance with forensic best practices and legal requirements, observing proper evidence custody and control procedures, documenting procedures and findings in a manner suitable for courtroom presentation and preparing comprehensive written notes and reports.
  • Investigate malware, intrusions, unauthorized access, and data infiltration and exfiltration events.
  • Analyze logs, memory, disk images, and network captures to determine attack scope and impact.
  • Develop timelines, root‑cause analysis, and incident reports for both technical and executive audiences.
  • Support threat hunting and detection engineering efforts using forensic findings.
  • Collaborate with the CSOC, engineering, legal, and compliance teams during incidents.
  • Participate in on‑call or surge incident response rotations.
Additional Responsibilities
  • Assist with development and maintenance of incident response playbooks and procedures.
  • Support security tooling evaluations and forensic lab improvements.
  • Participate in tabletop exercises and readiness testing.
  • Contribute to security awareness or training efforts using incident lessons learned.
  • Maintain forensic documentation, case notes, and evidence records.
Qualifications

5 years with BS/BA; 3 years with MS/MA; 0 years with PhD

Required
  • U.S. Citizenship Required.
  • Must have the ability to obtain / maintain a DOE L Level or DOE Secret clearance.
  • Degree in computer science, engineering, cybersecurity, information technology, digital forensics, homeland security, or related field.
  • 5 years of experience with BS/BA; 3 years with MS/MA.
  • Experience in cybersecurity, incident response, or digital forensics.
  • Strong analytical and problem‑solving skills.
  • Ability to explain complex findings to non‑technical stakeholders.
  • High integrity and discretion, with strict adherence to evidence handling and chain of custody requirements.
  • Proficiency with industry‑standard forensic and Incident Response tools.
  • Proficiency of TCP/UDP packet capture and analysis.
  • Strong experience in incident response methodologies and lifecycle management.
  • Hands‑on digital forensics experience across a variety of industry‑standard operating systems.
  • Ability to work effectively during high‑stress incidents.
  • Understanding of industry cybersecurity…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search