Cybersecurity Forensics and Malware Lead

Job Description

Job DescriptionDescription:

*This position is contingent upon a future opening with Gunnison.

Salary: $145,000 - $155,000/year

Work Location: Hybrid. 4 days/week on site in Washington, DC

• Lead digital forensic and malware analysis operations in support of cybersecurity activities for the federal customer
• Provide subject matter expertise for forensic investigations across Windows, Linux, macOS, cloud, and enterprise environments
• Perform both static and dynamic malware analysis to identify indicators of compromise, adversary techniques, and root causes
• Analyze forensic artifacts, memory images, endpoint data, and SIEM telemetry to detect malicious activity
• Coordinate with incident response and triage teams to support investigation, containment, and recovery efforts
• Conduct live forensic investigations using enterprise security tools and approved forensic platforms
• Collect, preserve, and manage digital evidence in accordance with forensic standards and procedures
• Produce detailed forensic and malware analysis reports documenting findings and investigative results
• Support real-time investigations involving high-severity security incidents
• Analyze advanced threats including ransomware, phishing campaigns, and sophisticated malware
• Perform memory analysis and data recovery using approved forensic methodologies
• Correlate data from endpoint, network, identity, and cloud sources to support investigations
• Communicate findings to leadership and cybersecurity teams, ensuring timely escalation as needed
• Review forensic deliverables for accuracy, completeness, and compliance with SLAs
• Develop and maintain forensic SOPs, playbooks, and investigative procedures
• Support reporting and awareness efforts by contributing forensic insights and threat trends
• Participate in technical briefings and operational meetings
• Drive improvements in forensic and investigative processes
• Support onboarding, training, and knowledge transfer activities

Requirements:

• Bachelor’s degree in Computer Science, Information Technology, or related discipline
• Minimum of 5 years of incident response experience in a large SOC, including at least 3 years focused on digital forensics
• At least 3 years of experience conducting disk, memory, and registry analysis using industry-standard forensic tools such as EnCase, FTK, X-Ways, and Volatility
• Strong understanding of file systems and operating system artifacts (e.g., SRUM, Prefetch, Shellbags)
• Familiarity with federal evidence handling requirements and chain-of-custody procedures
• Certification required: GCFA, GREM, CFCE, or OSED

Clearance Requirement: Ability to obtain and maintain a Public Trust.

The salary range for this position depends upon multiple factors including location, the individual's knowledge, skills, competencies, and experience, and contract-specific budget constraints and organizational requirements.

Gunnison Consulting Group's total compensation package also includes bonus and profit-sharing opportunities, depending on company and employee performance. Available employee benefits include:

• 3 weeks of Personal Leave your first year
• 11 paid Holidays each year
• 5 days of Flexible Time Off each year
• 401(k) company match at 50% up to 10% of your salary
• Medical, Dental and Vision Insurance
• Life and Disability Insurance
• Public Transportation Subsidies
• Certifications and Training Allowance - Up to $5,000/year!

Why Join Gunnison?

• Gunnison takes on ambitious projects. We target fun, challenging work that requires creative thinking and innovation.
• Quality is our top priority.
• Gunnison employee benefits meet or exceed what other companies in the Washington, D.C. metropolitan area offer.
• There is a great sense of camaraderie at Gunnison. This is an atmosphere we will maintain as we continue to grow.
• We are growing rapidly and the opportunity for individual professional growth with Gunnison is outstanding.
• We hire for careers at Gunnison, not to fill a position.

Equal Opportunity Employer. Must be eligible for employment in the United States. We are unable to sponsor candidates at this time.

In 1994 Gunnison began serving the greater Washington, D.C. metro area, focused on tackling our customers' most ambitious technology projects. By creating a culture dedicated to enabling our customers and employees to achieve more than they ever thought they could, the company has thrived for over 25 years.