175750
CYBER CRIME SENIOR ANALYST
TS321 $91,936 - $165,526
Creation Date: 10/31/2022
Change Date: 01/01/2025
FUNCTION OF WORK:To serve as a technical subject matter expert in conducting research and investigations for the purpose of identifying suspected criminal activities in the cyber environment.
LEVEL OF WORK:SUPERVISION RECEIVED:Broad from a Cyber Crime Manager. Other reporting relationships may be approved by SCS.
SUPERVISION EXERCISED:May have direct or functional supervision over lower-level Cyber Crime Analysts. Other reporting relationships may be approved by SCS.
JOB DISTINCTIONS:Differs from Cyber Crime Analyst 2 by the presence of expert-level cyber investigations.
Differs from Cyber Crime Manager by the absence of managerial responsibilities for the work unit.
CORE COMPETENCIES: CORE COMPETENCIES HAVE NOT BEEN IDENTIFIED BY STATE CIVIL SERVICE FOR THIS JOB TITLE.
MORE INFORMATION ON THE SCS COMPETENCY MODEL CAN BE FOUND
HERE.
EXAMPLES OF WORK:EXAMPLES BELOW ARE A BRIEF SAMPLE OF COMMON DUTIES ASSOCIATED WITH THIS JOB TITLE. NOT ALL POSSIBLE TASKS ARE INCLUDED.
Serves as a subject matter expert on cybercrime topics such as tactics of criminal cyber actors, evidence preservation and collection techniques, as well as federal, state and local cyber laws.
Leads highly sensitive or complex investigations requiring the application of digital forensic techniques, knowledge of highly complex systems, and/or other methodologies of similar technical complexity.
Collects, reviews and analyzes evidence from computers, computer systems, or computer networks. Provides guidance to lower-level analysts on proper evidence collection techniques.
Leads emergency response for ESF-17 to triage and conduct analyses into large-scale cyber attacks.
Acts as on-scene commander during large-scale cyber incident responses; ensures appropriate digital evidence collection and serves as evidence custodian.
Plans and conducts training events for law enforcement personnel on cybercrime techniques, digital evidence collection techniques, and other various complex technical topics.
Develops and conducts continuing education curriculum for lower-level analysts.
Provides technical advice on procedures to be employed by law enforcement personnel; offers interpretations and opinions relative to examination of findings.
Leads investigations of multi-defendant conspiracies involving highly complex cybercrimes.
Leads investigations into illegal intrusions derived from the compromising of computers, computer systems, networks, and/or databases.
Consults with prosecutors and other law enforcement officials relative to criminal matters being handled directly by their offices; participates on federal cyber task forces with a law enforcement purpose.
Plans and conducts multi-agency meetings with commissioned officers and civilian personnel of law enforcement agencies to assist in explaining new methodologies of investigating various types of crimes as applicable to the cyber environment.
Assesses new software and hardware technologies to better support cyber investigations; designs processes and may provide technical guidance for the purpose of technology integration into criminal investigative functions.
QUALIFICATION REQUIREMENTS:MINIMUM QUALIFICATIONS:
Three years of experience in law enforcement, cybersecurity, intelligence, or investigatory work plus five years of experience in digital forensics examinations or cybersecurity; OR
Six years of full-time work experience in any field plus five years of experience in digital forensics examinations or cybersecurity; OR
A bachelor's degree plus five years of experience in digital forensics examinations or cybersecurity; OR
A bachelor's degree in computer science, cybersecurity, information systems plus four years of experience in digital forensics examinations or cybersecurity.