Career / Digital Forensics Specialist
Digital Forensics Specialist
Security & Resilience | Mid Level | Contract | others | Hybrid
Job Description
Introduction
The Digital Forensics Specialist will support the Slovenian Ministry of Defence’s ZiR network. This remote-first role requires conducting forensic investigations, managing incident responses, and documenting findings alongside the SOC team. Mandatory requirements include GCFE or GCFA certification, proficiency in Microsoft Sentinel or Splunk, and the ability to undergo security vetting for periodic on-site visits to Ljubljana.
•Conduct digital forensic investigations following cybersecurity incidents
• Support incident response activities alongside the SOC team during and after critical security events • Assist with disaster recovery efforts following cyberattacks
• Contribute to incident reports documenting forensic findings
• Participate in quarterly on-site review meetings at the client's premises in Ljubljana, Slovenia
• Contribute to the client's incident response plan documentation
Requirements & Qualifications
Valid GCFE (GIAC Certified Forensic Examiner) or GCFA (GIAC Certified Forensic Analyst) certification - certificate copy must be provided
• Willingness to undergo security vetting under Slovenian national law for on-site access
• Willingness to travel to Ljubljana, Slovenia for quarterly visits and critical on-site interventions
• Familiarity with Microsoft Sentinel or Splunk Enterprise Security (ES) for log analysis and forensic investigation support