Government Careers
  • Senior Investigator Digital Forensics, Incident Response (DFIR)

  • Accenture
  • Pittsburgh, Pennsylvania 15289 United States View Map

We Are:Accenture Security is one of the fastest growing areas of our business, and our global Cyber Investigation and Forensic Response (CIFR) practice is at the heart of how we help clients prepare for, respond to, and recover from the most consequential cyber incidents. We deliver around-the-clock incident response services to our expanding portfolio of enterprise customers across the globe, providing expertise to multinational clients and shaping thought leadership inside and outside the firm.You Are:A hands-on technical leader who excels in complex investigations. You have deep expertise in Digital Forensics, Incident Response, and threat analysis, and you have the composure to apply it under pressure during active incidents. You are equally comfortable briefing clients in the boardroom and performing deep analysis. You take ownership of investigations, mentor the people around you, and you raise the bar on what world-class incident response looks like.The Work:Conduct complex forensic analysis including advanced memory forensics, malware triage, encrypted artifact recovery, and anti-forensics detectionPerform host and network digital forensics, log analysis, and threat hunting in support of incident response investigationsLeverage EDR solutions, cloud platforms (AWS, Azure, GCP), and threat intelligence to identify attacker Tactics, Techniques and Procedures (TTPs)Conduct incident response within various Cloud, OT, and traditional enterprise environmentsDevelop indicators of compromise and contribute to comprehensive attack timelinesCreate automation tools and scripts that improve team efficiency and investigation capabilitiesMentor and train 2-4 investigators across multiple cases, building team capabilityProvide quality assurance on investigator findings before Primary Investigator reviewLead medium to large workstreams (20-50+ systems) with minimal oversightSupport Primary Investigators with technical decision-making and investigation strategyTranslate strategic investigation direction into tactical tasks for team executionEffectively communicate and interface with customers, both technically and strategically, to customer stakeholders and legal counsel throughout the engagement lifecycleAuthor comprehensively written client reports on investigative findings with defensible conclusionsPresent technical findings in client calls when appropriateSupport Accenture leadership in properly scoping engagements with innovative methodical approachesTravel may be required for this role. The amount of travel will vary from 0 to 100% depending on business need and client requirements.Here's What You Need:Bachelor's degree or equivalent (minimum 12 years) work experience. (If Associate's Degree, must have minimum 6 years work experience)Minimum 4 years of Digital Forensics, Incident Response (DFIR) experience with demonstrated expertise in complex investigationsAbility to obtain US security clearances as required by client engagementMinimum of 3 years of demonstrated experience in:Enterprise incident response, digital forensics and cyber incident investigation processesCommon DFIR toolsets (Volatility, X-Ways, FTK, EnCase, Autopsy, etc.)Microsoft Windows, GNU/Linux and MacOS operating systemsMemory forensics and malware analysisDeveloping indicators of compromise and deriving attacker TTPsLeading investigation workstreams and mentoring junior team membersEnterprise environments, Active Directory, and common attack patternsProject management, analytical, and client-facing communication skillsSolving complex forensic challenges that require advanced techniquesThreat hunting on both endpoints and networksProducing accurate, defensible, well-documented analysisEradication techniques, monitoring improvements, and protection capabilitiesDeveloping and implementing dynamic remediation plans in conjunction with incident response engagementsBonus Points If:You have experience with Cloud environments (AWS, Azure, GCP) and cloud-native forensicsYou have experience with OT and ICS environmentsYou have proficiency in scripting and programming languages (Python, PowerShell, Bash)You have experience with reverse engineering and sandboxing technologiesYou have advanced malware analysis capabilities (unpacking, deobfuscation, behavior analysis)You have made contributions to open-source DFIR tools or methodologiesYou have active participation in the security community (conferences, publications, training development)You hold security certifications such as GCFA, GCFE, GREM, GCIH, CEH, or similarYou hold advanced certifications (SANS 500-level, OSCP, OSCE)Compensation at Accenture varies depending on a wide array of factors, which may include but are not limited to the specific office location, role, skill set, and level of experience. As required by local law, Accenture provides a reasonable range of compensation for roles that may be hired as set forth below.We anticipate this job posting will be posted until 08/08/2026.Accenture offers a market competitive suite of benefits including medical, dental, vision, life, and long-term disability coverage, a 401(k) plan, bonus opportunities, paid holidays, and paid time off. See more information on our benefits here:U.S. Employee Benefits | Accenture (Role Location Annual Salary RangeCalifornia $70,350 to $205,800Cleveland $59,100 to $164,600Colorado $63,800 to $177,800District of Columbia $68,000 to $189,300Illinois $59,100 to $177,800Maine $54,400 to $151,400Maryland $63,800 to $177,800Massachusetts $63,800 to $189,300Minnesota $63,800 to $177,800New York $66,300 to $205,800New Jersey $68,000 to $205,800Virginia $59,100 to $189,300Washington $80,200 to $189,300Requesting an AccommodationAccenture is committed to providing equal employment opportunities for persons with disabilities or religious observances, including reasonable accommodation when needed. If you are hired by Accenture and require accommodation to perform the essential functions of your role, you will be asked to participate in our reasonable accommodation process. Accommodations made to facilitate the recruiting process are not a guarantee of future or continued accommodations once hired.If you would like to be considered for employment opportunities with Accenture and have accommodation needs such as for a disability or religious observance, please call us toll free at 1 (877) 889-9009 or send us an email or speak with your recruiter.Equal Employment Opportunity StatementWe believe that no one should be discriminated against because of their differences. All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law. Our rich diversity makes us more innovative, more competitive, and more creative, which helps us better serve our clients and our communities.For details, view a copy of the Accenture Equal Opportunity Statement (Accenture is an EEO and Affirmative Action Employer of Veterans/Individuals with Disabilities.Accenture is committed to providing veteran employment opportunities to our service men and women.Other Employment StatementsApplicants for employment in the US must have work authorization that does not now or in the future require sponsorship of a visa for employment authorization in the United States.Candidates who are currently employed by a client of Accenture or an affiliated Accenture business may not be eligible for consideration.Job candidates will not be obligated to disclose sealed or expunged records of conviction or arrest as part of the hiring process. Further, at Accenture a criminal conviction history is not an absolute bar to employment.The Company will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. Additionally, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the Company's legal duty to furnish information.California requires additional notifications for applicants and employees. If you are a California resident, live in or plan to work from Los Angeles County upon being hired for this position, please click here for additional important information.Please read Accenture's Recruiting and Hiring Statement for more information on how we process your data during the Recruiting and Hiring process.

We Are:Accenture Security is one of the fastest growing areas of our business, and our global Cyber Investigation and Forensic Response (CIFR) practice is at the heart of how we help clients prepare for, respond to, and recover from the most consequential cyber incidents. We deliver around-the-clock incident response services to our expanding portfolio of enterprise customers across the globe, providing expertise to multinational clients and shaping thought leadership inside and outside the firm.You Are:A hands-on technical leader who excels in complex investigations. You have deep expertise in Digital Forensics, Incident Response, and threat analysis, and you have the composure to apply it under pressure during active incidents. You are equally comfortable briefing clients in the boardroom and performing deep analysis. You take ownership of investigations, mentor the people around you, and you raise the bar on what world-class incident response looks like.The Work:Conduct complex forensic analysis including advanced memory forensics, malware triage, encrypted artifact recovery, and anti-forensics detectionPerform host and network digital forensics, log analysis, and threat hunting in support of incident response investigationsLeverage EDR solutions, cloud platforms (AWS, Azure, GCP), and threat intelligence to identify attacker Tactics, Techniques and Procedures (TTPs)Conduct incident response within various Cloud, OT, and traditional enterprise environmentsDevelop indicators of compromise and contribute to comprehensive attack timelinesCreate automation tools and scripts that improve team efficiency and investigation capabilitiesMentor and train 2-4 investigators across multiple cases, building team capabilityProvide quality assurance on investigator findings before Primary Investigator reviewLead medium to large workstreams (20-50+ systems) with minimal oversightSupport Primary Investigators with technical decision-making and investigation strategyTranslate strategic investigation direction into tactical tasks for team executionEffectively communicate and interface with customers, both technically and strategically, to customer stakeholders and legal counsel throughout the engagement lifecycleAuthor comprehensively written client reports on investigative findings with defensible conclusionsPresent technical findings in client calls when appropriateSupport Accenture leadership in properly scoping engagements with innovative methodical approachesTravel may be required for this role. The amount of travel will vary from 0 to 100% depending on business need and client requirements.Here's What You Need:Bachelor's degree or equivalent (minimum 12 years) work experience. (If Associate's Degree, must have minimum 6 years work experience)Minimum 4 years of Digital Forensics, Incident Response (DFIR) experience with demonstrated expertise in complex investigationsAbility to obtain US security clearances as required by client engagementMinimum of 3 years of demonstrated experience in:Enterprise incident response, digital forensics and cyber incident investigation processesCommon DFIR toolsets (Volatility, X-Ways, FTK, EnCase, Autopsy, etc.)Microsoft Windows, GNU/Linux and MacOS operating systemsMemory forensics and malware analysisDeveloping indicators of compromise and deriving attacker TTPsLeading investigation workstreams and mentoring junior team membersEnterprise environments, Active Directory, and common attack patternsProject management, analytical, and client-facing communication skillsSolving complex forensic challenges that require advanced techniquesThreat hunting on both endpoints and networksProducing accurate, defensible, well-documented analysisEradication techniques, monitoring improvements, and protection capabilitiesDeveloping and implementing dynamic remediation plans in conjunction with incident response engagementsBonus Points If:You have experience with Cloud environments (AWS, Azure, GCP) and cloud-native forensicsYou have experience with OT and ICS environmentsYou have proficiency in scripting and programming languages (Python, PowerShell, Bash)You have experience with reverse engineering and sandboxing technologiesYou have advanced malware analysis capabilities (unpacking, deobfuscation, behavior analysis)You have made contributions to open-source DFIR tools or methodologiesYou have active participation in the security community (conferences, publications, training development)You hold security certifications such as GCFA, GCFE, GREM, GCIH, CEH, or similarYou hold advanced certifications (SANS 500-level, OSCP, OSCE)Compensation at Accenture varies depending on a wide array of factors, which may include but are not limited to the specific office location, role, skill set, and level of experience. As required by local law, Accenture provides a reasonable range of compensation for roles that may be hired as set forth below.We anticipate this job posting will be posted until 08/08/2026.Accenture offers a market competitive suite of benefits including medical, dental, vision, life, and long-term disability coverage, a 401(k) plan, bonus opportunities, paid holidays, and paid time off. See more information on our benefits here:U.S. Employee Benefits | Accenture (Role Location Annual Salary RangeCalifornia $70,350 to $205,800Cleveland $59,100 to $164,600Colorado $63,800 to $177,800District of Columbia $68,000 to $189,300Illinois $59,100 to $177,800Maine $54,400 to $151,400Maryland $63,800 to $177,800Massachusetts $63,800 to $189,300Minnesota $63,800 to $177,800New York $66,300 to $205,800New Jersey $68,000 to $205,800Virginia $59,100 to $189,300Washington $80,200 to $189,300Requesting an AccommodationAccenture is committed to providing equal employment opportunities for persons with disabilities or religious observances, including reasonable accommodation when needed. If you are hired by Accenture and require accommodation to perform the essential functions of your role, you will be asked to participate in our reasonable accommodation process. Accommodations made to facilitate the recruiting process are not a guarantee of future or continued accommodations once hired.If you would like to be considered for employment opportunities with Accenture and have accommodation needs such as for a disability or religious observance, please call us toll free at 1 (877) 889-9009 or send us an email or speak with your recruiter.Equal Employment Opportunity StatementWe believe that no one should be discriminated against because of their differences. All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law. Our rich diversity makes us more innovative, more competitive, and more creative, which helps us better serve our clients and our communities.For details, view a copy of the Accenture Equal Opportunity Statement (Accenture is an EEO and Affirmative Action Employer of Veterans/Individuals with Disabilities.Accenture is committed to providing veteran employment opportunities to our service men and women.Other Employment StatementsApplicants for employment in the US must have work authorization that does not now or in the future require sponsorship of a visa for employment authorization in the United States.Candidates who are currently employed by a client of Accenture or an affiliated Accenture business may not be eligible for consideration.Job candidates will not be obligated to disclose sealed or expunged records of conviction or arrest as part of the hiring process. Further, at Accenture a criminal conviction history is not an absolute bar to employment.The Company will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. Additionally, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the Company's legal duty to furnish information.California requires additional notifications for applicants and employees. If you are a California resident, live in or plan to work from Los Angeles County upon being hired for this position, please click here for additional important information.Please read Accenture's Recruiting and Hiring Statement for more information on how we process your data during the Recruiting and Hiring process.

Government Careers

Government Careers

Government jobs offer stability, competitive benefits, and the chance to make a meaningful impact on your community and country.

Whether you’re starting your career or seeking new opportunities, these roles provide pathways for growth, security, and service.

Explore positions across a wide range of fields and take the first step toward a rewarding future in public service.

Show more

MORE JOBS