Consulting Associate/Cybersecurity & Incident Response (Forensic Services practice)

Job Description

Charles River Associates (CRA) is seeking a Consulting Associate to join their Forensic Services practice, focusing on Cybersecurity & Incident Response. This role involves supporting companies in addressing fraud, waste, abuse, misconduct, and non-compliance issues. The Consulting Associate will work with cross-trained teams to provide accounting, forensic, and cybercrime investigation services.Responsibilities:

• Executing security and privacy investigations for clients.
• Providing expert digital forensic support for data security incidents.
• Assisting in drafting forensic reports and affidavits.
• Engaging in problem-solving and forensic analysis of digital information.
• Identifying, researching, and organizing information for effective data analysis.
• Programming, model building, and database administration.
• Ensuring reliability of analysis through quality control measures.
• Forensically acquiring data and images from identified hosts.
• Detecting and hunting unknown malware across multiple hosts.
• Creating Indicators of Compromise (IOCs) to strengthen incident response.
• Tracking adversary activity via in-depth timeline analysis.
• Identifying lateral movement and pivots within client enterprises.
• Examining traffic using common network protocols.
• Identifying and tracking malware beaconing outbound to its command and control (C2) channel.
• Providing technical assessment/audit and guidance to clients on cybersecurity controls.
• Participating in practice-building activities including recruiting and training.

Requirements:

• 3-5 years of experience.
• Majored in Computer Science, Digital Forensics, Information Security, and/or Information Systems.
• Knowledge of cybersecurity concepts.
• Research experience and quantitative ability.
• Exceptional written and oral communication skills.
• Strong understanding of computer operating systems, software and hardware.
• Experience with conducting digital forensic analysis using commercial and open source forensic tools.
• Experience with conducting static/dynamic malware analysis in a lab environment and threat hunting in a live environment.
• Strong understanding of proper evidence handling procedures and chain of custody.
• Experience with drafting technical and investigative reports and communicating technical findings.
• Experience with utilizing automation tools and scripts to expedite analysis.
• Understanding incident handling procedures.
• Understanding of common attack techniques.

The role offers:

• Skills development programs with 100 hours of training annually.
• Career mentoring and performance coaching.
• Comprehensive total rewards program including a superior benefits package.
• Wellness programming to support physical, mental, emotional and financial well-being.
• In-house immigration support for foreign nationals and international business travelers.
• Work location flexibility with a hybrid work environment.