Associate Cybersecurity Incident Response Forensic Services practice
Charles River AssociatesWashington, District of Columbia
Full Time
Posted January 20, 2025
$87k - $91k
Energy Consulting
Visa Sponsored
Apply Now
Application opens on company website
Job Description
The position involves executing security and privacy investigations, providing expert digital forensic support, and conducting detailed forensic analysis of digital information to assist clients with data security incidents, such as breaches or fraud.
Key Responsibilities
- Execute security and privacy investigations for clients related to data security matters.
- Provide expert digital forensic support for counsel and clients in data security incidents.
- Assist in drafting forensic reports and testifying as an expert in digital forensics.
- Engage in problem-solving and forensic analysis of digital information.
- Identify, research, and organize information for effective data access and analysis.
- Program and administer databases using languages such as Python, T-SQL, and VBA.
- Forensically acquire data and images from identified hosts.
- Detect and analyze malware across multiple hosts in an enterprise environment.
- Provide technical assessments and guidance on cybersecurity controls.
- Participate in practice-building activities including recruiting and training.
Requirements
- 2-4 years of experience in a relevant field.
- Bachelor's degree in Computer Science, Digital Forensics, Information Security, or Information Systems.
- Knowledge of cybersecurity concepts.
- Exceptional written and oral communication skills.
- Ability to use data to solve client problems.
- Experience in executing security and privacy investigations for clients.
- Experience in providing expert digital forensic support for counsel and clients.
- Experience in drafting forensic reports and affidavits.
- Experience in problem-solving and forensic analysis of digital information using standard evidence handling techniques and computer forensics tools.
- Experience in programming, model building, and database administration using Python, T-SQL, VBA, Excel, C++, among others.
- Experience in forensically acquiring data and images from identified hosts.
- Experience in identifying artifact and evidence locations to answer critical questions.
- Experience in detecting and hunting unknown live, dormant, and custom malware across multiple hosts.
- Experience in creating Indicators of Compromise (IOCs) from analysis.
- Experience in tracking adversary activity on a host via in-depth timeline analysis.
- Understanding of evidence needed to determine the type of malware used in an attack.
- Experience in identifying lateral movement and pivots within client enterprises.
- Experience in using physical memory analysis tools.
- Experience in examining traffic using common network protocols.
- Experience in identifying and tracking malware beaconing outbound to its command and control (C2) channel.
- Experience in providing technical assessment audit and guidance to clients on the adequacy of cybersecurity controls in accordance with cybersecurity frameworks such as NIST CSF 2.0, HIPAA, ISO 27001 and 27002, SOC2, NERC-CIP.
- Strong understanding of computer operating systems, software, and hardware.
- Ability to conduct detailed forensic investigations and analysis of computers, networks, mobile devices, and removable media.
- Experience with conducting digital forensic analysis using commercial and open-source forensic tools.
- Experience with conducting static and dynamic malware analysis in a lab environment and threat hunting in a live environment.
- Strong understanding of proper evidence handling procedures and chain of custody.
- Experience with drafting technical and investigative reports and communicating technical findings.
- Experience with utilizing automation tools and scripts to expedite analysis.
- Understanding of incident handling procedures including preparation, identification, containment, eradication, and recovery.
- Understanding of common attack techniques used by an adversary on a victim network.
Benefits & Perks
Compensation/salary range: $87,000 - $91,000
Work schedule: 3 to 4 days a week in the office, with additional remote work options during certain times of the year
Work environment perks: Flexibility to work from home periodically, emphasis on career growth, mentorship, and inclusivity
Additional benefits: 100 hours of training annually, comprehensive total rewards program, wellness programming, in-house immigration support
Ready to Apply?
Join Charles River Associates and make an impact
Stay Updated on Sustainability Jobs
Get the latest renewable energy jobs and career tips delivered to your inbox.
Job Alerts
Get notified about new sustainability jobs
