Associate Cybersecurity Incident Response Forensic Services practice
Charles River AssociatesBoston, Massachusetts
Full Time
Posted November 24, 2025
$93k - $105k
Apply Now
Application opens on company website
Job Description
The position involves providing digital forensic and cybersecurity incident response services, including investigating data breaches, malware analysis, threat hunting, and supporting clients with technical assessments and reports within a consulting firm specializing in economic and forensic analysis.
Key Responsibilities
- Execute security and privacy investigations, including breach detection, threat analysis, incident response, and malware analysis.
- Provide digital forensic support for data security incidents such as data breaches or fraud.
- Draft forensic reports, affidavits, and testify as an expert in digital forensics and incident response.
- Conduct forensic analysis of digital information using evidence handling techniques and forensic tools.
- Identify, research, and organize data to facilitate effective analysis, including threat intelligence and log data.
- Acquire digital evidence from hosts and analyze for signs of compromise and impact.
- Detect and hunt malware, including rootkits, backdoors, and Trojans, across enterprise environments.
- Create Indicators of Compromise (IOCs) to enhance incident response and threat intelligence.
- Track adversary activity and lateral movement within client networks using timeline and memory analysis.
- Examine network traffic and system artifacts to identify malicious activity and command-and-control channels.
- Assess cybersecurity controls and provide technical guidance based on cybersecurity frameworks.
- Participate in practice-building activities such as recruiting and training forensic professionals.
Requirements
- Bachelor's or Master's degree with a relevant academic focus in Computer Science, Digital Forensics, Information Security, or Information Systems.
- 2-4 years of relevant work experience in financial economic analysis, preferably in a consulting firm, or recent graduates or individuals without directly relevant experience may be hired into the Analyst title.
- Digital forensics incident response training and certifications, including SANS GIAC GCFA, GCFE, GNFA, GIME, IACIS CFCE or CIFR, Magnet MCFE, X-ways X-Pert or similar.
- Strong understanding of computer operating systems, software, and hardware.
- Ability to conduct detailed forensic investigations and analysis of computers, networks, mobile devices, and removable media.
- Experience with conducting digital forensic analysis using commercial and open source forensic tools, including file system forensics, memory analysis, and network analysis.
- Experience with conducting static and dynamic malware analysis in a lab environment and threat hunting in a live environment.
- Experience in collegiate computer security competitions.
- Strong understanding of proper evidence handling procedures and chain of custody.
- Experience with drafting technical and investigative reports and communicating technical findings.
- Experience with utilizing automation tools and scripts to expedite analysis.
- Understanding incident handling procedures including preparation, identification, containment, eradication, and recovery to protect enterprise environments.
- Understanding of common attack techniques used by adversaries on a victim network and leveraging those techniques to stop further adversary activity.
- Ability to forensically acquire data and images from identified hosts, locate evidence of compromise, and determine its impact from disk, file, memory, and log analysis.
- Ability to identify artifact and evidence locations to answer critical questions, including execution, file access, data theft, anti-forensics, and detailed system usage by an adversary.
- Ability to detect and hunt unknown live, dormant, and custom malware across multiple hosts in an enterprise environment.
- Ability to create Indicators of Compromise (IOCs) from analysis to strengthen incident response and threat intelligence efforts.
- Skill in tracking adversary activity second-by-second on a host via in-depth timeline analysis.
- Knowledge of the evidence needed to determine the type of malware used in an attack, including rootkits, backdoors, and Trojan horses, and selecting appropriate defenses and response tactics for each.
- Ability to identify lateral movement and pivots within client enterprises, showing how an adversary transitions from system to system without detection.
- Experience with using physical memory analysis tools to determine an adversary's activities on a host and other hosts used as pivot points across the network.
- Ability to examine traffic using common network protocols to identify patterns of activity or specific actions that warrant further investigation.
- Skill in identifying and tracking malware beaconing outbound to its command and control (C2) channel via memory forensics, registry analysis, and network connections.
- Providing technical assessment, audit, and guidance to clients on the adequacy of cybersecurity controls in accordance with cybersecurity frameworks such as NIST CSF 2.0, HIPAA, ISO 27001 and 27002, SOC2, or NERC-CIP.
- Ability to participate in practice-building activities including recruiting and training.
- Excellent written and oral communication skills for drafting forensic reports, affidavits, and testifying as an expert in digital forensics and incident response.
- Ability to work collaboratively with a team, effectively manage time, prioritize tasks, and take ownership of work.
- Physical and mental capacity to perform detailed forensic investigations and analysis, including handling evidence and working with sensitive data.
Benefits & Perks
Salary range of $92,500 - $105,000 with potential for bonus incentive compensation
Work location flexibility with at least 3 to 4 days in the office and options for remote work
Comprehensive benefits package including medical, dental, and vision insurance
401(k) retirement plan with employer match
Life and disability insurance
Paid time off including vacation, sick leave, holidays, and paid parental leave
Wellness programs and employee assistance resources
In-house immigration support for foreign nationals and international business travelers
Skills development programs with at least 100 hours of training annually, including technical, presentation, and leadership training
Career growth opportunities through internal firm development activities
Ready to Apply?
Join Charles River Associates and make an impact in renewable energy
Stay Updated on Sustainability Jobs
Get the latest renewable energy jobs and career tips delivered to your inbox.
Job Alerts
Get notified about new sustainability jobs
More at Charles River Associates
Jobs in Boston, Massachusetts
More jobs at Charles River Associates
Manager Transfer Pricing practice
Charles River Associates
VISA
Oakland
Full Time
3d
$130k-153k
Associate Transfer Pricing practice
Charles River Associates
Oakland
Full Time
Dec 24
$87k-95k
Associate Transfer Pricing practice
Charles River Associates
VISA
Oakland
Full Time
Dec 27
$87k-95k
More jobs in Boston, Massachusetts
Manager, Interconnection
Nexamp
Boston
Full Time
Dec 21
$150k-165k
Associate, Client Success
Xpansiv
Boston
Full Time
Dec 29
$58k-62k
Associate, Client Success
Xpansiv
Boston
Full Time
Dec 18
$58k-62k