Associate Principal Cybersecurity Incident Response Forensic Services practice

Charles River Associates

Boston, Massachusetts

Full Time

Posted January 27, 2026

$140k - $170k

Not Specified

Visa Sponsored

~108 people viewed this recently

Apply Now

Application opens on company website

Job Description

The position involves leading cyber forensic investigations, incident response, and digital forensics for clients, providing technical assessments and guidance on cybersecurity controls, and managing teams and business development efforts within CRA's Forensic Services practice.

Key Responsibilities

Lead security and privacy investigations, including breach detection, threat analysis, incident response, and malware analysis.
Perform forensic analysis of digital information using computer forensics techniques and tools.
Serve as primary client contact for incident response activities related to malicious code, unauthorized access, and misuse.
Supervise project team execution, ensuring quality assurance and overseeing work products.
Evaluate and implement new tools and processes to improve incident response capabilities.
Maintain relationships with law enforcement agencies to assist in criminal matters.
Create and lead a team environment, recruiting, retaining, and managing team morale.
Participate in business development by building client relationships, drafting proposals, and presenting firm capabilities.
Provide technical assessments and guidance on cybersecurity controls based on frameworks like NIST, HIPAA, ISO, SOC2, and NERC-CIP.
Lead and manage data analytics engagements and oversee the execution of technology best practices.

Requirements

A Bachelor’s or Master’s degree in a related field is preferred but can be waived with sufficient experience.
7-10 years of experience in cyber intrusion investigation, digital forensics, or incident response analysis.
Ability to effectively lead teams, prioritize multiple projects, and meet timely deadlines.
Experience in a hands-on technical role functioning as a testifying expert, incident responder, network forensic analyst, or malware analyst.
Experience leading data analytics engagements and managing the execution of technology-based best practices.
Working knowledge of computer hardware components, operating systems, file systems, computer networks, e-mail systems, mobile devices, IT security, or incident response.
Deep knowledge of networking TCP/IP, design, traffic flow, protocols, sessions, operating systems Windows and Unix, and web technologies.
Willing and able to travel for client projects.
Experience creating, leading, and maintaining a leveraged team environment, including recruiting and retaining employees and managing team morale.
Experience participating in and leading business development efforts, including building relationships with clients, drafting and presenting proposals, and demonstrating firm capabilities.
Providing technical assessment, audit, and guidance to clients on the adequacy of cybersecurity controls in accordance with frameworks such as NIST CSF 2.0, HIPAA, ISO 27001 and 27002, SOC2, or NERC-CIP.
Deep understanding of cybersecurity frameworks and ability to assist with team recruiting and training efforts as needed.
Ability to work at the direction of counsel on investigations.

Benefits & Perks

Compensation/salary range: 140,000 - 170,000 USD annually, with potential bonus incentive compensation

Work schedule flexibility: 3 to 4 days in the office per week, with remote work options during certain times of the year

Work environment perks: wellness programs, employee assistance resources, commuter benefits

Additional benefits: medical, dental, and vision insurance; 401(k) retirement plan with employer match; life and disability insurance; paid time off including vacation, sick leave, holidays, and paid parental leave; career development programs including training and mentorship; in-house immigration support