Consulting Associate Cybersecurity Incident Response Forensic Services practice
Charles River AssociatesToronto, Ontario
Full Time
Posted December 18, 2025
Apply Now
Application opens on company website
Job Description
The position involves providing digital forensic and cybersecurity incident response services, including investigating data breaches, malware analysis, threat hunting, and supporting clients with technical assessments and reports within a consulting firm specializing in economic and management consulting.
Key Responsibilities
- Execute security and privacy investigations, including breach detection, threat analysis, incident response, and malware analysis
- Provide digital forensic support for data security incidents such as data breaches or fraud
- Draft forensic reports, affidavits, and testify as an expert in digital forensics and incident response
- Perform forensic analysis of digital information using evidence handling techniques and forensic tools
- Create threat intelligence reports and develop custom analytic products from open and closed sources
- Support incident response, threat hunting, and intelligence teams by collecting and analyzing relevant data
- Conduct technical analysis on malicious artifacts, including malware and suspicious files or network traffic
- Identify, research, and organize evidence to assess system compromise and adversary activity
- Detect and hunt for malware, including command and control communications, across enterprise environments
- Develop Indicators of Compromise (IOCs) to enhance incident response and threat intelligence efforts
- Track adversary activity through timeline analysis and identify lateral movement within networks
- Analyze memory, disk, and log data to determine malware type and adversary techniques
- Identify evidence of malicious activity and system compromise to answer critical investigative questions
- Provide technical assessments and guidance on cybersecurity controls based on frameworks such as NIST, ISO, and others
Requirements
- Candidates must have 3-5 years of experience in cyber intrusion investigation or incident response analysis.
- Candidates must have a strong understanding of computer operating systems, software, and hardware.
- Candidates must have the ability to conduct detailed forensic investigations and analysis of computers, networks, mobile devices, and removable media.
- Candidates must have experience with conducting digital forensic analysis using commercial and open source forensic tools, including file system forensics, memory analysis, and network analysis.
- Candidates must have experience with conducting static and dynamic malware analysis in a lab environment and threat hunting in a live environment.
- Candidates must have experience in collegiate computer security competitions.
- Candidates must have a strong understanding of proper evidence handling procedures and chain of custody.
- Candidates must have experience with drafting technical and investigative reports and communicating technical findings.
- Candidates must have experience with utilizing automation tools and scripts to expedite analysis.
- Candidates must understand incident handling procedures including preparation, identification, containment, eradication, and recovery to protect enterprise environments.
- Candidates must have an understanding of common attack techniques used by adversaries on victim networks and how to leverage those techniques to stop further activity.
- Candidates must have experience with vulnerability management, penetration testing, scripting, programming, reverse engineering, and similar job experience.
- Candidates must have exposure to malware families used in espionage or criminal campaigns, such as PlugX and Poison Ivy.
- Candidates must be proficient with Threat Intelligence Platforms and analyst software tools such as MISP and Maltego.
- Candidates must have digital forensics incident response training and certifications, including SANS GIAC GCFA, GCFE, GNFA, GIME, IACIS CFCE or CIFR, Magnet MCFE, X-ways X-Pert or similar.
Benefits & Perks
Compensation/salary range (not specified)
Work schedule flexibility with at least 3 to 4 days in the office per week
Work environment perks including career growth opportunities, mentorship, and inclusivity
Skills development programs with 100 hours of annual training
Comprehensive total rewards program including benefits package
Wellness programming supporting physical, mental, emotional, and financial well-being
In-house immigration support for foreign nationals and international business travelers
Ready to Apply?
Join Charles River Associates and make an impact in renewable energy
Stay Updated on Sustainability Jobs
Get the latest renewable energy jobs and career tips delivered to your inbox.
Job Alerts
Get notified about new sustainability jobs
More at Charles River Associates
More jobs at Charles River Associates
Human Capital Assistant
Charles River Associates
NEW
London
Full Time
6h
Senior Associate Policy Life Sciences practice
Charles River Associates
Cambridge
Full Time
Feb 19
Analyst - Labor Employment practice
Charles River Associates
VISA
New York
Full Time
Feb 19
$93k-105k
More jobs in Toronto, Ontario
AI Engineer, AI Platform
Affinity
Toronto
Full Time
Feb 20
$116k-160k
Engineering Manager, AI Platform
Affinity
Toronto
Full Time
Feb 20
Senior Machine Learning Engineer, AI Platform
Affinity
Toronto
Full Time
Feb 20
$160k-220k