Consulting Associate Cybersecurity Incident Response Forensic Services practice
Charles River AssociatesToronto, Ontario
Full Time
Posted January 29, 2026
CA$120k - CA$140k
Apply Now
Application opens on company website
Job Description
The position involves providing digital forensic and cybersecurity investigation services, including incident response, malware analysis, threat hunting, and evidence handling, to support clients facing data breaches, fraud, or cyber threats, within a consulting environment that emphasizes collaboration, technical expertise, and client support.
Key Responsibilities
- Execute security and privacy investigations, including breach detection, threat analysis, incident response, and malware analysis.
- Provide digital forensic support for data security incidents such as data breaches or fraud.
- Draft forensic reports, affidavits, and testify as an expert in digital forensics and incident response.
- Perform forensic analysis of digital information using evidence handling techniques and forensic tools.
- Create tactical and strategic threat intelligence reports on threat groups, their methodologies, and motivations.
- Collect and analyze relevant intelligence to support incident response, threat hunting, and threat intelligence teams.
- Conduct technical analysis on malicious artifacts, including malware, network traffic, and suspicious files.
- Identify, research, and organize data to facilitate effective analysis of threats and incidents.
- Acquire and analyze digital evidence from hosts to determine the impact of security incidents.
- Detect and hunt for malware and adversary activity across enterprise environments using memory and network analysis.
- Develop Indicators of Compromise (IOCs) to enhance incident response and threat intelligence efforts.
- Track adversary activity and lateral movement within client networks through detailed timeline and forensic analysis.
- Assess cybersecurity controls and provide technical guidance to clients based on cybersecurity frameworks.
- Participate in practice-building activities, including recruiting and training team members.
Requirements
- Candidates must have 3-5 years of experience in cyber intrusion investigation or incident response analysis.
- Candidates must have a strong understanding of computer operating systems, software, and hardware.
- Candidates must have the ability to conduct detailed forensic investigations and analysis of computers, networks, mobile devices, and removable media.
- Candidates must have experience with conducting digital forensic analysis using commercial and open source forensic tools, including file system forensics, memory analysis, and network analysis.
- Candidates must have experience with conducting static and dynamic malware analysis in a lab environment and threat hunting in a live environment.
- Candidates must have strong understanding of proper evidence handling procedures and chain of custody.
- Candidates must have experience with drafting technical and investigative reports and communicating technical findings.
- Candidates must have experience with utilizing automation tools and scripts to expedite analysis.
- Candidates must understand incident handling procedures including preparation, identification, containment, eradication, and recovery to protect enterprise environments.
- Candidates must have an understanding of common attack techniques used by adversaries on victim networks and how to leverage those techniques to stop further activity.
- Candidates must have experience with vulnerability management, penetration testing, scripting, programming, reverse engineering, and similar job experience.
- Candidates must have exposure to malware families used by espionage or criminal campaigns, such as PlugX, Poison Ivy, etc.
- Candidates must be proficient with Threat Intelligence Platforms and analyst software tools such as MISP, Maltego, etc.
- Candidates must have digital forensics incident response training and certifications, including SANS GIAC GCFA, GCFE, GNFA, GIME, IACIS CFCE or CIFR, Magnet MCFE, X-ways X-Pert or similar.
Benefits & Perks
Salary range of CAD 120,000 - 140,000 with potential bonus incentive compensation
Work location flexibility with at least 3 to 4 days in the office per week
Comprehensive benefits package including extended medical, dental, and vision insurance
Employer contributions to ERP, TFSP, RESP, and life and disability insurance
Paid time off including vacation, sick leave, holidays, and paid parental leave
Wellness programs and employee assistance resources
In-house immigration support for foreign nationals and international business travelers
Skills development programs with 100 hours of training annually
Career growth opportunities through internal development activities
Ready to Apply?
Join Charles River Associates and make an impact in renewable energy
Stay Updated on Sustainability Jobs
Get the latest renewable energy jobs and career tips delivered to your inbox.
Job Alerts
Get notified about new sustainability jobs
More at Charles River Associates
More jobs at Charles River Associates
Associate Principal Forensic AI Engineer Forensic Services practice
Charles River Associates
NEW
VISA
Not specified
Full Time
17m
$140k-170k
Human Capital Assistant
Charles River Associates
London
Full Time
Feb 26
Senior Associate Policy Life Sciences practice
Charles River Associates
Cambridge
Full Time
Feb 19
More jobs in Toronto, Ontario
Senior Manager, Recruiting
Samsara
Toronto
Full Time
Dec 17
$123k-169k
Software Engineer II, New Product
Samsara
Toronto
Full Time
Dec 25
$105k-135k
Technical Account Manager
Samsara
Toronto
Full Time
Dec 29
$78k-101k