Consulting Associate/Cybersecurity & Incident Response (Forensic Services practice)

• 3-5 years of experience in cyber intrusion investigation or incident response analysis • Strong understanding of computer operating systems, software and hardware • Ability to conduct detailed forensic investigations and analysis of computers, networks, mobile devices and removable media • Experience with conducting digital forensic analysis using commercial and open source forensic tools. Including file system forensics, memory analysis and network analysis • Experience with conducting static/dynamic malware analysis in a lab environment and threat hunting in a live environment • Experience in collegiate computer security competitions • Strong understanding of proper evidence handling procedures and chain of custody • Experience with drafting technical and investigative reports and communicating technical findings • Experience with utilizing automation tools and scripts to expedite analysis • Understanding incident handling procedures: preparation, identification, containment, eradication, and recovery-to protect enterprise environments • Understanding of common attack techniques used by an adversary on a victim network and leveraging those techniques to stop further adversary activity • Experience with vulnerability management, penetration testing, scripting, programming, reverse engineering and similar job experience • Exposure to a variety of malware families used by Espionage or Criminal campaigns, such as PlugX, Poison Ivy, etc. • Proficiency with Threat Intelligence Platforms and analyst software tools e.g. MISP, Maltego, etc. • Digital forensics/incident response training and certifications, including SANS GIAC (GCFA, GCFE, GNFA, GIME), IACIS (CFCE or CIFR), Magnet MCFE, X-ways X-Pert or similar

• CRA’s robust skills development programs , including a commitment to offering 100 hours of training annually through formal and informal programs, encourage you to thrive as an individual and team member. Beginning with research and analysis skill building, training continues with technical training, presentation skills, internal seminars, and career mentoring and performance coaching from an assigned senior colleague. Additional leadership and collaboration opportunities exist through internal firm development activities. • We offer a comprehensive total rewards program including a superior benefits package, wellness programming to support physical, mental, emotional and financial well-being, and in-house immigration support for foreign nationals and international business travelers.