Senior Associate/Cybersecurity & Incident Response (Forensic Services practice)

About the position CRA’s Forensic Services practice supports companies’ commitment to integrity by assisting them and their counsel in independently responding to allegations of fraud, waste, abuse, misconduct, and non-compliance. We are noted for deploying cross-trained teams of forensic professionals to assist our clients in gaining deeper insights and greater value more quickly. We provide accounting and forensic services as well as cybercrime investigation services. The opportunities to contribute to the team in this Senior Associate role may include (but are not limited to): Executing security and privacy investigations for CRA clients, in preparation of, and in response to, data security matters, which may include ongoing breach detection, threat analysis, incident response and malware analysis; Performing forensic analysis of digital information using standard computer forensics and evidence handling techniques and computer forensics tools; Improving the ability of the incident response team to react to incidents by evaluating and implementing new tools and processes; Contributing to the creation and maintenance of effective relationships with local, state and federal law enforcement agencies to assist in criminal matters; Preparing client communications for project milestones and senior leadership; Managing risk by implementing quality control measures and documentation; Participating in team recruiting and retention efforts and managing team morale. Manage the growth and professional development of junior staff members; Providing management support to engagement teams led by senior personnel; Supporting engagement planning and management. Participating in project team execution, analysis, and work product. Managing and supervising teams as appropriate; Providing technical assessment/audit and guidance to clients on the adequacy of cyber security controls in accordance with cybersecurity frameworks that are included in one or more of the following - NIST CSF 2.0, HIPAA, ISO 27001 and 27002, SOC2, NERC-CIP, Interfacing with client personnel; Assisting in business development efforts by drafting proposals and coordinating with other practice areas within the firm.

Responsibilities

• Executing security and privacy investigations for CRA clients, in preparation of, and in response to, data security matters, which may include ongoing breach detection, threat analysis, incident response and malware analysis
• Performing forensic analysis of digital information using standard computer forensics and evidence handling techniques and computer forensics tools
• Improving the ability of the incident response team to react to incidents by evaluating and implementing new tools and processes
• Contributing to the creation and maintenance of effective relationships with local, state and federal law enforcement agencies to assist in criminal matters
• Preparing client communications for project milestones and senior leadership
• Managing risk by implementing quality control measures and documentation
• Participating in team recruiting and retention efforts and managing team morale.
• Manage the growth and professional development of junior staff members
• Providing management support to engagement teams led by senior personnel
• Supporting engagement planning and management.
• Participating in project team execution, analysis, and work product.
• Managing and supervising teams as appropriate
• Providing technical assessment/audit and guidance to clients on the adequacy of cyber security controls in accordance with cybersecurity frameworks that are included in one or more of the following - NIST CSF 2.0, HIPAA, ISO 27001 and 27002, SOC2, NERC-CIP
• Interfacing with client personnel
• Assisting in business development efforts by drafting proposals and coordinating with other practice areas within the firm.

Requirements

• 5-7 years’ experience in cyber intrusion investigation or incident response analysis.
• Must hold a Bachelor’s or Master’s degree in a related field.
• Ability to effectively prioritize multiple projects and meet timely deadlines.
• Experience in a hands-on technical role functioning as an incident responder, network forensic analyst or malware analyst.
• Experience with data analytics engagements and contributing to the execution of technology-based best practices.
• Working knowledge of computer hardware components, operating systems, file systems, computer networks, e-mail systems, mobile devices, IT security or incident response.
• Deep knowledge of networking (TCP/IP, design, traffic flow, protocols, sessions), operating systems (Windows / nix) and web technologies.

Benefits

• CRA’s robust skills development programs , including a commitment to offering 100 hours of training annually through formal and informal programs, encourage you to thrive as an individual and team member.
• Beginning with research and analysis skill building, training continues with technical training, presentation skills, internal seminars, and career mentoring and performance coaching from an assigned senior colleague.
• Additional leadership and collaboration opportunities exist through internal firm development activities.
• We offer a comprehensive total rewards program including a superior benefits package, wellness programming to support physical, mental, emotional and financial well-being, and in-house immigration support for foreign nationals and international business travelers.

Apply tot his job Apply To this Job