Cra - Boston, MA
posted about 2 months ago
CRA's Forensic Services practice supports companies' commitment to integrity by assisting them and their counsel in independently responding to allegations of fraud, waste, abuse, misconduct, and non-compliance. We are noted for deploying cross-trained teams of forensic professionals to assist our clients in gaining deeper insights and greater value more quickly. We provide accounting and forensic services as well as cybercrime investigation services. As an experienced leader in the forensic & cyber investigations space, your responsibilities as an Associate Principal may include leading security and privacy investigations for CRA clients, in preparation of, and in response to, data security matters, which may include ongoing breach detection, threat analysis, incident response and malware analysis. You will perform forensic analysis of digital information using standard computer forensics and evidence handling techniques and computer forensics tools. You will serve as the primary point of contact for clients with regard to all incident response activities including malicious code, unauthorized access, and inappropriate usage. Additionally, you will supervise project team execution by leading quality assurance efforts and overseeing work product. Your role will also involve improving the ability of the incident response team to react to incidents by evaluating and implementing new tools and processes, and maintaining effective relationships with local, state and federal law enforcement agencies to assist in criminal matters. You will create, lead, and maintain a leveraged team environment that is positioned for continued success and expansion by actively recruiting and retaining employees, and managing team morale. Furthermore, you will participate in and lead business development efforts by building relationships with current and potential clients, drafting and presenting proposals, participating in pitches, and demonstrating firm capabilities to potential clients. You will provide technical assessment/audit and guidance to clients on the adequacy of cyber security controls in accordance with cybersecurity frameworks that are included in one or more of the following - NIST CSF 2.0, HIPAA, ISO 27001 and 27002, SOC2, NERC-CIP, and assist with team recruiting and training efforts as needed. Finally, you will work at the direction of counsel on investigations.