Cra - Boston, MA

posted about 2 months ago

Full-time - Mid Level
Remote - Boston, MA
Professional, Scientific, and Technical Services

About the position

CRA's Forensic Services practice supports companies' commitment to integrity by assisting them and their counsel in independently responding to allegations of fraud, waste, abuse, misconduct, and non-compliance. We are noted for deploying cross-trained teams of forensic professionals to assist our clients in gaining deeper insights and greater value more quickly. We provide accounting and forensic services as well as cybercrime investigation services. As an experienced leader in the forensic & cyber investigations space, your responsibilities as an Associate Principal may include leading security and privacy investigations for CRA clients, in preparation of, and in response to, data security matters, which may include ongoing breach detection, threat analysis, incident response and malware analysis. You will perform forensic analysis of digital information using standard computer forensics and evidence handling techniques and computer forensics tools. You will serve as the primary point of contact for clients with regard to all incident response activities including malicious code, unauthorized access, and inappropriate usage. Additionally, you will supervise project team execution by leading quality assurance efforts and overseeing work product. Your role will also involve improving the ability of the incident response team to react to incidents by evaluating and implementing new tools and processes, and maintaining effective relationships with local, state and federal law enforcement agencies to assist in criminal matters. You will create, lead, and maintain a leveraged team environment that is positioned for continued success and expansion by actively recruiting and retaining employees, and managing team morale. Furthermore, you will participate in and lead business development efforts by building relationships with current and potential clients, drafting and presenting proposals, participating in pitches, and demonstrating firm capabilities to potential clients. You will provide technical assessment/audit and guidance to clients on the adequacy of cyber security controls in accordance with cybersecurity frameworks that are included in one or more of the following - NIST CSF 2.0, HIPAA, ISO 27001 and 27002, SOC2, NERC-CIP, and assist with team recruiting and training efforts as needed. Finally, you will work at the direction of counsel on investigations.

Responsibilities

  • Leading security and privacy investigations for CRA clients in response to data security matters.
  • Performing forensic analysis of digital information using standard computer forensics techniques.
  • Serving as primary point of contact for clients regarding incident response activities.
  • Supervising project team execution and overseeing work product.
  • Improving incident response team capabilities by evaluating and implementing new tools and processes.
  • Maintaining relationships with law enforcement agencies for criminal matters.
  • Creating and maintaining a leveraged team environment for success and expansion.
  • Participating in business development efforts and building client relationships.
  • Providing technical assessment and guidance on cybersecurity controls.
  • Assisting with team recruiting and training efforts.

Requirements

  • A Bachelor's or Master's degree in a related field is preferred but can be waived with sufficient experience.
  • 7-10+ years' experience in cyber intrusion investigation, digital forensics or incident response analysis.
  • Ability to effectively lead teams, prioritize multiple projects and meet deadlines.
  • Experience in a hands-on technical role as a testifying expert, incident responder, network forensic analyst or malware analyst.
  • Experience leading data analytics engagements and managing technology-based best practices.
  • Working knowledge of computer hardware, operating systems, file systems, computer networks, and IT security.
  • Deep knowledge of networking (TCP/IP, design, traffic flow, protocols), operating systems (Windows / *nix) and web technologies.
  • Willingness and ability to travel for client projects.

Nice-to-haves

  • Experience with cybersecurity frameworks such as NIST CSF 2.0, HIPAA, ISO 27001 and 27002, SOC2, NERC-CIP.

Benefits

  • 100 hours of training annually through formal and informal programs.
  • Comprehensive total rewards program including a superior benefits package.
  • Wellness programming to support physical, mental, emotional and financial well-being.
  • In-house immigration support for foreign nationals and international business travelers.
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service