(2027 Bachelor's/Master's graduates) Cyber & Forensic Technology Consulting Analyst/Associate
About the role
CRA is a leading global consulting firm providing expertise in economic, financial, technical, and business management to clients worldwide. The Forensic Services/Cybersecurity & Digital Forensics team supports cyber due diligence, incident response, software/source code analysis, insurance claims, and security transformation.
Responsibilities
- Aid in security and privacy investigations in response to data security matters, including ongoing breaches and fraud.
- Conduct forensic analysis of digital information using standard computer forensic and evidence handling techniques and tools.
- Apply investigative techniques, scientific reasoning, and digital forensic techniques against various systems to answer questions.
- Identify, research, and organize information to determine what a hacker did to a compromised system, whether data was stolen from a company asset, or what data to assess and provide in a litigation.
- Defensibly collect digital evidence and complete chain-of-custody documentation.
- Leverage programming, model building, and database administration skills (Python, T-SQL, VBA, Excel, C#, etc.) to support investigations.
- Communicate investigative and analytical findings with team members, clients, and other professionals, and assist with drafting written reports summarizing procedures performed and findings.
- Collaborate with business stakeholders and experts to develop new and innovative tools to support the evolving forensic landscape.
- Stay current with developments in digital forensics, software tools, e-discovery, and incident response.
Requirements
- Bachelor’s or Master’s degree candidates graduating December 2026/Summer 2027 with an academic focus in Cybersecurity, Computer Science and Engineering, Digital Forensics, Management Information Systems, Security Information Systems, or related fields.
- Strong understanding of computer operating systems, software, and hardware.
- Experience conducting detailed forensic investigations and analyses of computers, networks, mobile devices, and removable media.
- Experience with conducting digital forensic analyses using commercial and open-source forensic tools, including file system forensics, memory analysis, and network analysis.
- Experience with conducting static/dynamic malware analyses in a lab environment and threat hunting in a live environment.
- Strong understanding of proper evidence handling procedures and chain-of-custody.
- Experience drafting technical and investigative reports and communicating technical findings.
- High-level familiarity with legal concepts related to intellectual property.
- Experience utilizing automation tools and scripts to expedite analyses.
- Understanding of incident handling procedures, including preparation, identification, containment, eradication, and recovery-to-protect enterprise environments.
- Understanding of common attack techniques used by an adversary on a victim network and how to leverage those techniques to stop further adversary activity.
- Individuals with digital forensics/incident response training and/or certifications, including SANS GIAC (GCIA, GCFA, GCFE, GNFA, GCCC, and/or GREM), IACIS (CFCE or CIFR), and/or Guidance Software (EnCE), are preferred but not required.
Qualifications
- Effective written and oral communication skills.
- Demonstrated high level of initiative and leadership.
- Demonstrated attention to detail and commitment to producing accurate, high-quality work.
- Strong teamwork and collaboration capabilities.
- Excellent time management and task prioritization skills.
- Clear and demonstrated interest in consulting through coursework, work experience, activities, or attendance at CRA recruiting events.
Desired Qualifications
- Experience with Python, T-SQL, VBA, Excel, C#, and/or other programming languages and tools.
- Ability to communicate investigative and analytical findings with team members, clients, and other professionals.
- Experience developing new and innovative tools to support the evolving forensic landscape.
- Understanding of incident handling procedures, including preparation, identification, containment, eradication, and recovery-to-protect enterprise environments.
- Understanding of common attack techniques used by an adversary on a victim network and how to leverage those techniques to stop further adversary activity.
Benefits
- Comprehensive total rewards program including a superior benefits package, wellness programming, and in-house immigration support.
Pay
A good-faith estimate of the annual base salary range for this position is $92,500 – $100,000. Starting pay within this range may vary based on factors such as education level, experience, skills, geographic location, market conditions, and other qualifications of the successful candidate. This position may be eligible for additional bonus incentive compensation.
Schedule
CRA offers a flexible work schedule, with individuals spending at least 3 to 4 days a week working in the office (which may include traveling to another CRA office or to client meetings).
Location
CRA creates a work environment that enables our colleagues to benefit from being together in the office to best deliver on our promise of career growth, mentorship, and inclusivity. At the same time, we recognize that individuals realize a range of benefits when working from home periodically. We currently expect that individuals spend at least 3 to 4 days a week working in the office.