Address 116 Quayside, Rotterdam House, Newcastle upon Tyne, NE1 3DY. +44 (0) 203 643 0248
477 Madison Avenue, Manhattan, NY 10022.

Job Title: Digital Forensic and Incident Response Consultant Department:

EMEA Location: Frankfurt - Germany

Job Description:

As a Digital Forensic and Incident Response Consultant at our global client, you will play a crucial role in providing technical expertise and consultative solutions in the field of Digital Forensics, Incident Response, Cyber Security, and eDiscovery for our diverse client base, including Law Firms, Fortune 500 multi-nationals, and Government/Law Enforcement agencies. You will serve as a technical lead on cases for our regional and international Discovery & Data Insights teams (DFIR/Legal Technologies/Data Analytics) and collaborate closely with our Cyber Response and Crisis Management divisions, as well as our Investigations teams. Additionally, you will support the business development effort for the department by contributing subject matter expertise in articles, presentations, and marketing campaigns.


  • Provide expert forensic/incident response consultancy and expertise in data collections, investigative/analysis, and cyber security services for our clients.
  • Collaborate with our Investigations teams across regions to ensure seamless operations.
  • Deliver high-quality work to our clients in a timely and efficient manner, ensuring that the work is defensible and meets evidential standards.
  • Provide expert testimony in court when required.
  • Demonstrate innovation and creativity by taking initiative to bring teams together.
  • Anticipate client needs and continually seek ways to work more efficiently.
  • Respond to potential inquiries and convert them into sales leads and proposals.
  • Actively engage in business development and marketing efforts.
  • Be available for international travel (up to 25% of the time).



  • Demonstrable technical computer forensics experience in cyber incident response and investigations.
  • Thorough understanding of best practice procedures (NPCC, NIST, ISO17025), evidence handling, computer systems, and tools of the trade.
  • Thorough understanding of the MITRE ATT&CK and Cyber Kill Chain framework, network topology, and EDR solutions.
  • Expertise in multiple operating systems, particularly Microsoft and Linux infrastructure, as well as cloud services like Microsoft 365, Azure, AWS, and Google Workspace.
  • Practical use of common computer forensic tools for imaging and analysis.
  • Proficiency in PowerShell scripting, Bash scripts, Python, SQL, and data wrangling for log analysis.
  • Track record of performing forensic collections, incident response, and digital investigations while maintaining detailed contemporaneous notes.
  • Experience in mobile device forensics.
  • Ability to provide client-facing communications and consultative services.


  • Wide understanding of programming/scripting skills.
  • Strong presentation skills.

Qualifications and Specialist Skills:


  • Excellent written and verbal communication skills.
  • Bachelor's degree in IT or a similar technical field (or related experience).
  • Competence in using Microsoft/Apple/Linux products.
  • In-depth understanding of computer networks and infrastructure.


  • Bachelor's or Master's degree (or equivalent) in Computer Forensics.
  • Forensic accreditation, such as EnCE, ACE, GCFE.