DFIR Analyst (Digital Forensics & Incident Response)
Posted 1 week ago by SR2
£600 Per day
Outside
Remote
London
Summary: The DFIR Analyst role involves working within a dynamic team focused on digital forensics and incident response for global financial clients. The position requires expertise in identifying, analyzing, and responding to security incidents, as well as proactively hunting for advanced threats. The role is fully remote and outside IR35, with an immediate start available for a 6-month contract. Candidates must be based in the UK and possess strong technical skills in cybersecurity.
Key Responsibilities:
- Incident Response – Detect, document, and resolve security incidents efficiently
- Endpoint Forensics – Analyse host-based artifacts to reconstruct timelines and attacker activity
- Security Analytics – Extract meaningful insights from large datasets for reporting, detection, and hunting
- Threat Hunting – Identify unknown threats that evade traditional controls
- Intrusion Detection – Tune anomaly detection tools for reliable, actionable output
- Behavioral Analysis – Implement user anomaly detection criteria to spot insider threats
- Countermeasures – Design and implement control strategies to disrupt emerging threats
Key Skills:
- Strong understanding of Windows and Linux environments
- Experience with network security, packet analysis, and host-level forensics
- Comfortable working with large datasets, logs, and SIEM platforms for threat detection
- Capable of building timelines and performing forensic reconstruction
- Excellent written and verbal communication skills
Salary (Rate): £600/day
City: London
Country: UK
Working Arrangements: remote
IR35 Status: outside IR35
Seniority Level: undetermined
Industry: IT
DFIR Analyst
Digital Forensics & Incident Response / Threat Hunting / Cyber Analytics / Outside IR35 / Fully Remote / £550–£600 pd / ASAP Start / 6 Months
SR2 has partnered with a cutting-edge Cybersecurity MSP delivering critical threat detection and incident response capabilities to a number of global financial clients. You’ll be part of a dynamic DFIR team tasked with identifying, analysing, and responding to security incidents, proactively hunting for advanced threats, and contributing to the enhancement of threat detection strategies.
Key Responsibilities
- Incident Response – Detect, document, and resolve security incidents efficiently
- Endpoint Forensics – Analyse host-based artifacts to reconstruct timelines and attacker activity
- Security Analytics – Extract meaningful insights from large datasets for reporting, detection, and hunting
- Threat Hunting – Identify unknown threats that evade traditional controls
- Intrusion Detection – Tune anomaly detection tools for reliable, actionable output
- Behavioral Analysis – Implement user anomaly detection criteria to spot insider threats
- Countermeasures – Design and implement control strategies to disrupt emerging threats
Required Skills & Relevant experience
- Strong understanding of Windows and Linux environments
- Experience with network security, packet analysis, and host-level forensics
- Comfortable working with large datasets, logs, and SIEM platforms for threat detection
- Capable of building timelines and performing forensic reconstruction
- Excellent written and verbal communication skills
Contract Details:
Outside IR35
Fully Remote (Must be UK based)
Must be UK based
6 Months
£600 per day
ASAP Start
1-stage interview process
If you’re an experienced DFIR Analyst looking for a new contract, click Apply to get started. Alternatively, directly send a recent copy of your CV to Ben Sheppard at (url removed) for an immediate discussion.