Coventry, England, United Kingdom
A highly experienced and trusted digital forensic and incident response analyst with excellent presentation and communication skills. I am SC cleared and have a proven record of working under pressure to meet tight deadlines on high profile cases. I am comfortable in the OT or IT space in responding to incidents and am able to identify practices to exploit and maximise opportunities to gather, process and analyse evidence. I have experience of many DFIR tools, as well as hands on experience responding to incidents in the cloud or on physical systems. With a broad skill set and experience I am comfortable investigating cyber incidents of many types. From malware and ransom ware, to phishing, network intrusion, insider threat and DLP, I work on business and safety critical systems in a thorough, considered and methodical manner to accomplish the best possible outcome.
A hands on practitioner responding to incidents in industrial control systems, from initial response and evidence gathering, to analysis and remediation, I guide the organisations response. This work has broadened my experience further and taken me to new environments, such as gas terminals and compressor sites as well as electrical sub-stations, where effected systems can be safety and business critical. This has required lateral reasoning to develop appropriate methodology and techniques to maximise evidential opportunities as well as reviewing data from a wide range of disparate sources. My experience has led to me becoming heavily involved in shaping the organisation’s response to cyber incidents in operational technology and passing on this knowledge to incident response, as well as engineering colleagues. Using forensic, eDiscovery and DFIR tools I source, process and interpret valuable information for a wide range of business areas. I provide evidence to internal customers concerning incident response, contractual disputes and business conduct investigation as well handling SAR’s under GDPR. From initial response to post incident analysis, I am involved in the all aspects of security incidents in a multi site enterprise, protecting infrastructure and ensuring business continuity.
A freelance digital forensic investigator with a wide range and depth of experience in computer and mobile forensics, offering 30 years law enforcement expertise on a short term contract basis. I provide a complete range of services from planning and investigative or forensic strategy, through data seizure and examination to presentation of expert witness evidence at court, covering the whole digital forensic life cycle. I bring 15 years of experience investigating serious and high profile criminal cases, five of which were specialized in cyber crime.
Working as part of a small dedicated team investigating cyber crime on a regional, national and international basis. As a technical investigator my responsibilities encompass incident response, scene management and digital forensic investigations. Experienced in the seizure of digital media, both at hand and remote data, as well as live forensics and complex digital forensic investigations. I also bring additional skills in databases and programming to my role.
As part of a general digital forensics team I conducted hundreds of digital forensic examinations in relation to a wide range of offences. I gained an appreciation for the importance of the integrity of lab environment, data and evidence produced. As a trusted member of the team I took responsibility for complex and high profile cases. I presented evidence at court for a range of serious offences.
Various roles within the police service. This included a posting to an intelligence office where I was involved in the analysis of crime patterns, briefing officers and developing intelligence for operational actions. I was also posted to a criminal justice department where I was involved in the preparation of case files for court. This role demanded a great deal of attention to detail as I liaised with CPS lawyers and barristers to ascertain that all available evidence was gathered.