DFIR Analyst Digital Forensics & Incident Response

DFIR AnalystDigital Forensics & Incident Response / Threat Hunting / Cyber Analytics / Outside IR35 / Fully Remote / £550–£600 pd / ASAP Start / 6 Months SR2 has partnered with a cutting-edge Cybersecurity MSP delivering critical threat detection and incident response capabilities to a number of global financial clients.You’ll be part of a dynamic DFIR team tasked with identifying, analysing, and responding to security incidents, proactively hunting for advanced threats, and contributing to the enhancement of threat detection strategies.Key Responsibilities

• Incident Response – Detect, document, and resolve security incidents efficiently
• Endpoint Forensics – Analyse host-based artifacts to reconstruct timelines and attacker activity
• Security Analytics – Extract meaningful insights from large datasets for reporting, detection, and hunting
• Threat Hunting – Identify unknown threats that evade traditional controls
• Intrusion Detection – Tune anomaly detection tools for reliable, actionable output
• Behavioral Analysis – Implement user anomaly detection criteria to spot insider threats
• Countermeasures – Design and implement control strategies to disrupt emerging threats

Required Skills & Relevant experience

• Strong understanding of Windows and Linux environments
• Experience with network security, packet analysis, and host-level forensics
• Comfortable working with large datasets, logs, and SIEM platforms for threat detection
• Capable of building timelines and performing forensic reconstruction
• Excellent written and verbal communication skills

Contract Details:

• Outside IR35
• Fully Remote (Must be UK based)
• Must be UK based
• 6 Months
• £600 per day
• ASAP Start
• 1-stage interview process

If you’re an experienced DFIR Analyst looking for a new contract, click Apply to get started. Alternatively, directly send a recent copy of your CV to Ben Sheppard at  for an immediate discussion.