DFIR Analyst (Digital Forensics & Incident Response)

DFIR Analyst
Digital Forensics & Incident Response / Threat Hunting / Cyber Analytics / Outside IR35 / Fully Remote / £550–£600 pd / ASAP Start / 6 Months

SR2 has partnered with a cutting-edge Cybersecurity MSP delivering critical threat detection and incident response capabilities to a number of global financial clients.
You’ll be part of a dynamic DFIR team tasked with identifying, analysing, and responding to security incidents, proactively hunting for advanced threats, and contributing to the enhancement of threat detection strategies.
 
Key Responsibilities

Incident Response – Detect, document, and resolve security incidents efficiently
Endpoint Forensics – Analyse host-based artifacts to reconstruct timelines and attacker activity
Security Analytics – Extract meaningful insights from large datasets for reporting, detection, and hunting
Threat Hunting – Identify unknown threats that evade traditional controls
Intrusion Detection – Tune anomaly detection tools for reliable, actionable output
Behavioral Analysis – Implement user anomaly detection criteria to spot insider threats
Countermeasures – Design and implement control strategies to disrupt emerging threatsRequired Skills & Relevant experience

Strong understanding of Windows and Linux environments
Experience with network security, packet analysis, and host-level forensics
Comfortable working with large datasets, logs, and SIEM platforms for threat detection
Capable of building timelines and performing forensic reconstruction
Excellent written and verbal communication skills
Contract Details:
Outside IR35
Fully Remote (Must be UK based)
Must be UK based
6 Months
£600 per day
ASAP Start
1-stage interview processIf you’re an experienced DFIR Analyst looking for a new contract, click Apply to get started. Alternatively, directly send a recent copy of your CV to Ben Sheppard at (url removed) for an immediate discussion