Digital Forensics & Incident Response Analyst
On site
Maidenhead, United Kingdom
Full Time
03-03-2025
Job Specifications
Join Maersk’s Groundbreaking Cyber Team: Redefining Incident Management & Response
Imagine a career where you're not just responding to security incidents—you’re revolutionising how it’s done. At Maersk, one of the world’s largest and most respected logistics and shipping companies, our Cyber team is pioneering a whole new approach to incident response. This isn’t your typical DFIR role: our combined fire team approach team is built on cutting-edge research and designed to drive change, resilience, and agility in ways the industry has never seen before.
Here, you’ll be part of a dynamic team that works together to defend, adapt, and innovate with freedom and purpose.
You won’t just work on Digital Forensics, you’ll help improve how it’s done. Dive into purple teaming, create and refine world-class detections, shape change projects, and push the boundaries of what’s possible—all during the workday with no overnight shifts. Plus, we champion continuous learning and growth through Capture the Flag (CTF) exercises and direct opportunities to bring your ideas to life.
Are you ready to be part of something transformational at Maersk and join a team that’s setting a new standard in cybersecurity?
Join a World-Class Cyber Team: Be part of an elite cyber operation at one of the globe’s most renowned logistics companies, where your contributions truly make a difference.
Further develop forensic capabilities in Traditional and modern cloud, OT and AI driven space
Conduct threat hunting by analysing data to identify existing threats on the network and support proactive content analysis
Support the continuous improvement of Maersk’s capability to detect and respond to incidents by collaborating with other teams across Cyber Operations
Work on key Cyber Security uplift projects, representing the Respond delivering results and embedding new capabilities into BAU
Provide a out-of-hours incident on-call technical/forensic response on a rota basis.
Provide detailed forensic RCA to key stakeholders, supporting Cyber Security Incident team during deep dive investigations and PIR.
Fulfil a key role within the Incident Management team to support Senior Technical Leads in investigation, resolution and recovery objectives
Support the 24/7 team when required in monitoring security alert feeds to detect, triage and investigate security events and classify them as incidents where appropriate
Continuous Learning & Dynamic Environment: Enjoy ongoing training and development in a fast-paced, stimulating atmosphere. Participate in exciting CTF competitions alongside a team of experts, pushing the boundaries of your knowledge and skills.
Using cutting edge technologies: Tackle complex cyber incidents that require innovative solutions and utilizing the latest technologies available in the market. Your expertise will be crucial in addressing and mitigating sophisticated threats, allowing you to hone your skills in a real-world environment.
Innovate and Impact: Engage in innovative projects that allow you to bring your ideas to life, help shape the future of cybersecurity while developing new capabilities that enhance our operations.
Key Responsibilities
Provide detailed forensic RCA to key stakeholders, supporting Cyber Security Incident team during deep dive investigations and PIR.
Further develop forensic capabilities in Traditional and modern cloud, OT and AI driven space
Conduct threat hunting by analysing data to identify existing threats on the network and support proactive content analysis
Support the continuous improvement of Maersk’s capability to detect and respond to incidents by collaborating with other teams across Cyber Operations
Work on key Cyber Security uplift projects, representing the Respond delivering results and embedding new capabilities into BAU
Provide a out-of-hours incident on-call technical/forensic response on a rota basis.
Fulfil a key role within the Incident Management team to support Senior Technical Leads in investigation, resolution and recovery objectives
Support the 24/7 team when required in monitoring security alert feeds to detect, triage and investigate security events and classify them as incidents where appropriate
Services Overseen
Rotation around the following:
Protective Systems Monitoring
Malicious Compromise Forensic investigation
Threat & Behavioural Analytics
Threat Hunting
Security Incident Management
Project Engagement and Delivery
Strategic Planning Input to evolve Forensics Capability
Required Experience & Skills
Technical Forensic capability across Endpoint, Cloud and OT infrastructure
Excellent written and verbal communication skills and able to be understood by both technical and non-technical stakeholders
Stakeholder management and interpersonal skills (at both a technical and non-technical level)
Ability to provide rapid and concise summaries of complex situations
Ability to work under pressure and autonomously or under general direction as required
Ability to manage conflicting priorities and multiple tasks
Outstanding critical reasoning and problem-solving skills
Excellent Event Logs analysis, i.e. Application, Security, System, PowerShell
Excellent Registry investigation skills: UserAssist, BAM, Prefetch, Amcache, Shimcasche
Good understanding of Link Files, Jumplists, Timelines forensics techniques both in Windows and Forensics
Good knowledge of forensics tooling, such as Volatility, Kape, Autopsy, Wireshark
The role holder will have proven experience working in a Security Operations Centre (SOC) and/or Computer Emergency Response Team (CERT) within a team of other analysts and engineers
Experience in Threat Hunting
Experience in Incident Management (preferred but not essential)
Practical experience in Forensic investigations
Hands on exposure to memory forensic investigations
Excellent knowledge of typical security devices such as SIEM, firewalls, etc.
Experience of working in fast-paced, high-pressure environments
Previous project engagement and execution of delivery
Excellent Investigation skills to expose, Persistence of Malware and File-less techniques in Windows, Linux
Experience in working with Volatile Data Forensics, Memory Forensics and understanding key objectives, benefits and risks associated with such investigations
Experience in both static and dynamic forensics
Experience in conducting Forensics both in small but also Enterprise scale, including but not limited to Cloud, OT and Traditional Infrastructure
Contribute to cyber incident Response management and engage in the CSIRT process for high-priority incidents.
Serve as an escalation point for junior analysts.
Deliver exceptional quality in Incident Response
Conduct thorough host and network investigations to analyze and find ways to mitigate malicious activities. You’ll be comfortable with tooling like Sysinternals, Wireshark, X-Ways and TimeSketch.
Strong log analysis skills across various platforms, including OS, web applications, network devices, and se...
About the Company
A.P. Moller - Maersk is an integrated transport and logistics company; going all the way, together, for our customers and society. ALL THE WAY is our commitment to connect the world so that everyone has both the possibility and the ability to trade, grow and thrive. The company employs roughly 110.000 employees across operations in 130 countries. Know more
Related Jobs
- Company Name
- North Tower Consulting
- Job Title
- Software Developer - Various Levels
- Job Description
- North Tower Consulting Limited is a leading customised software solutions consultancy based in Cheltenham. Founded in 2019, we have grown substantially, delivering expert services in Cyber Security, Cloud Computing, Lifecycle Management, and more. We are known for our commitment to delivering projects on time and with excellence, earning a reputation for reliability and professionalism. We are deeply committed to Corporate Social Responsibility (CSR), achieving significant milestones in this area. We continue to serve a diverse range of clients, both public and private, adapting our innovative solutions to meet their evolving technical and lifecycle needs. Our mission is to deliver impactful offerings, valued skill sets, and working collaboratively with you to build a trusted partnership for your success. Position: The Role: We are looking for skilled software developers to join our team. In this role, you will be responsible for revising, updating, refactoring, and debugging code, while creating efficient algorithms to solve complex problems. You will integrate third-party programs into our systems and coordinate the workflow within the team. Key responsibilities also include developing data audit, archiving, and restoration processes, as well as performing peer code reviews and maintaining technical documentation. You will contribute to and adhere to coding standards, using the latest development tools to rapidly create solutions that align with the company's needs. Working within an Agile team, you will develop high-quality software while ensuring exceptional customer care is always provided. Additionally, you will identify areas for improvement based on client feedback and continuously enhance software programs to improve functionality and security. You will be involved in the full Software Development Lifecycle, troubleshooting and providing root cause analysis and resolution to problems. Keeping up to date with technological advancements, DevOps practices, and programming languages is essential. You will also attend CPD events as agreed with your Line Manager and handle any other reasonable requests as part of your duties. These roles will be client based 5 days per week. Requirements: Applicants must hold an active DV or enhanced DV Clearance to be eligible.
- Company Name
- First Point Group
- Job Title
- Vice President - Design and Construction | Data Centres | Global Data Centre Innovator | London
- Job Description
- VP - Design and Construction | Data Centres | Global Data Centre Innovator Our client is a leading global Data Centre provider specialising in the design, development, and operation of high-performance, scalable facilities. With a strong presence across key markets, they support hyperscalers, cloud providers, and large enterprises by delivering cutting-edge infrastructure solutions tailored to meet the growing demands of the digital economy. Their commitment to innovation, sustainability, and operational excellence ensures they provide reliable and efficient data center environments. As part of their expansion, they are seeking top-tier talent to help drive the next generation of mission-critical facilities. Contract Type: Permanent Location: London Area, Hybrid Competitive Base Package + Benefits + Bonus Position Overview As the Vice President of Design & Construction, you will play a crucial role in managing and administering construction functions across all active markets. You will lead a team of construction directors responsible for each campus, ensuring compliance with financial controls and policies while driving the execution of all phases of construction. Your expertise and leadership will be instrumental in delivering reliable and efficient data centre environments to major hyperscale, cloud, and enterprise companies. Responsibilities Oversee the management and administration of construction functions across all active markets. Manage a team of construction directors responsible for each campus. Hold teams accountable to manage overall campus CAPEX budgets. Ensure all regions comply with financial controls and policies. Drive teams to execute all phases of construction, including pre-construction, competitive bidding, team selection, construction, commissioning, and project closeout. Ensure customer satisfaction and remediate any issues with their services in future builds. Act as a thought leader and drive coordination and integration of internal stakeholders across all regions. Requirements Extensive experience in CSA (civil, structural, architectural), MEP (mechanical, electrical, plumbing), and construction management. 10-15 years of experience in a management role required, circa 15-20 years preferred. Proven track record of successfully managing large-scale construction projects. Strong leadership and team management skills. Excellent communication and stakeholder management abilities. Willingness to travel. If you are interested in this role, please respond to this advert directly with an updated CV or email it to Csmith@firstpointgroup.com
- Company Name
- Source Technology
- Job Title
- Platform Engineer
- Job Description
- Platform Engineer Salary: £110,000 per annum Location: United Kingdom An excellent opportunity for a driven Platform Engineer to take on an exciting career challenge in the financial services sector. You'll work with a collaborative team committed to building a strong developer community while delivering high-performance, scalable solutions. What You'll Do In this role, Engineer and maintain secure, robust, and scalable platform solutions that power critical financial services. You’ll collaborate closely with cross-functional teams, driving best practices and fostering a culture of continuous improvement. Day-to-day, you’ll: Design, develop, and support platform capabilities using Java and Go. Build and manage infrastructure on AWS, leveraging Kubernetes, Kafka, and GitLab. Work in agile, permanent teams responsible for the full platform lifecycle, from development to operations. Collaborate across engineering, architecture, and product teams to deliver resilient, high-performance platforms. Champion DevOps principles, enhancing automation, scalability, and performance. Contribute to a thriving developer community, sharing knowledge and fostering collaboration. The Skills You'll Need Proven Track record as a platform engineer in a comparable role or business Proficiency in Java and/or Go. Strong experience with AWS, Spring Boot, Kubernetes, Kafka, and GitLab. Proven background in financial services or similar regulated industries. Expertise in DevOps, Agile methodologies, and CI/CD pipelines. A passion for solving complex problems and building scalable, high-performance systems. Strong interpersonal skills, with the ability to build and contribute to a collaborative developer community. Please Apply:
- Company Name
- TEKsystems
- Job Title
- Technical FX Support
- Job Description
- A international bank is looking for a Technical Support Specialist to join their FX team to help support and troubleshoot in a high frequency low latency trading environment. The candidate must have experience with Kubernetes and Docker, as well as Unix/Linux. Skills Application support Kubernetes/Docker - experience of how it works, management of a containerised environment Unix Monitoring - ELK, Grafana, Prometheus and or Splunk FX Middleware - Tibco, Gemfire and or Kafka Low latency 3 days in office, based in London. Shifts: 07:00-16:00/10:00-18:00 Job Title: Technical FX Support Location: London, UK Job Type: Permanent Trading as TEKsystems. Allegis Group Limited, Bracknell, RG12 1RT, United Kingdom. No. 2876353. Allegis Group Limited operates as an Employment Business and Employment Agency as set out in the Conduct of Employment Agencies and Employment Businesses Regulations 2003. TEKsystems is a company within the Allegis Group network of companies (collectively referred to as "Allegis Group"). Aerotek, Aston Carter, EASi, Talentis Solutions, TEKsystems, Stamford Consultants and The Stamford Group are Allegis Group brands. If you apply, your personal data will be processed as described in the Allegis Group Online Privacy Notice available at our website. To access our Online Privacy Notice, which explains what information we may collect, use, share, and store about you, and describes your rights and choices about this, please go our website. We are part of a global network of companies and as a result, the personal data you provide will be shared within Allegis Group and transferred and processed outside the UK, Switzerland and European Economic Area subject to the protections described in the Allegis Group Online Privacy Notice. We store personal data in the UK, EEA, Switzerland and the USA. If you would like to exercise your privacy rights, please visit the "Contacting Us" section of our Online Privacy Notice on our website for details on how to contact us. To protect your privacy and security, we may take steps to verify your identity, such as a password and user ID if there is an account associated with your request, or identifying information such as your address or date of birth, before proceeding with your request. commitments under the UK Data Protection Act, EU-U.S. Privacy Shield or the Swiss-U.S. Privacy Shield.