Role Responsibilities:
- Conduct end-to-end digital forensic investigations including data acquisition, preservation, analysis, and reporting in line with legal and regulatory requirements.
- Assist in incident response efforts including triage, evidence collection, and forensic reporting.
- Analyse digital devices (e.g., mobile phones, computers, storage media) using industry-standard forensic tools.
- Create comprehensive forensic reports suitable for use in disciplinary or legal proceedings.
- Assist clients in post-breach investigations and litigation support when required.
- Maintain chain of custody protocols to ensure integrity of evidence.
- Support internal forensic readiness planning and contribute to the continuous development of the forensics function.
- Collaborate with the penetration testing and incident response teams where investigations overlap.
- A formal qualification in Information Technology, Cybersecurity, Digital Forensics, or related field.
- Certification in at least one of the following: CFI (Certified Forensic Investigator), GCFA, EnCE, CHFI , or equivalent.
- Minimum 2 years of hands-on experience in digital forensics or incident response.
- Experience with forensic tools such as FTK, Autopsy, EnCase , X-Ways, or Oxygen Forensics.
- Strong understanding of file systems, memory analysis, email analysis, and mobile forensics.
- Familiarity with POPIA , Cybercrimes Act, and evidence admissibility principles.
- Excellent written and verbal communication skills, especially in compiling detailed forensic reports.
- Ability to work discreetly and handle sensitive matters with the utmost confidentiality and integrity.