The Department

The Cyber Risk and Complex Investigations team is made up of cyber and investigations specialists who work alongside our legal teams to provide a comprehensive and responsive client service.

Our practice works with clients to support them in the prevention of cyber-crime and the management of sophisticated and often complex cyber-attacks and helping them find digital information that supports their needs.

We have extensive experience of working on cyber security issues with a range of organisations, from large and complex global entities to mid-sized or small firms, start-ups and private individuals. We help our clients implement the cyber security they need to address their threats, ensuring compliance with regulatory standards. If an incident occurs, we use our expertise and experience to help clients manage the technological, legal and reputational risks.

Offering a wider breadth of service and a broader range of solutions than traditional investigators, our team combines cutting edge cyber intelligence skills with innovative investigative techniques, understanding the legal requirement to gather facts and evidence properly, safely and ethically. We assess every investigation to ensure it meets our ethical and quality standards, as well as using a robust review process.

The team provides CREST accredited security incident response and digital forensics services both internally and to our external clients and we are looking to grow and develop our response team.

The Role

For this role the primary client is Mishcon de Reya group. In this role you will support our incident response engagements, working with client IT and security teams to investigate, contain, and eradicate threats.

You must be comfortable operating under the pressure of incident response conditions, making decisions and calmly developing and executing plans and delivering concrete results to clients.

Our incident response and digital forensics team also operates a forensics lab and in this position, you may play a role in delivering forensic services. You will also frequently be called upon to provide technical advice and guidance to other internal team to help them deliver the best possible legal advice to clients.

Duties and Responsibilities

• Support incident response engagements by conducting technical investigation activities under direction from the incident lead.
• Conduct forensic acquisition and analysis in both incident response scenarios and as discrete takings from an investigation team.
• Assist with incident management, including scoping work, guiding clients through decision making, and supporting containment and eradication.
• Develop intelligence assessments of incidents and other potential threats to clients.
• Support clients with longer term guidance and support with remediation and security uplift activities.
• Provide specialist advice and guidance to internal teams on technical and forensic matters.
• Deliver investigations, tradecraft, and technical training to internal teams.
• Be part of the on-call responder group, acting as a first point of contact for incident triage.
• Assist in Identifying and mitigating Risks as part of the Risk management program.
• Contribute to Projects with both time and expertise.
• Provide a high standard of customer experience to our clients.

Skills/Experience

• Experience working in incident response, digital forensics, and/or security operations.
• Skilled in examining Windows, Linux, and MacOS hosts for evidence of compromise.
• Experience in extracting and reviewing logs from a wide range of sources to identify evidence of malicious activity.
• Experience with dynamic and static malware analysis for Windows, Linux, and MacOS.
• Experience with one or more scripting languages (Python, PowerShell, Ruby, Perl, Bash, etc.).
• Strong understanding of the modern cyber threat landscape with a good grasp of intelligence tradecraft and analysis.
• Experience in dealing with external clients, especially in high-pressure or time-critical situations is desirable.
• Strong Understanding of the Microsoft suite of security tools and controls.

Please note that this job profile is not an exhaustive list of duties but merely an outline of the key components of the role. You may be required by your line manager to take on additional responsibilities when requested.

About The Mishcon de Reya Group

The Mishcon de Reya Group is an independent, international professional services business with law at its heart, employing over 1450 people with over 650 lawyers. It includes the law firm Mishcon de Reya LLP and a collection of leading consultancy businesses that complement the firm's legal services.

Mishcon de Reya LLP is based in London, Oxford, Cambridge, Singapore and Hong Kong (through its association with Karas So LLP ). The firm services an international community of clients and provides advice in situations where the constraints of geography often do not apply. Its work is cross-border, multi-jurisdictional and complex, spanning seven core practice areas: Corporate ; Dispute Resolution ; Employment ; Impact; Innovation ; Private ; and Real Estate .

The Mishcon de Reya Group includes consultancy businesses MDR Discover, MDRi (in Hong Kong), MDR Mayfair (in London, Singapore and Dubai), MDR ONE and MDRx. The Group also includes MDR Lab, which invests in the most promising early stage legaltech companies as well as the Mishcon Academy, its in-house place of learning and platform for thought leadership.

Earlier this year, the Group announced its first strategic acquisition in the alternative legal services market, flexible legal resourcing business Flex Legal. It also acquired a majority stake in Somos, a global group actions management business.

We strive to create a fully diverse and inclusive workplace where all our people are empowered to fulfil their potential. We are proud of our agile working culture and are always happy to talk flexible working.

#LI-Hybrid