Control Risks
We are now seeking an Associate Consultant or Consultant to join our Digital Forensics and Incident Response team in London. In this role you will provide technical expertise and consultative solutions in the field of Digital Forensics, Incident Response, Cyber Security and eDiscovery for our clients. Our clients include Law Firms, Fortune 500 multi-nationals, and Government/Law Enforcement. You will be expected to be a technical lead on cases for our regional and international Discovery & Data Insights teams (DFIR/Legal Technologies/Data Analytics) as well as working closely with our Cyber Response and Crisis Management divisions as well as our Investigations teams. In addition, you will support the business development effort for the department contributing subject matter expertise in articles, presentations and marketing campaigns. Tasks and Responsibilities Provide forensic/incident response consultancy and expertise in data collections, investigative/analysis & cyber security services to our clients To support our Investigation teams across regions To provide high quality deliverables to our clients in a timely and efficient manner To ensure work is defensible and to an evidential standard as appropriate for tasks To provide expert testimony in court as and when required To be innovative and creative showing initiative in bringing teams together To anticipate client needs and continually strive for ways to work efficiently To respond to potential enquiries and convert these into sales leads and proposals To actively engage in business development and marketing Must be available for international travel (up to 25% of time) Knowledge and Experience Essential Previous, demonstrable, technical computer forensics experience for cyber incident response and investigations. Thorough understanding of best practice procedures (NPCC, NIST, ISO17025) evidence handling, computer systems and tools of the trade Thorough understanding of both the MITRE ATT&CK and Cyber Kill chain framework, network topology and EDR solutions Previous expert understanding of multiple operating systems, particularly Microsoft and Linux infrastructure and networking systems, both on-premise and in the cloud, as well as dedicated cloud services such as Microsoft 365, Azure, AWS and Google Workspace Previous expert and practical use of common computer forensic tools for imaging and analysis (for example, Logicube Falcon, Velociraptor, EnCase, FTK, Nuix, X-Ways, Axiom, IEF, Blacklight, Kali, WinFE, DEFT, Cellebrite, XRY) Expertise in PowerShell scripting, Bash scripts, Python, SQL and data wrangling for log analysis Established track record for performing forensic collections, involvement in incident response and digital investigations alongside maintaining detailed contemporaneous notes Production of expert reports and witness statements Experience in performing mobile device forensics Providing client-facing communications & consultative services Preferred Wide understanding of programming/scripting skills Presentation skills Control Risks offers a competitively positioned compensation and benefits package that is transparent and summarised in the full job offer. We operate a discretionary global bonus scheme that incentivises, and rewards individuals based on company and individual performance. Control Risks supports hybrid working arrangements, wherever possible, that emphasise the value of in-person time together - in the office and with our clients - while continuing to support flexible and remote working. As an equal opportunities employer, we encourage suitably qualified applicants from a wide range of backgrounds to apply and join us and are fully committed to equal treatment, free from discrimination, of all candidates throughout our recruitment process.
We are now seeking an Associate Consultant or Consultant to join our Digital Forensics and Incident Response team in London. In this role you will provide technical expertise and consultative solutions in the field of Digital Forensics, Incident Response, Cyber Security and eDiscovery for our clients. Our clients include Law Firms, Fortune 500 multi-nationals, and Government/Law Enforcement. You will be expected to be a technical lead on cases for our regional and international Discovery & Data Insights teams (DFIR/Legal Technologies/Data Analytics) as well as working closely with our Cyber Response and Crisis Management divisions as well as our Investigations teams. In addition, you will support the business development effort for the department contributing subject matter expertise in articles, presentations and marketing campaigns. Tasks and Responsibilities Provide forensic/incident response consultancy and expertise in data collections, investigative/analysis & cyber security services to our clients To support our Investigation teams across regions To provide high quality deliverables to our clients in a timely and efficient manner To ensure work is defensible and to an evidential standard as appropriate for tasks To provide expert testimony in court as and when required To be innovative and creative showing initiative in bringing teams together To anticipate client needs and continually strive for ways to work efficiently To respond to potential enquiries and convert these into sales leads and proposals To actively engage in business development and marketing Must be available for international travel (up to 25% of time) Knowledge and Experience Essential Previous, demonstrable, technical computer forensics experience for cyber incident response and investigations. Thorough understanding of best practice procedures (NPCC, NIST, ISO17025) evidence handling, computer systems and tools of the trade Thorough understanding of both the MITRE ATT&CK and Cyber Kill chain framework, network topology and EDR solutions Previous expert understanding of multiple operating systems, particularly Microsoft and Linux infrastructure and networking systems, both on-premise and in the cloud, as well as dedicated cloud services such as Microsoft 365, Azure, AWS and Google Workspace Previous expert and practical use of common computer forensic tools for imaging and analysis (for example, Logicube Falcon, Velociraptor, EnCase, FTK, Nuix, X-Ways, Axiom, IEF, Blacklight, Kali, WinFE, DEFT, Cellebrite, XRY) Expertise in PowerShell scripting, Bash scripts, Python, SQL and data wrangling for log analysis Established track record for performing forensic collections, involvement in incident response and digital investigations alongside maintaining detailed contemporaneous notes Production of expert reports and witness statements Experience in performing mobile device forensics Providing client-facing communications & consultative services Preferred Wide understanding of programming/scripting skills Presentation skills Control Risks offers a competitively positioned compensation and benefits package that is transparent and summarised in the full job offer. We operate a discretionary global bonus scheme that incentivises, and rewards individuals based on company and individual performance. Control Risks supports hybrid working arrangements, wherever possible, that emphasise the value of in-person time together - in the office and with our clients - while continuing to support flexible and remote working. As an equal opportunities employer, we encourage suitably qualified applicants from a wide range of backgrounds to apply and join us and are fully committed to equal treatment, free from discrimination, of all candidates throughout our recruitment process.
Methods Business and Digital Technology
Methods is a £100M+ IT Services Consultancy who has partnered with a range of central government departments and agencies to transform the way the public sector operates in the UK. Established over 30 years ago and UK-based, we apply our skills in transformation, delivery, and collaboration from across the Methods Group, to create end-to-end business and technical solutions that are people-centred, safe, and designed for the future. Our human touch sets us apart from other consultancies, system integrators and software houses - with people, technology, and data at the heart of who we are, we believe in creating value and sustainability through everything we do for our clients, staff, communities, and the planet. We support our clients in the success of their projects while working collaboratively to share skill sets and solve problems. At Methods we have fun while working hard; we are not afraid of making mistakes and learning from them. Predominantly focused on the public sector, Methods is now building a significant private sector client portfolio. Methods was acquired by the Alten Group in early 2022. Role Overview Methods is a leading digital transformation consultancy, partnering with public and private sector organisations to deliver innovative and secure solutions. With a strong focus on governance, risk, and compliance (GRC), we help businesses navigate complex security landscapes while ensuring regulatory and operational resilience. Principal Cyber Security Risk & Audit Consultant This role is ideal for a professional with a strong background in cyber security, risk management, and internal audit. The ideal candidate will have experience across both the public and private sectors, with exposure to or experience in management consultancy. Strong team building and leadership experience is highly desirable. Lead and execute cyber security audits, ensuring compliance with regulatory and industry standards. Develop and maintain risk management frameworks, aligning with best practices such as ISO 27001, NIST, and GDPR. Collaborate with stakeholders to identify and mitigate cyber risks across digital and operational infrastructures. Provide expert guidance on cyber risk governance, resilience, and assurance strategies. Assess third party risk management practices and conduct security audits on suppliers and partners. Work closely with CISOs, IT, and compliance teams to drive a proactive security culture. Report findings and recommendations to senior leadership, ensuring risk mitigation strategies are effectively implemented. Essential Skills & Qualifications Candidates must have one of the following qualifications or be willing to work towards them: ChCSP in the Audit and Assurance (specialism) - Chartered status with the UK Cyber Security Council (CSC) PriCSP in the Audit and Assurance (specialism) - Principal level with the CSC, with a commitment to attaining Chartered status CMIIA - Chartered Member of the Institute of Internal Auditors, with willingness to work towards ChCSP CISA - ISACA Certified Information Systems Auditor, with willingness to work towards ChCSP QiCA - Institute of Internal Auditors Qualification in Computer Auditing, with willingness to work towards ChCSP Additional professional certifications of interest include IRM Chartered Risk Manager certification ISACA certifications such as CISM, CRISC, CGEIT CISSP (Certified Information Systems Security Professional) Other essential skills Proven experience in cyber security risk management and audit, ideally within regulated industries Strong knowledge of security frameworks, including ISO 27001, NIST, CIS Controls, and GDPR compliance Ability to conduct security assessments, risk analyses, and internal audits Familiarity with security tooling and governance platforms (e.g., SIEM, GRC platforms) Excellent communication skills with the ability to influence senior stakeholders A proactive mindset with the ability to work independently and as part of a team This role will require you hold or achieve Security Clearance. As part of the onboarding process candidates will be asked to complete a Baseline Personnel Security Standard; details of the evidence required to apply may be found on the government website Gov.UK. If you are unable to meet this and any associated criteria, then your employment may be delayed, or rejected - Details of this will be discussed with you at interview Methods is passionate about its people; we want our colleagues to develop the things they are good at and enjoy. By joining us you can expect Autonomy to develop and grow your skills and experience Be part of exciting project work that is making a difference in society Strong, inspiring and thought-provoking leadership A supportive and collaborative environment Development - access to LinkedIn Learning, a management development programme, and training Wellness - 24/7 confidential employee assistance programme Flexible Working - including home working and part time Social - office parties, breakfast Tuesdays, monthly pizza Thursdays, Thirsty Thursdays, and commitment to charitable causes Time Off - 25 days of annual leave a year, plus bank holidays, with the option to buy 5 extra days each year Volunteering - 2 paid days per year to volunteer in our local communities or within a charity organisation Pension - Salary Exchange Scheme with 4% employer contribution and 5% employee contribution Discretionary Company Bonus - based on company and individual performance Life Assurance - of 4 times base salary Private Medical Insurance - which is non contributory (spouse and dependants included) Worldwide Travel Insurance - which is non contributory (spouse and dependants included) Enhanced Maternity and Paternity Pay Travel - season ticket loan, cycle to work scheme For a full list of benefits please visit our website ()
Methods is a £100M+ IT Services Consultancy who has partnered with a range of central government departments and agencies to transform the way the public sector operates in the UK. Established over 30 years ago and UK-based, we apply our skills in transformation, delivery, and collaboration from across the Methods Group, to create end-to-end business and technical solutions that are people-centred, safe, and designed for the future. Our human touch sets us apart from other consultancies, system integrators and software houses - with people, technology, and data at the heart of who we are, we believe in creating value and sustainability through everything we do for our clients, staff, communities, and the planet. We support our clients in the success of their projects while working collaboratively to share skill sets and solve problems. At Methods we have fun while working hard; we are not afraid of making mistakes and learning from them. Predominantly focused on the public sector, Methods is now building a significant private sector client portfolio. Methods was acquired by the Alten Group in early 2022. Role Overview Methods is a leading digital transformation consultancy, partnering with public and private sector organisations to deliver innovative and secure solutions. With a strong focus on governance, risk, and compliance (GRC), we help businesses navigate complex security landscapes while ensuring regulatory and operational resilience. Principal Cyber Security Risk & Audit Consultant This role is ideal for a professional with a strong background in cyber security, risk management, and internal audit. The ideal candidate will have experience across both the public and private sectors, with exposure to or experience in management consultancy. Strong team building and leadership experience is highly desirable. Lead and execute cyber security audits, ensuring compliance with regulatory and industry standards. Develop and maintain risk management frameworks, aligning with best practices such as ISO 27001, NIST, and GDPR. Collaborate with stakeholders to identify and mitigate cyber risks across digital and operational infrastructures. Provide expert guidance on cyber risk governance, resilience, and assurance strategies. Assess third party risk management practices and conduct security audits on suppliers and partners. Work closely with CISOs, IT, and compliance teams to drive a proactive security culture. Report findings and recommendations to senior leadership, ensuring risk mitigation strategies are effectively implemented. Essential Skills & Qualifications Candidates must have one of the following qualifications or be willing to work towards them: ChCSP in the Audit and Assurance (specialism) - Chartered status with the UK Cyber Security Council (CSC) PriCSP in the Audit and Assurance (specialism) - Principal level with the CSC, with a commitment to attaining Chartered status CMIIA - Chartered Member of the Institute of Internal Auditors, with willingness to work towards ChCSP CISA - ISACA Certified Information Systems Auditor, with willingness to work towards ChCSP QiCA - Institute of Internal Auditors Qualification in Computer Auditing, with willingness to work towards ChCSP Additional professional certifications of interest include IRM Chartered Risk Manager certification ISACA certifications such as CISM, CRISC, CGEIT CISSP (Certified Information Systems Security Professional) Other essential skills Proven experience in cyber security risk management and audit, ideally within regulated industries Strong knowledge of security frameworks, including ISO 27001, NIST, CIS Controls, and GDPR compliance Ability to conduct security assessments, risk analyses, and internal audits Familiarity with security tooling and governance platforms (e.g., SIEM, GRC platforms) Excellent communication skills with the ability to influence senior stakeholders A proactive mindset with the ability to work independently and as part of a team This role will require you hold or achieve Security Clearance. As part of the onboarding process candidates will be asked to complete a Baseline Personnel Security Standard; details of the evidence required to apply may be found on the government website Gov.UK. If you are unable to meet this and any associated criteria, then your employment may be delayed, or rejected - Details of this will be discussed with you at interview Methods is passionate about its people; we want our colleagues to develop the things they are good at and enjoy. By joining us you can expect Autonomy to develop and grow your skills and experience Be part of exciting project work that is making a difference in society Strong, inspiring and thought-provoking leadership A supportive and collaborative environment Development - access to LinkedIn Learning, a management development programme, and training Wellness - 24/7 confidential employee assistance programme Flexible Working - including home working and part time Social - office parties, breakfast Tuesdays, monthly pizza Thursdays, Thirsty Thursdays, and commitment to charitable causes Time Off - 25 days of annual leave a year, plus bank holidays, with the option to buy 5 extra days each year Volunteering - 2 paid days per year to volunteer in our local communities or within a charity organisation Pension - Salary Exchange Scheme with 4% employer contribution and 5% employee contribution Discretionary Company Bonus - based on company and individual performance Life Assurance - of 4 times base salary Private Medical Insurance - which is non contributory (spouse and dependants included) Worldwide Travel Insurance - which is non contributory (spouse and dependants included) Enhanced Maternity and Paternity Pay Travel - season ticket loan, cycle to work scheme For a full list of benefits please visit our website ()