Digital Forensic Investigation Service
Digital Investigation Services
Digital forensic investigations are important because done properly, they can save your business time and money. In this highly connected world, digital devices provide a wealth of evidence sources that can be used to prove or disprove certain facts.
From a technical perspective, the aim of digital forensics is to identify, collect, preserve, and analyse data in a way that preserves the integrity of the evidence collected so that it can be presented in a legal process, whether that be a civil or criminal court hearing, tribunal or internal disciplinary procedure.
Why Pen Test Partners?
Pen Test Partners Digital Investigation consultants have many years of knowledge and experience of conducting complex digital forensic investigations, along with extensive U.K. law enforcement criminal investigation experience.
Whether you are looking for investigation support in a civil or legal dispute, complex litigation, financial fraud, internal disciplinary matter or a potential insider threat we are able to assist.
The pragmatic skills and critical thinking abilities of a Forensic Investigator will help solve any investigation problems your business may face.
Pen Test Partners offers a legally robust way to assist your business.
Compliance & discretion
Conducting digital investigations in accordance with a number of internationally recognised standards and U.K. and International rules of evidence, we execute clearly defined investigation plans that withstand all legal scrutiny.
Working discreetly with your business to mitigate as much as possible against the business disruption and potential brand damage that a complex data investigation may present.
Our Digital Investigation consultants have longstanding industry experience, deep technical knowledge and long-standing criminal investigation experience.
We support you fully throughout any digital or data investigation.
Digital Investigation Standards
Pen Test Partners conducts digital forensic investigations in accordance with several internationally recognised standards:
• NIST: Computer Forensic Tool Testing Program
• U.K. Forensic Science Regulator: Codes of Practice and Conduct for forensic science providers and practitioners in the Criminal Justice System, Issue 3 (2016)
• In alignment with: IEC17025:2005
• CREST: Cyber Security Incident Response Guide Version 1
• SANS Institute: FOR508 Advanced Digital Forensics, Incident Response, and Threat Hunting Methodologies
THE PRINCIPLES OF DIGITAL EVIDENCE
Principle 1: No action taken by law enforcement agencies, persons employed within those agencies or their agents should change data which may subsequently be relied upon in court.
Principle 2: In circumstances where a person finds it necessary to access original data, that person must be competent to do so and be able to give evidence explaining the relevance and the implications of their actions.
Principle 3: An audit trail or other record of all processes applied to digital evidence should be created and preserved. An independent third party should be able to examine those processes and achieve the same result.
Principle 4: The person in charge of the investigation has overall responsibility for ensuring that the law and these principles are adhered to.
Application of the four principles will also be informed by:
• The Forensic Science Regulator’s Codes of Practice and Conduct;
• The guidance around digital forensic process improvements developed by the National Policing Improvement Agency’s Forensic 21 programme and those engaged in the collection, examination or reporting of digital evidence should also refer to that guidance.