Home Choosing a Digital Forensic Expert

Choosing a Digital Forensic Expert

Many organisations portray themselves as digital forensic experts, but how can a Client assure themselves that their chosen expert is all they claim to be. Ensuring that the ‘right’ one is chosen is a matter that is of utmost importance, as it could win or lose the case.

The Forensic Laboratory has identified a number of criteria that should be used in selecting a Forensic Expert.

To choose a Forensic Expert , the following criteria should be considered, as a minimum :

  • Who will the examiner be?
  • What are their qualifications?
  • Who trained them?
  • What professional qualifications have they got relating to forensics?
  • Do they maintain these through CPE / CPD?
  • Does their CV / Resume pass scrutiny?
  • Have they published any learned articles / books on digital forensics relevant to your case?
  • What tools will they use and are they appropriately trained in their use?
  • How long have they been actually performing forensic examination/ when did they start their forensic career (NOT – when did the company start)?
  • Has the examiner the experience in your hardware?
  • Has the examiner the experience in your operating system?
  • Has the examiner the experience in your software?
  • How will the examiner preserve the original exhibits?
  • How will the examiner prevent cross contamination of the evidence?
  • How will the examiner ensure that the ‘chain of custody’ be maintained?
  • Is there a confidentiality agreement in place?
  • How long will it take to process your case?
  • Will your case be one of many handled by ‘a member of staff’ or will you get personal attention from the examiner portrayed to you as carrying out the work?
  • Is the examiner ‘security cleared’?
  • Is the company accredited by any recognised forensic organisation or government agency – if so what Accreditations are held?
  • Does the company have ISO 17020 Accreditation for crime scene investigation(look at the certificate and more especially the SCOPE of the Accreditation)?
  • Does the company have ISO 17025 Accreditation for its forensic laboratory (look at the certificate and more especially the SCOPE of the Accreditation)?
  • Does the company have ISO 9001 certification for its forensic services (look at the certificate and more especially the SCOPE of the Certification)?
  • Does the company have ISO 27001 certification for its forensic services (look at the certificate and more especially the SCOPE of the Certification)?
  • Does the company have ISO 22301 certification for its forensic services (look at the certificate and more especially the SCOPE of the Certification)?
  • Does the company comply with the current ACPO (Association of Chief Police Officers) Guidelines or national?
  • Do you know anyone with experience of the Forensic Expert?
  • Are there any references  or other recognised sources available from Police, Government that are checkable?
  • What does an internet search show about the Forensic Expert, if anything