Digital Forensic Co...
 
Notifications
Clear all

Digital Forensic Companies-Required Accreditation

6 Posts
4 Users
0 Likes
435 Views
(@boucher88)
Posts: 15
Active Member
Topic starter
 

I am currently producing a list of the nearby organisations with digital forensic analysis capabilities.

Part of this list is an analysis of the types or formal accreditation, training and certification that a company may try to acquire.

In light of this, I am wondering if anyone knows what some of the essential accreditation you can expect to find in the UK at present which highlights a company as obiding by a high professional standard?

 
Posted : 03/10/2011 7:50 pm
finbarr
(@finbarr)
Posts: 26
Eminent Member
 

Why are you compiling this list?

 
Posted : 26/10/2011 1:29 am
(@boucher88)
Posts: 15
Active Member
Topic starter
 

I was compiling it as part of an organisations request to know who the local digital forensic vendors were.

They need to know in the event that any "high risk" information security incident occurs that would require digital forensic intervention.

Since first posting I know accreditation to ISO's 270001 and 9001 is a popular method of proving a digital forensic companies' professionalism. Just asking the community if they are any other accreditation, training and certificates which stand out.

 
Posted : 08/11/2011 3:54 pm
(@rich2005)
Posts: 535
Honorable Member
 

Personally I wouldn't take ISO's as a sign someone is good or bad, more that they have paid for the jumping through hoops process. That's obviously not to say it's entirely pointless, but that ISO certification doesn't mean they're capable or competent.
(I'm sure ISO17025, or the prospect of it is making many people cry right now) )
As for other training or certificates, the Cranfield courses have always been well regarded, but I would also argue experience/reputation count for just as much. With all the training in the world everyone will come across plenty in your first few years of doing the job (both in terms of report writing especially if for the court, and the quirks of technology / tools), and significantly refine the way they work. So i'd not discount the team of guys with 15 years experience for a group with a bunch of certifications and a distinct lack of experience. (Ideally you'd probably want both or a balance)
So perhaps compile your list of all the organisations in the area (i'm sure it won't be a lengthy list), and then seek opinions on them from those who have used their services (or some impartial people in the field if you can too).
Rich

 
Posted : 11/11/2011 4:57 pm
(@boucher88)
Posts: 15
Active Member
Topic starter
 

Thank you Rich.

I will take everything on board that you have said.

Appreciate the help and advice.

 
Posted : 15/11/2011 3:00 pm
jaclaz
(@jaclaz)
Posts: 5133
Illustrious Member
 

Personally I wouldn't take ISO's as a sign someone is good or bad, more that they have paid for the jumping through hoops process. That's obviously not to say it's entirely pointless, but that ISO certification doesn't mean they're capable or competent.

Expanding on this I can vouch for ISO 9001.
ISO 9001 is a standard to certify a process.
It DOES NOT enter in the - IMHO not so trifling detail - whether the process is "good" or "gives good results.

I personally think that it is one of the most abused (and mis-used) standards.

It comes from the industry.

In industry ISO 9001 is a "Quality" certification but it does not guarantee that the item produced is "good", it only says that the process to produce specimen #x has been properly verified and is EXACTLY the same as the one used to produce specimen #y, and thus specimens #x and #y have the SAME quality.

When it comes to data recovery or digital forensics, besides the common guidelines, and standards, and tools, there is the single actual person and his/her knowledge, and his/her experience, that may make (or make not) the difference.

More generally IMHO applying "industry" standard to artisan or intellectual work, is simply meaningless.

jaclaz

 
Posted : 28/11/2011 10:51 pm
Share: