Help to setup computer forensic investigation team

Contribute to the community and build up your resume

Contribute to this forum by helping to moderate and answer questions.

If interested, please contact us at


New Member
May 31, 2017

I have got some trouble in my workplace right now. I’m working at administrative department in private hospital. There was one major incident involving data theft and unauthorized disclosure of sensitive information that caused lawsuit which causes my hospital lost lot of money. We know that the culprit behind this incident is one of our staff, but we do not have evidence to pinpoint who has done it. The culprit had breach our server and steal those information.

Due to that incident, my hospital wants to setup digital forensic investigation team to ensure that the similar cases would not happen again in the future. I have zero knowledge on digital forensic investigation process therefore, I would like to as solution on:

1) what I need to do first to setup this investigation team
2) Is there any best practice regarding digital forensic investigation process that I can follow.
3) Job description of this team
4) Any tools that this team can use
5) Other input that might help me

I hope a response from all of you regarding this issue and maybe with your ideas/comments and solution can solve my cases.
Thank you

About us

  • Our community began in 2004. Since this time, we have grown to have over 29,000+ members within the DFIR & Cyber Security community.

    We are happy to announce that this forum is now under new ownership with the goal to once again become the main Digital Forensics Forum on the internet for DFIR, OSINT and Cyber Security.

    If you can think of ways to help us improve, please let us know.

    We pride ourselves on offering unbiased, critical discussion among people of all different backgrounds.

    We are working every day to make sure our community is one of the best.

Quick Navigation

User Menu