Senior Consultant, Restoration and Remediation (Remote)
About Surefire Cyber
Surefire Cyber is redefining the incident response model by delivering a swifter, stronger response to cyber incidents such as ransomware, email compromise, malware, data theft, and other threats. Our client-centric approach reduces stress and provides clients the confidence needed to prepare, respond, and recover from cyber incidents – and fortify their cyber resilience after an event.
Our approach and delivery are designed by industry veterans who have worked shoulder-to-shoulder with law firms, insurance carriers, brokers, law enforcement, and impacted organizations in responding to cyber incidents.
Job Title
Senior Consultant, Restoration
Location
Remote (USA)
Role
Full time / Exempt
What Makes You Stand Out As a Senior Consultant in Restoration
You are a highly technical and motivated professional with extensive experience in assisting clients in recovering from cyber incidents, restoring compromised systems, and implementing effective remediation strategies. You thrive in fast-paced environments, collaborating closely with Digital Forensic and Incident Response (DFIR) teams, legal counsel, insurance carriers, and affected clients to ensure swift restoration services in parallel with forensics and incident response efforts. Your technical abilities and expertise make you a trusted advisor to clients seeking to enhance their overall cybersecurity posture.
How You'll Make an Impact
This is a full-time remote opportunity, and you will perform a variety of restoration and recovery efforts while working closely with the Director of Restoration, Restoration team members, and the Digital Forensic and Incident Response team. They will play a critical role in post-incident recovery, working alongside the DFIR team to restore systems and secure infrastructures after cyber incidents.
Your Role in Action
- Actively share knowledge with team members cultivating a culture of continuous learning, and staying up to date on industry trends, emerging threats, and best practices.
- Build strong professional relationships and serve as a trusted advisor during client-facing incident response engagements, contributing your advanced knowledge and expertise to post-incident recovery efforts.
- Work closely with the DFIR team to assess and determine the scope and impact of cyber incidents.
- Leverage experience with Active Directory, Group Policy Objects, ADSI, Windows Security, replication, Azure Active Directory Connect, and other relevant technologies to restore compromised systems.
- Script and automate recovery processes using PowerShell and Windows command line tools.
- Leverage experience in hypervisor technologies such as VMware, Hyper-V, Citrix XenServer, and Nutanix Acropolis to restore virtualized environments.
- Work with various server hardware platforms including HP, Dell, Nutanix, and Cisco UCS.
- Leverage networking knowledge, including core switches, wireless access points, firewalls, and VPN configurations.
- Implement two-factor and multi-factor authentication services such as Okta, DUO, Microsoft Authentication, Ping, RSA, and others.
- Collaborate with internal teams, external partners, and clients to refine and document all restoration and recovery efforts, maintaining a clear and organized record of actions taken, lessons learned, and best practices.
- Provide after-hours (on-call/weekend rotational) support as required to address critical incidents and maintain continuous coverage.
Your Expertise
- Bachelor’s degree in information technology, computer science, related degree, or equivalent former professional experience as an IT Engineer, Systems Administrator, Cybersecurity Consultant, or related position.
- Previous DFIR and restoration experience in a consulting firm.
- Professionally skilled in the deployment and management of IT infrastructure, including Microsoft Exchange, M365, Microsoft Windows Server operating systems, and workstations.
- Expertise in various operating systems (Windows, Linux, MacOS) and their security features.
- Familiarity with cloud services.
- Experience in network administration.
- Experience configuring firewalls, VPN’s, Active Directory, Exchange, Group Policy.
- Skilled at problem-solving and exhibits a high-level of attention to detail.
- Can effectively under pressure while maintaining professional composure.
- Excellent communication skills, both written and verbal, can explain technical concepts to non-technical audiences.
- Strong interpersonal skills, a team player mentality, and a client-centric mindset.
- Exceptional organizational skills and the ability to manage multiple competing priorities.
Benefits for Full-Time Surefire Cyber Team Members
- Competitive compensation plan and total rewards package for team members
- Remote workforce
- Generous paid time off plan and floating holidays
- Paid parental leave
- Employer paid premiums for both team members and their dependents for medical, dental, and vision
- Comprehensive health, vision, dental, 401K matching program, disability, Flexible Spending Accounts (FSA), Health Savings Account (HSA), Life and AD&D benefits.
- Professional development and career advancement opportunities
- We prioritize employee growth and development through a robust performance management platform to provide ongoing coaching, clear feedback, recognition, and opportunities for career growth.
Note
We at Surefire Cyber invite you to apply even if you do not feel you have mastery in all the requirements listed on the job description and welcome a further discussion.
Interview Process
- Submit interest and resume online
- Preliminary phone interview with the People Team (approx., 30 mins)
- Virtual/Teams interview with other R&R Consulting team members, (approx., 45 minutes)
- Virtual/Teams Interview with the Director of R&R (approx., 45 minutes)
- Virtual/Teams interview with the Chief Deliver OfficerVirtual/Team interview with our CEO
Benefits for Full-Time Surefire Cyber Team Members
- Competitive compensation plan and total rewards package for team members
- Remote workforce
- Generous paid time off plan and floating holidays
- Paid parental leave
- Employer paid premiums for both team members and their dependents for medical, dental, and vision
- Comprehensive health, vision, dental, 401K matching program, disability, Flexible Spending Accounts (FSA), Health Savings Account (HSA), Life and AD&D benefits.
- Professional development and career advancement opportunities
- We prioritize employee growth and development through a robust performance management platform to provide ongoing coaching, clear feedback, recognition, and opportunities for career growth.
Note
We at Surefire Cyber invite you to apply even if you do not feel you have mastery in all the requirements listed on the job description and welcome a further discussion.
Internship Roles
Internship roles are not eligible for Surefire’s full-time benefits package. Internship-specific details will be shared during the interview process.
Equal Opportunity Employer
At Surefire Cyber, we are committed to creating a diverse environment and encourage all qualified individuals to apply. We do not discriminate on the basis of actual or perceived race, color, creed, religion, national origin, ancestry, citizenship status, age, sex, or gender (including pregnancy, childbirth, and pregnancy-related conditions), gender identity or expression (including transgender status), sexual orientation, marital status, military service and veteran status, physical or mental disability, genetic information, or any other characteristic protected by applicable federal, state or local laws and ordinances.