DFIR Recovery Specialist
Remote (US)
Why you should join our At-Bay Security team:
At-Bay is a fast-growth InsurSec company (Insurance x Cybersecurity) on a mission to bring innovative products to the market that help protect small businesses from digital risks. As an InsurSec provider, we uniquely combine insurance with mission-critical security technologies, threat intelligence, and human expertise, to bridge the critical security capability gap that exists among SMBs in the community. We believe InsurSec is an $80B market opportunity and we are excited to expand our DFIR team in order to help expand our reach and influence in the business and security community, of which we serve 35,000 customers.
With At-Bay, our customers experience 5X fewer ransomware attacks. This is just the tip of the iceberg! Click here to learn more about what we're building.
The Role:
We seek an experienced Incident Response Recovery Specialist to join the At-Bay Response & Recovery team. The IR Recovery Specialist will support the Response & Recovery remediation team and report to our Incident Response Engineer.
Responsibilities:
- Accountable for overseeing, measuring, and driving efforts to systematically increase the maturity and effectiveness of cyber security incident response and recovery processes, setups, and controls for At-Bay’s Response and Recovery Team.
- Gains and helps maintain an end-to-end understanding of relevant client landscape (networks, endpoints, platforms, applications, dependencies, cloud services, on-premise setups, etc.).
- Engages with global and local operational Security & IT teams, collaborates closely with all relevant functions across the client base, and consults with external experts & stakeholders.
- Provides deep security expertise in the context of reviews of detection measures, post-mortem analysis of cyber incident responses, and IT recovery exercises; supports and helps coordinate major real cyber security events.
- Provides assurance & evidence for the formal security control objectives in this area and contributes accordingly to the overall needs of At-bay’s clients.
- Identifies gaps in detection, response, recovery controls, and details and drives security risk reduction activities.
In this role, we value:
- Great educational background, preferably in the fields of computer science or engineering for technical project managers.
- Proven working experience as a project administrator in the information technology sector.
- Solid technical background, with understanding or hands-on experience in Windows, Linux, and OSX
- Excellent client-facing and internal communication skills.
- Excellent written and verbal communication skills.
- Solid organizational skills, including attention to detail and multi-tasking skills.
Required Skills:
- Install/Replace, configure, and optimize network hubs, routers, and switches (e.g., higher-level protocols, tunneling).
- Develop and implement network backup and recovery procedures.
- Diagnose network connectivity problems.
- Implement new system design procedures, test procedures, and quality standards.
- Install and maintain network infrastructure device operating system software (e.g., windows OS,
- virtual machines).
- Experience working with and securing perimeter security devices (e.g., Firewalls, VPNs)Integrate
- new systems into existing network architecture.
- Monitor network capacity and performance.
- Skill in writing code in a currently supported programming language (e.g., Java, Python,
- PowerShell).
- Patch network vulnerabilities to ensure that information is safeguarded against outside parties.
- Provide feedback on network requirements, including network architecture and infrastructure.
- Test and maintain network infrastructure, including software and hardware devices.
- An understanding of forensic data collection tools and procedures is a plus.
Work location:
- USA, Remote
Our estimated base pay range for this role is $100,000 - 130,000 per year. Base salary is determined by a variety of factors including but not limited to market data, location, internal equitability, domain knowledge, experiences and skills. In general, if the position sparks your interest we encourage you to apply - our team prioritizes talent.
#LI-CK1
ApplyJob Profile
- Collaborate with Security teams
- Conduct post-mortem analysis
- Coordinate cyber security events
- Identify security gaps
- Incident response
- Oversee incident response processes
Communication Cybersecurity Cyber Security Firewalls Forensic data collection Incident Response Java Linux Network Infrastructure Networking OSX PowerShell Python Ransomware Technical Background Threat Intelligence VPNs Windows
Experience3 years
EducationComputer Science Cybersecurity Engineering Technology
TimezonesAmerica/Anchorage America/Chicago America/Denver America/Los_Angeles America/New_York Pacific/Honolulu UTC-10 UTC-5 UTC-6 UTC-7 UTC-8 UTC-9