Hamilton Porter is looking for an Incident Response Recovery Engineer.
Location: Remote or Onsite/hybrid if reside near one of the following location: Irvine, CA, Sunnyvale CA, Madison WI, Pleasant Groove UT (south of SLC), San Antonio TX, Waterloo CA, Temple Terrace FL, or Eden Prairie, MN
Opportunity to join as a direct hire or contract to hire Engineer for one of the growing leaders in Security Operations. This enterprise organization puts an end to cyber risk by providing security operations as a concierge service. This includes everything from Managed Detection and Response (MDR), Managed Risk, Managed Security Awareness, and Incident Response. Our Highly-trained security experts work as an extension of internal teams to provide 24×7 monitoring, detection and response, as well as ongoing risk management to proactively protect organizations and continually strengthening their security posture.
**This is a Full time hire performing our 2nd Shift Rotation meaning the working hours of operations Monday - Friday 2PM or 3 PM to 10PM or 11 PM PST. ** Will require being on call 1x a month, but If working over major holidays extra pay is given.
Position Overview:
The Incident Response Recovery Engineer is a member of the Digital Forensics and Incident Response ("DFIR") team that can handle most aspects of the restoration and recovery process independently but may need assistance from more senior members of the team. While still a client facing role, this role will less often run the restoration efforts of complex cases from start to completion on their own. This role will also be responsible for fulfilling all technical tasks associated with Business Email Compromise incidents. Looking for mid-level Incident Response Engineers ideally with a Bachelors degree, perks for any relevant Certifications and between 5 to 10 years of relevant work experience.
Technical Competencies
Assist with rebuilding Active Directory domains/networks after an attack via restoration from available backups, use of a decryption utility, etc.
Troubleshoot common domain technologies such as DHCP and DNS
Configure hypervisors, backup, firewalls, and other network technologies.
Collect applicable evidence from on-premise and cloud-based environments to include Windows hosts, Linux hosts, and various network telemetry sources.
Conduct all aspects of a Business Email Compromise ("BEC") investigation to include scoping, data collection and analysis, and reporting.
Recover data from impacted systems using various data recovery techniques/technologies
Communication and Client Management
Communicate with client technical staff throughout the entire restoration process
Communicate both executive and detailed level findings in verbal and written form with the assistance of senior team members if necessary
Participate in weekday escalation and weekend/holiday on call schedules.
Conduct audits and peer review of incident reports.
Fosters information sharing and collaboration.
Compensation:
Offered Salary of $120K - $125k with 5% bonus, split between July and January
May offer 6 month contract to hire and then full Benefits, 401K, PTO, Company Equity, Professional Development
Apply today this is an Urgent need, with a 3 step interview process.