Principal Consultant, Restoration and Remediation

Surefire Cyber is looking for a Principal Consultant, Restoration and Remediation to lead complex and sensitive post-incident recovery engagements. The ideal candidate has 10+ years of professional experience in cybersecurity, incident response, or related fields, with expertise in restoration and remediation, technical leadership, and client-facing consulting.

Requirements

• 10+ years of professional experience in cybersecurity, incident response, systems/network administration, or IT infrastructure engineering
• Proven leadership in guiding enterprise-scale recovery efforts during cyber incidents
• Deep hands-on experience with Active Directory, Azure AD, M365, Exchange, Group Policy, virtualization platforms, and backup tools
• Expert understanding of infrastructure reconfiguration, network segmentation, identity access recovery, and endpoint security post-compromise
• Ability to architect and execute remediation plans in coordination with DFIR, SOC, and cloud teams
• Comfortable advising senior business and legal stakeholders during high-pressure engagements
• Strong written and verbal communication skills, including experience preparing and presenting executive-level remediation updates
• Demonstrated experience mentoring and growing technical talent within a team
• Familiarity with attacker TTPs, threat actor behaviors, and their implications for recovery sequencing and infrastructure redesign
• Advanced certifications (e.g., CISSP, GCFA, MCSE, OSCP) are strongly preferred

Benefits

• Competitive compensation plan
• Total rewards package
• Remote workforce
• Generous paid time off plan
• Paid parental leave
• Employer paid premiums for medical, dental, and vision
• Comprehensive health, vision, dental, 401K matching program, disability, Flexible Spending Accounts (FSA), Health Savings Account (HSA), Life and AD&D benefits
• Professional development and career advancement opportunities