Engineer Restoration Services

About The Position

Requirements

• General k nowledge of Incident Response lifecycle
• Experience with installation, configuring, and troubleshooting network and system hardware
• General knowledge of networking to include DHCP, DNS, Subnetting, VLANs, and authentication., and the ability to troubleshoot and resolve issues
• Advanced experience with desktop operating systems, especially Microsoft Windows 10 and 11 ; OSX and Linux , preferred
• Experience with MS Windows Server 2012, 2016, 2019, and 2022, to include installation, setup and configuration
• Experience with setting up and configuring a Windows Domain, as well as troubleshooting and resolving issues
• Familiar with backup and restore operations
• Demonstrate d knowledge of data encryption technologies
• Ability to read and understand network diagrams
• Data recovery skills or experience, good understanding of data structures, file system formats, RAID configurations, and storage configurations
• Experience with s cripting for automation, Powershell /Bash/Python, etc.
• F lexibility to work with many different Incident Response tool sets
• E ffective communication skills, professional demeanor, and customer service focused
• U nderstanding of current computer systems, security, and infrastructure
• P riority management and problem-solving skills
• Strong personal organization, time management skills, sense of teamwork and collaboration
• Bachelor's Degree and 4 + years of experience working in IT operations and administrating IT systems or Master's or Advanced Degree and 3+ years related experience
• Technical competencies in at least 5 of the following areas: Virtualization, Windows Server, Linux/Unix, LDAP/Active Directory, DNS, Networking, Firewalls, Scripting/PowerShell, Cloud Solutions (Azure, AWS, etc ), Microsoft 365, Information Security, SaaS integrations, MDM, SIEM Platforms
• Proficient with three or more technologies: Multi-factor Authentication, Storage solutions, Hypervisors, Operating Systems, Networking, System Administration, Remote Monitoring and Management tools (RMMs), Log Aggregation and Collections, etc.
• S elf-motivated and able to work independently
• Ability to travel domestically up to 50 % and work onsite at client sites as

Nice To Haves

• Technical Certification s such as Cisco Networking, Security +, Microsoft Server/Azure, etc ., preferred

Responsibilities

• Establishes a professional rapport and communication channel between internal stakeholders and the Engagement Team
• Support s the client when an engagement requires them to physically perform our Core Services remotely
• Effectively communicate s technical subject matter to a non-technical audience
• Ensure s EDR rollout is conducted in a prompt, methodical and thorough manner
• Installs Arete’s supports tool in client environment
• Create s tools packages for client and engagement team troubleshooting
• P erform s typical collections (triage/host with FTK Imager and Arete Collector)
• Troubleshoot s EDR networking issues
• Is the d riving force in the development, documentation , and use of new tools, scripts, processes, or other logistical methodologies to enhance incident response investigative processes
• Conduct s host forensics, network, forensics, log analysis, and malware triage in support of incident response investigations as
• Recognize s and codif ies attacker tools, tactics, and procedures in indicators of compromise (IOCs) that can be applied to current and future investigations
• Develop s comprehensive and accurate reports and presentations for both technical and executive audiences
• Collects and documents client data supporting Post-IR opportunities and lessons learned
• Work s with security and IT operations to implement remediation plans in response to incidents
• Demonstrates alignment to the Arete Excellence Model
• May perform other duties as assigned by management

Benefits

• competitive salaries
• fully paid benefits including Medical/Dental, Life/Disability Insurance
• 401(k)
• the opportunity to work with some of the latest and greatest in the fast-growing cyber security industry