Principal Consultant, Restoration and Remediation

10+ years of professional experience in cybersecurity, incident response, systems/network administration, or IT infrastructure engineering Proven leadership in guiding enterprise-scale recovery efforts during cyber incidents Deep hands-on experience with Active Directory, Azure AD, M365, Exchange, Group Policy, virtualization platforms, and backup tools Expert understanding of infrastructure reconfiguration, network segmentation, identity access recovery, and endpoint security post-compromise Ability to architect and execute remediation plans Comfortable advising senior business and legal stakeholders Strong written and verbal communication skills Demonstrated experience mentoring and growing technical talent Familiarity with attacker TTPs and threat actor behaviors Expertise in cybersecurity, systems engineering, or incident response Advanced certifications (e.g., CISSP, GCFA, MCSE, OSCP) are strongly preferred

Lead end-to-end recovery operations for complex cyber incidents Architect and manage technical remediation plans across hybrid infrastructure Oversee restoration of identity services, messaging systems, VPNs, firewalls, MFA, and backup solutions Advise client executives on remediation strategy and recovery timelines Coordinate recovery workstreams across stakeholders Act as technical escalation point during recovery engagements Mentor senior and junior consultants Document and review client-facing technical reports Contribute to evolution of recovery methodologies Lead or support proactive services Participate in after-hours response rotations