Business Resumption Engineer

CFC·Remote(United States)

Software Development

Excel

WFA Digital Insight

As the digital landscape evolves, demand for skilled cybersecurity professionals has surged, with a notable 27% increase in incident response roles in the past year. The role of a Business Resumption Engineer is particularly pivotal, requiring a unique blend of technical acumen and strategic thinking. With CFC's global presence and commitment to innovation, this position offers a compelling opportunity for professionals looking to make a tangible impact. Before applying, candidates should be aware that a deep understanding of enterprise security principles and strong communication skills are essential. The current remote job market emphasizes adaptability, continuous learning, and collaboration, making this role an attractive challenge for those who can navigate complex cybersecurity situations effectively.

Job Description

About the Role

The Business Resumption Engineer plays a critical role in the aftermath of cyber incidents, serving as the technical expert who navigates the urgent and precise process of restoring critical systems and ensuring the security of client environments. This position is at the forefront of cybersecurity, requiring a professional who can work effectively under pressure, leveraging cutting-edge tools and real-world attack intelligence to deliver resilient recoveries. The ideal candidate will have a fundamental understanding of enterprise security principles, knowledge of enterprise network architecture, and excellent verbal and written communication skills.

As part of a global cybersecurity team, the Business Resumption Engineer will collaborate with various stakeholders, including technical teams and clients, to provide clear documentation and structured progress updates. The role demands a resourceful and self-directed learner who can quickly research and apply new information, especially in fast-moving or ambiguous situations.

Given the sensitive nature of this role and the rapid evolution of cybersecurity threats, staying updated with the latest security practices and technologies is crucial. The Business Resumption Engineer will be expected to contribute to the continuous improvement of response and recovery workflows, ensuring that the team remains at the forefront of incident response capabilities.

What You Will Do

Lead server restoration efforts, including VM deployment, system rebuilds, and troubleshooting Active Directory issues to bring core business services back online.
Contain and remediate malware across diverse environments, ensuring threats are neutralized without disrupting recovery progress.
Deploy security applications across enterprise infrastructures to harden systems during and after incident response.
Monitor and remediate security alerts to maintain stability throughout the recovery process.
Collect forensic artifacts from multiple operating systems using approved DFIR tools.
Act as a technical lead during incident response and restoration, providing clear documentation and structured progress updates.
Create and update procedures to support the continuous improvement of response and recovery workflows.
Collaborate with the global cybersecurity team to share knowledge, best practices, and lessons learned from incident responses.
Stay abreast of emerging threats and technologies, applying this knowledge to enhance incident response strategies.

What We Are Looking For

Fundamental understanding of enterprise security principles and best practices.
Knowledge of enterprise network architecture and how systems interconnect in real-world environments.
Strong verbal and written communication skills, with the ability to collaborate effectively across all levels of an organization.
Excellent time-management and prioritization abilities, especially in fast-moving or ambiguous situations.
A resourceful, self-directed learner able to research and apply new information quickly.
Degree qualified and 3+ years of experience in a related field are beneficial but not required.
SentinelOne Siren certification is required within 6 months of employment.
Proficiency in Excel and other Microsoft Office tools.

Nice to Have

Experience with VM deployment and management.
Knowledge of Active Directory and its troubleshooting.
Familiarity with security information and event management (SIEM) systems.
Understanding of cloud security platforms and their integration with on-premises environments.

Benefits and Perks

Competitive salary package.
Opportunity to work with a global cybersecurity team.
Access to cutting-edge tools and technologies.
Professional development opportunities, including training and certifications.
Flexible working arrangements, including remote work options.
Comprehensive health insurance package.
Generous paid time off (PTO) policy.
Employee assistance program (EAP) for mental health and wellness support.

How to Stand Out

Ensure your resume and cover letter highlight specific examples of incident response and recovery efforts you've led or been part of, emphasizing technical skills and collaborative approaches.
Familiarize yourself with the latest cybersecurity threats and trends, demonstrating your commitment to ongoing learning and professional development.
Prepare to discuss your experience with security tools and technologies, including any certifications you hold or are pursuing.
Develop a portfolio or be ready to provide examples of your work, such as incident response plans, security assessments, or recovery procedures you've developed.
Research CFC's approach to cybersecurity and incident response to show your interest and understanding of the company's values and strategies.
Practice technical and behavioral questions that assess your problem-solving skills, ability to work under pressure, and communication skills.

This is a remote position listed on WFA Digital, the platform for professionals who work from anywhere. Browse more remote jobs across all categories.