Senior Cyber Recovery Engineer-W2

Position Title Senior Cyber Recovery Engineer

Job Location Chicago IL USA

Rate : $98.4-106.6

Must have Skills/Attributes Ansible BASH Infrastructure NetBackup PowerShell Python Terraform Veeam

Must have 10 yrs of Infrastructure experience

Must have 4 yrs of direct experience operating within financial institution recovery programs

RequiredEducation:
Bachelorsdegree

PreferredCertifications:
CISSPCISAorAWS/AzureDisasterRecoveryspecialty

Requiredqualifications:
10yearsofinfrastructureplatformorresilienceengineeringexperiencewithatleast4yearsinafinancialinstitution(bankbroker-dealerassetmanagerorequivalentregulatedentity)
Demonstratedhands-onexperienceimplementingandtestingcyberrecoveryinanIsolatedRecoveryEnvironment(IRE)orcleanroomnotjustDR/BCplanning
Directexperienceengagingwithfinancialregulators(OCCFDICFederalReserveNYDFSSECorFINRA)inthecontextoftechnologyexaminationsorregulatoryresponses
Proficiencywithenterprisebackupandreplicationplatforms:CohesityRubrikZertoVeeamCommvaultorNetBackup
WorkingknowledgeofIaCtooling(TerraformAnsible)andscripting(PythonBashPowerShell)forrecoveryautomation
Strongunderstandingofnetworksegmentationidentityisolationandzero-trustconceptsasappliedtocleanroomenvironments
FamiliaritywithransomwareTTPsdestructivemalwareincidentresponseandforensictriageinarecoverycontext
ExperiencewithFFIECguidanceNISTCSFand/orDORArequirementsastheypertaintooperationalresilienceandrecovery

PreferredQualifications:
ExperienceinaGSIBSIFIorCategoryI-IIIbankwithheightenedregulatoryscrutiny
ExposuretoDORA(DigitalOperationalResilienceAct)implementationforEU-facingoperations
FamiliaritywithSWIFTFedWireorCHIPSrecoveryconsiderationsforpaymentsystemcontinuity
Experiencewithcyberrecoveryinhybridcloudenvironments(AWSAzureorGCP)includingcloud-basedIREarchitectures
Backgroundinincidentresponseorcyberthreatintelligencewitharecoveryengineeringlens

SeniorCyberRecoveryEngineerSummary:
TheSeniorCyberRecoveryEngineerisahands-ontechnicalleaderresponsiblefordesigningimplementingandcontinuouslyvalidatingtheorganizationsabilitytorecovercriticalsystemsanddatainthewakeofacyberevent
Thisrolesitsattheintersectionofinfrastructureengineeringcybersecurityandregulatorycompliancewithinahighlyregulatedfinancialservicesenvironment
Thesuccessfulcandidatehasdirectexperienceoperatingwithinfinancialinstitutionrecoveryprogramsengagingwithbankingregulators(OCCFDICFederalReserveorequivalent)andexecutingrecoveryexerciseswithinisolatedrecoveryenvironments(IRE)andcleanroomconfigurations
Thisisnotatheoreticalroleweneedsomeonewhohasrunthedrillswrittentherunbooksandtestedtheassumptions

JobResponsibilities:
Isolated&CleanRoomRecovery
DesignbuildandmaintaintheIsolatedRecoveryEnvironment(IRE)andcleanroominfrastructureusedforcyberrecoveryexercisesanddeclaredevents
Executeend-to-endrecoverytestingcyclesvalidatingRTOsandRPOsforTier-1andTier-2criticalapplications
Developandmaintainrecoveryrunbooksplaybooksandautomationscriptsforcleanroomrestorationofcorebankingsystemstradingplatformsanddatastores
LeadtechnicalforensicvalidationprocedureswithintheIREtoconfirmsystemintegritypriortoproductionre-entry
RegulatoryEngagement&AuditReadiness
Serveasasubjectmatterexpertduringregulatoryexaminationsauditsandinquiryresponsesrelatedtocyberrecoveryposture()
Translateregulatoryguidance(FFIECCybersecurityAssessmentToolNISTCSFSR20-24DORAwhereapplicable)intoactionablerecoveryengineeringrequirements
Prepareevidencepackagestechnicalnarrativesandexaminationartifactsthatdemonstraterecoverycapabilitymaturity
Maintaincontinuousdocumentationofcontroleffectivenesstestresultsandremediationtrackingalignedtoregulatoryexpectations
RecoveryArchitecture&Engineering
Architectandoperateair-gappedorlogicallyisolatedbackupandreplicationpipelinesusingimmutablestoragetechnologies()
EngineernetworksegmentationandidentityisolationcontrolswithintheIREtopreventlateralmovementandre-infectionriskduringrecovery
IntegraterecoveryautomationintoCI/CDandIaCpipelinesusingTerraformAnsibleandscripting(Python/Bash)toensurereproducibleauditablerecoveryenvironments
CollaboratewithapplicationownersDBAsandplatformteamstovalidateapplication-layerrecoverysequencinganddependencies
ExerciseProgram&ContinuousImprovement
Ownthecyberrecoveryexercisecalendar;designtabletopsimulationandfull-failoverscenariosincludingransomwaredestructivemalwareandsupplychaincompromise
Leadpost-exerciseafteractionreviews(AARs);trackfindingstoclosureanddrivemeasurableimprovementinrecoverycapability
Benchmarkrecoverymetrics(RTORPOMTTR)againstindustrypeersandregulatoryexpectations;reportprogramhealthtoCISOandexecutiveleadership
Mentorjuniorengineersonrecoveryengineeringpracticescleanroomprotocolsandregulatorydocumentationstandards

Required Skills:

AnsibleBASHInfrastructureNetBackupPowershellPythonTerraformVeeam