Principal Cyber Recovery Engineer

Location: Oakland, CA (California Candidates are pref.)

Duration: 12 Months Contract

Role Overview

STAFFXPERT is a seeking a highly experienced Principal Solutions Engineer to lead and operationalize enterprise ransomware recovery and cyber resilience initiatives. This role will focus on strengthening ransomware preparedness, cyber recovery governance, incident response planning, and recovery validation processes across the organization.

The ideal candidate will possess strong expertise in ransomware recovery frameworks, disaster recovery planning, security governance, risk management, and cyber resilience best practices aligned with NIST and CIS standards.

Key Responsibilities

Ransomware Recovery & Cyber Resilience

• Mature and operationalize the ransomware recovery governance program through hands-on process development, technical validation, and continuous improvement.
• Enforce ransomware recovery maintenance policies and ensure consistent implementation of required controls and procedures.
• Assess and remediate gaps across ransomware preparedness covering technology, processes, and people.
• Contribute to future-state cyber recovery architecture and ransomware resilience strategy initiatives.
  
  

Recovery Testing & Incident Response

• Coordinate and oversee all ransomware recovery testing activities, including readiness assessments, recovery validation, and documentation of results.
• Partner with security and infrastructure teams to develop ransomware incident response plans.
• Lead technical recovery exercises, tabletop simulations, and ransomware response drills.
• Validate backup and recovery strategies to ensure operational readiness and resilience.
  
  

Governance, Risk & Compliance

• Develop and formalize governance frameworks, decision authority models, escalation paths, and RACI structures.
• Review and enhance existing:
• Security policies and standards
• Backup and recovery procedures
• Risk management processes
• Operational governance frameworks
• Ensure alignment with:
• NIST Cybersecurity Framework (NIST CSF)
• NIST 800-61
• CIS Critical Security Controls
• Industry ransomware recovery best practices
  

Reporting & Documentation

• Deliver a comprehensive ransomware preparedness assessment within the first 30 days.
• Develop and maintain ransomware risk heat maps and ongoing risk reporting.
• Create executive-level presentations and reporting materials summarizing findings, risks, and remediation progress.
• Establish and maintain cyber recovery tracking repositories and reporting dashboards.
• Support development of operational training curriculum for support and infrastructure teams.
  
  

Required Skills & Experience

• 10 years of experience in cybersecurity, infrastructure security, disaster recovery, or cyber resilience engineering.
• Strong expertise in:
• Ransomware Recovery
• Cyber Recovery & Resilience
• Disaster Recovery (DR)
• Incident Response
• Security Governance
• Risk Management
• Backup & Recovery Strategies
• Hands-on experience with:
• Recovery testing and validation
• Tabletop exercises and technical simulations
• Security control assessments
• Executive reporting and governance documentation
• Strong understanding of:
• NIST CSF
• NIST 800-61
• CIS Critical Security Controls
• Enterprise security frameworks and best practices
• Excellent communication, leadership, analytical, and stakeholder management skills.
  

Preferred Qualifications

• Experience leading enterprise ransomware recovery or cyber resilience programs.
• Experience within highly regulated enterprise environments.
• Utility or energy industry experience preferred.
• Security certifications preferred:
• CISSP
• CISM
• CRISC
• GIAC
• Experience with enterprise backup and cyber recovery platforms.
• Strong presentation and executive communication capabilities.