As a Business Resumption Engineer, you’ll be the technical backbone of high‑pressure cyber incident recoveries - stepping in when organisations are at their most vulnerable and guiding them back to stable, secure operations. You’ll work at the intersection of urgency and precision, restoring critical systems while containing active threats and helping clients regain control of their environments.
At Solis, you’ll do this as part of a global cybersecurity team trusted by thousands of organisations worldwide. Backed by deep incident response expertise, cutting‑edge tooling, and intelligence drawn from real‑world attacks, you’ll help deliver fast, resilient recoveries that minimise downtime and strengthen long‑term security.Key Responsibilities
Lead server restoration efforts, including VM deployment, system rebuilds, and troubleshooting Active Directory issues to bring core business services back online
Contain and remediate malware across diverse environments, ensuring threats are neutralised without disrupting recovery progress
Deploy security applications across enterprise infrastructures to harden systems during and after incident response
Monitor and remediate security alerts to maintain stability throughout the recovery process
Collect forensic artifacts from multiple operating systems using approved DFIR tools
Act as technical lead during incident response and restoration, providing clear documentation and structured progress updates
Create and update procedures to support continuous improvement of response and recovery workflows Skills, Knowledge & Expertise
Fundamental understanding of enterprise security principles and best practices
Knowledge of enterprise network architecture and how systems interconnect in real‑world environments
Strong verbal and written communication skills, with the ability to collaborate effectively across all levels of an organisation
Excellent time‑management and prioritisation abilities, especially in fast‑moving or ambiguous situations
A resourceful, self‑directed learner able to research and apply new information quickly
A collaborative team player who can also operate independently when required
Degree qualified and 3+ years of experience are beneficial but not required
SentinelOne Siren certification required within 6 months of employment
