Cybersecurity & Resilience Consultant Ransomware, Storage & DR (ISO/NIST)
Reporting To: Lead Security Consultant / Practice Manage
Job Sum y
We are seeking a highly skilled and standards-aligned Cybersecurity & Resilience Consultant to lead and execute assessments related to ransomware preparedness , storage platform security , Active Directory hardening , and disaster recovery maturity . The ideal candi will have deep expertise in NIST and ISO standards , along with proven hands-on experience in enterprise environments involving AD, storage systems, backups , and business continuity planning .
This role is part of a strategic engagement with a leading financial infrastructure client and will contribute directly to security architecture reviews , technical assessments , scenario simulations , and DR playbook creation .
Key Responsibilities
- Ransomware Resilience Assessment (NIST SP 1800 / ISO 27001)
- Conduct risk identification across phishing, endpoints, and remote access
- Evaluate ransomware-specific controls (EDR, AV, macro filtering, zero trust)
- Review and vali backup/recovery readiness: encryption, immutability, restoration SLAs
- Assess containment and incident response procedures including SOC capability
- Map maturity to NIST CSF (Identify, Protect, Detect, Respond, Recover)
- Storage Platform Security Assessment (ISO/IEC 27040)
- Review SAN, NAS, object storage, and cloud BaaS configurations
- Evaluate encryption at rest/in transit, access control (IAM/ACL), and key management practices
- Assess logging, itoring, snapshot, replication, and storage admin access paths
- Perform ransomware-readiness validation at storage layer
- Active Directory Security Assessment (Aligned with NIST / ISO 27001)
- Analyze AD domain architecture, OU/GPO structure, trusts, and replication
- Identify risks in privileged access, stale objects, and delegation models
- Vali site topology for DR alignment and replication health
- Assess exposure to attacks like Golden Ticket, DCShadow, etc.
- Disaster Recovery (DR) Maturity Assessment (ISO 22301)
- Review DR strategy, RTO/RPO targets, runbooks, and orchestration tools
- Analyze historical DR test data, MTTD/MTTR trends, and SLA compliance
- Map DR posture to ISO 22301 lifecycle (Plan, Do, Check, Act)
- Identify process, tooling, and coordination gaps across business units
- Scenario Simulation & DR Runbook Creation
- Design ransomware and DR outage simulation scenarios
- Lead cross-functional workshops with IT, Security, and Business teams
- Create or enhance DR runbooks for up to 2 in-scope applications
Required Skills & Experience
- Strong understanding of NIST SP 1800, ISO/IEC 27001, ISO 27040, ISO 22301
- 5+ years in enterprise security assessments and infrastructure consulting
- Deep hands-on knowledge of:
- Active Directory architecture, GPOs, replication, and hardening
- Storage platforms (SAN, NAS, Object, BaaS) and backup systems
- Disaster Recovery strategies , DR drills, failover procedures
- Experience with EDR , SIEM , and incident response playbooks
- Proficiency in scripting (e.g., PowerShell) for AD and DR validation tasks
- Ability to create clear documentation, reports, and executive-level sum ies
Preferred Certifications
- ISO 27001 Lead Implementer or Auditor
- Certified Ethical Hacker (CEH) or equivalent
- Microsoft Certified: Identity and Access Administrator Associate
- VMware / Veeam / Commvault certifications (nice to have)
Soft Skills & Attributes
- Strong analytical and troubleshooting mindset
- Excellent stakeholder communication and workshop facilitation skills
- Ability to manage multiple assessment streams and prioritize tasks
Comfortable working in regulated industries like BFSI
