Recovery & Resiliency Specialist - Mythos Response

Position: Recovery & Resiliency Specialist - Mythos Response           
Location: Canada (Remote)
Duration: 3 Months Initially, extension opportunities
Language: English (French is nice to have)
 
Background:  Kyndryl require a Recovery & Resiliency Specialist to be responsible for containing active threats, stabilizing impacted environments, and restoring operations during compressed attack timelines. Operating as part of Mythos Response activities, this role ensures that when detection escalates into disruption, the organization can absorb the impact, limit spread, and recover with confidence.
This role bridges incident response, threat hunting, and business continuity execution. The specialist operates hands‑on across concurrent high‑severity incidents, supports rapid isolation and containment decisions, and validates that recovery actions truly return systems to a known‑good, trusted state.
 
Qualifications:
  • Experience in enterprise SOC operations or incident response retainers
  • Practical knowledge of cloud and endpoint containment techniques
  • Experience executing business continuity, disaster recovery, and restoration procedures under pressure
  • Proven ability to operate effectively during prolonged or overlapping security incidents
 
Responsibilities/Deliverables:
  • Recovery & Restoration
    • Execute and validate system recovery and restoration procedures, ensuring integrity, availability, and trustworthiness
    • Verify backups, reimage systems, restore cloud services, and confirm security controls post‑recovery
  • Resiliency Assurance
    • Align recovery actions with business continuity objectives during Mythos Response operations
    • Identify recovery gaps, failure points, and opportunities to harden resiliency for future response events
  • Accelerated Incident Response
    • Operate compressed incident response playbooks designed for modern, fast‑moving adversary activity
    • Handle multiple concurrent high‑severity incidents, prioritizing containment and recovery actions based on business impact
  • Threat Detection & Hunting
    • Conduct active threat hunting to identify lateral movement, persistence, and AI‑assisted exploitation patterns
    • Automate alert triage and initial investigation steps where feasible to maintain scale during surge conditions
  • Containment & Isolation
    • Support rapid containment actions, including endpoint isolation, cloud resource lockdowns, and credential control
    • Partner with detection and response leadership to prevent reinfection or adversary re‑entry during recovery phases
 
#IndKyn
 
**Please note this is for a contract position with one of our clients and not a fulltime employment role with Kyndryl Canada**
 
JobAdder.com