Incident Response Coordinator IV

PlanIT Group is seeking an Incident Response Coordinator IV to support our Federal customer in the Washington, DC area. The ideal candidate will respond to crisis or urgent situations within the pertinent domain to mitigate immediate and potential threats. Uses mitigation, preparedness, and response and recovery approaches, as needed, to maximize survival of life, preservation of property, and information security. Must demonstrate a solid understanding of cyber security analysis, incident response, incident handling, and a proven an incident response team. Experience with Splunk, Sentinel One, Armis, SNA preferred.

Job Title: Incident Response Coordinator IV
Location: Remote
Start Date: 03/03/25
Duration: One year plus annual extensions

Incident Response Coordinator IV Responds to crisis or urgent situations within the pertinent domain to mitigate immediate and potential threats. Uses mitigation, preparedness, and response and recovery approaches, as needed, to maximize survival of life, preservation of property, and information security. Must demonstrate a solid understanding of cyber security analysis, incident response, incident handling, and a proven an incident response team. Experience with Splunk, Sentinel One, Armis, SNA preferred. Duties: Support the development of staff schedules and staffing forecasts for approval. • Ensure shift members follow the appropriate incident escalation and reporting procedures. • Provides support promptly and efficiently through front-line telephone and email communications. • Ingest, triage, prioritize, assign, track, document, and manage incidents and results • Provide technical support in response to computer security incidents • Correlate, map, and fuse any and all incident information for the development and distribution of cyber alerts and notices, or other products as Required • Document technical details of current or potential intruder threats consistent with NIST 800-61: Computer Security Incident Handling Guide. Must be flexible and able to work within a 24X7X365 support environment. • Manage information, requests, that may be considered out of the scope of the incident management service and route appropriately • Coordinate, communicate, share information, and work closely with US Government Client components • Assist with developing and maintaining Standard Operating Procedures EXPERIENCE LEVEL: 8+ years of experience in computer forensics or vulnerability analysis 8+ years of experience in information security, especially in an incident response role 1 year experience as a certified investigator EDUCATION: Must possess a minimum of a Bachelor's Degree or Master's Degree, PhD or JD in a technical specialty such as cyber security, computer science, management information systems or related IT field (Master's Degree Preferred) CERTIFICATIONS: (One or more required) Certified Investigator CISSP GCIH GPEN

Additional Provisions:
• Must be able to obtain a Public Trust Clearance
• Pass both a client mandated clearance process to include drug screening, criminal history check and credit check.
• All candidates must be a US Citizen or US Permanent Resident / Green Card required
• Candidate must have lived in the United States for the past 5 years.
• Cannot have more than 6 months travel outside the United States within the last five years. Military Service excluded. (Exception does not include military family members.)

#CJJOBS