Incident Response Coordinator (Hybrid)

Overview

• Tier One Technologies is looking for an Incident Response Coordinator to work with our direct US Government client.
• This hybrid Contract-to-Hire position will be located in Morrisville, NC
• SELECTED CANDIDATES WITHOUT REQUIRED CLEARANCE WILL BE SUBJECT TO A FEDERAL GOVERNMENT BACKGROUND INVESTIGATION TO RECEIVE IT.

Responsibilities

• Respond to crisis or urgent situations within the pertinent domain to mitigate immediate and potential threats. 
• Use mitigation, preparedness, and response and recovery approaches, as needed, to maximize survival of life, preservation of property, and information security.
• Support the development of staff schedules and staffing forecasts for approval.
• Ensure shift members follow the appropriate incident escalation and reporting procedures.
• Provides support promptly and efficiently through front-line telephone and email communications.
• Ingest, triage, prioritize, assign, track, document, and manage incidents and results.
• Provide technical support in response to computer security incidents.
• Correlate, map, and fuse any and all incident information for the development and distribution of cyber alerts and notices, or other products as Required.
• Document technical details of current or potential intruder threats consistent with NIST 800-61: Computer Security Incident Handling Guide. Must be flexible and able to work within a 24X7X365 support environment.
• Manage information, requests, that may be considered out of the scope of the incident management service and route appropriately.
• Coordinate, communicate, share information, and work closely with USPS components.
• Assist with developing and maintaining Standard Operating Procedures.

Qualifications

• Must possess a minimum of a Bachelor’s Degree or Master’s Degree, PhD or JD in a technical specialty such as cyber security, computer science, management information systems or related IT field.
• 8 years of experience in Information Security.
• Demonstrate a solid understanding of cyber security analysis, incident response, incident handling, and a proven an incident response team. 
• Expert knowledge in computer forensics or vulnerability analysis.
• 1 year experience as a certified investigator
• Experience with Splunk, Sentinel One, Armis, SNA preferred.
• CERTIFICATIONS (One or more required): Certified Investigator; CISSP; GCIH or GPEN.
• Excellent oral and written communication skills.
• Must be able to obtain a Position of Public Trust Clearance.
• All candidates must be a US Citizen or have permanent residence status (Green Card).
• Candidate must have lived in the United States for the past 5 years.
• Cannot have more than 6 months travel outside the United States within the last 5 years. Military Service excluded.