Job Requirements
Ames, IA
Clearance Unspecified Polygraph not specified
Senior Level Career (10+ yrs experience)
Salary not specified
Join Premium to unlock estimated salaries 
Job Description
Position Overview
22nd Century Technologies, Inc. (TSCTI) is seeking experienced Cybersecurity Incident Management Exercise (CIME) Facilitators to support statewide cybersecurity resilience initiatives across Iowa. This role is focused on leading in-person tabletop and incident response exercises for public sector organizations including cities, counties, school districts, and related agencies.
The ideal candidate is a senior cybersecurity professional with prior experience in incident response, SOC operations, emergency management, cyber exercises, or public-sector cyber preparedness initiatives. Candidates must be comfortable facilitating executive and technical discussions in front of diverse stakeholder groups and driving structured incident-response conversations during live tabletop exercises.
This is a 1099 contractor role supporting project-based, hourly engagements with onsite travel across Iowa.
Key Responsibilities
1. Facilitate onsite Cybersecurity Incident Management Exercises (CIME) and tabletop exercises (TTX) at customer locations across Iowa
2. Lead structured cyber incident scenarios involving ransomware, operational disruption, business continuity, and crisis response
3. Guide participant discussions involving IT teams, leadership personnel, emergency management stakeholders, and operational staff
4. Maintain professional delivery and ensure smooth execution of exercise agendas, scripts, and facilitation materials
5. Capture exercise observations, participant feedback, and operational findings during engagements
6. Develop concise post-exercise summaries, observations, and reporting deliverables
7. Coordinate with TSCTI project leadership and customer stakeholders before and after engagements
8. Represent TSCTI professionally during all public-sector interactions
Required Qualifications
1. 5+ years of cybersecurity, incident response, SOC, emergency management, or cyber risk experience
2. Experience facilitating tabletop exercises, incident response workshops, or crisis management discussions
3. Strong understanding of:
a. Incident Response (IR)
b. Ransomware response workflows
c. Cybersecurity operations
d. Business continuity concepts
e. Public-sector cyber risk environments
4. Experience interacting with executive leadership and technical stakeholders
5. Strong verbal communication and presentation skills
6. Ability to independently lead structured onsite sessions
7. Ability and willingness to travel throughout Iowa for onsite engagements
8. Must be eligible to work in the United States
Preferred Qualifications
1. Prior experience supporting:
a. State/local government entities
b. School districts
c. Emergency management organizations
d. Critical infrastructure environments
2. Familiarity with:
a. NIST Cybersecurity Framework (CSF)
b. CISA tabletop methodologies
c. Incident command and crisis communication processes
3. Previous SOC analyst, IR consultant, emergency management, or cyber operations background
4. Experience with ransomware tabletop facilitation and cyber preparedness workshops
Engagement Details
1. Employment Type: 1099 Contractor
2. Engagement Type: Hourly / Project-Based
3. Location: Primarily onsite throughout Iowa
4. Travel: Required
5. Schedule: Flexible based on project assignments and customer scheduling
6. Compensation: Hourly rate based on experience and qualifications
22nd Century Technologies, Inc. (TSCTI) is seeking experienced Cybersecurity Incident Management Exercise (CIME) Facilitators to support statewide cybersecurity resilience initiatives across Iowa. This role is focused on leading in-person tabletop and incident response exercises for public sector organizations including cities, counties, school districts, and related agencies.
The ideal candidate is a senior cybersecurity professional with prior experience in incident response, SOC operations, emergency management, cyber exercises, or public-sector cyber preparedness initiatives. Candidates must be comfortable facilitating executive and technical discussions in front of diverse stakeholder groups and driving structured incident-response conversations during live tabletop exercises.
This is a 1099 contractor role supporting project-based, hourly engagements with onsite travel across Iowa.
Key Responsibilities
1. Facilitate onsite Cybersecurity Incident Management Exercises (CIME) and tabletop exercises (TTX) at customer locations across Iowa
2. Lead structured cyber incident scenarios involving ransomware, operational disruption, business continuity, and crisis response
3. Guide participant discussions involving IT teams, leadership personnel, emergency management stakeholders, and operational staff
4. Maintain professional delivery and ensure smooth execution of exercise agendas, scripts, and facilitation materials
5. Capture exercise observations, participant feedback, and operational findings during engagements
6. Develop concise post-exercise summaries, observations, and reporting deliverables
7. Coordinate with TSCTI project leadership and customer stakeholders before and after engagements
8. Represent TSCTI professionally during all public-sector interactions
Required Qualifications
1. 5+ years of cybersecurity, incident response, SOC, emergency management, or cyber risk experience
2. Experience facilitating tabletop exercises, incident response workshops, or crisis management discussions
3. Strong understanding of:
a. Incident Response (IR)
b. Ransomware response workflows
c. Cybersecurity operations
d. Business continuity concepts
e. Public-sector cyber risk environments
4. Experience interacting with executive leadership and technical stakeholders
5. Strong verbal communication and presentation skills
6. Ability to independently lead structured onsite sessions
7. Ability and willingness to travel throughout Iowa for onsite engagements
8. Must be eligible to work in the United States
Preferred Qualifications
1. Prior experience supporting:
a. State/local government entities
b. School districts
c. Emergency management organizations
d. Critical infrastructure environments
2. Familiarity with:
a. NIST Cybersecurity Framework (CSF)
b. CISA tabletop methodologies
c. Incident command and crisis communication processes
3. Previous SOC analyst, IR consultant, emergency management, or cyber operations background
4. Experience with ransomware tabletop facilitation and cyber preparedness workshops
Engagement Details
1. Employment Type: 1099 Contractor
2. Engagement Type: Hourly / Project-Based
3. Location: Primarily onsite throughout Iowa
4. Travel: Required
5. Schedule: Flexible based on project assignments and customer scheduling
6. Compensation: Hourly rate based on experience and qualifications
group id: 10216532
