← Back to Jobs
Temporary/Casual
Administrative
CIME/Tabletop exercises (TTX) Contractor with Security Clearance
22nd Century Technologies, Inc.Ames, IA🇺🇸United StatesPosted 10 Jul 2026
Quick Overview
Work Type
On Site
Schedule
Temporary/Casual
Level
Mid Senior
Job Description
Position Overview
22nd Century Technologies, Inc. (TSCTI) is seeking experienced Cybersecurity Incident Management Exercise (CIME) Facilitators to support statewide cybersecurity resilience initiatives across Iowa. This role is focused on leading in-person tabletop and incident response exercises for public sector organizations including cities, counties, school districts, and related agencies.
The ideal candidate is a senior cybersecurity professional with prior experience in incident response, SOC operations, emergency management, cyber exercises, or public-sector cyber preparedness initiatives. Candidates must be comfortable facilitating executive and technical discussions in front of diverse stakeholder groups and driving structured incident-response conversations during live tabletop exercises.
This is a 1099 contractor role supporting project-based, hourly engagements with onsite travel across Iowa. Key Responsibilities
1. Facilitate onsite Cybersecurity Incident Management Exercises (CIME) and tabletop exercises (TTX) at customer locations across Iowa
2. Lead structured cyber incident scenarios involving ransomware, operational disruption, business continuity, and crisis response
3. Guide participant discussions involving IT teams, leadership personnel, emergency management stakeholders, and operational staff
4. Maintain professional delivery and ensure smooth execution of exercise agendas, scripts, and facilitation materials
5. Capture exercise observations, participant feedback, and operational findings during engagements
6. Develop concise post-exercise summaries, observations, and reporting deliverables
7. Coordinate with TSCTI project leadership and customer stakeholders before and after engagements
8. Represent TSCTI professionally during all public-sector interactions Required Qualifications
1. 5+ years of cybersecurity, incident response, SOC, emergency management, or cyber risk experience
2. Experience facilitating tabletop exercises, incident response workshops, or crisis management discussions
3. Strong understanding of:
a. Incident Response (IR)
b. Ransomware response workflows
c. Cybersecurity operations
d. Business continuity concepts
e. Public-sector cyber risk environments
4. Experience interacting with executive leadership and technical stakeholders
5. Strong verbal communication and presentation skills
6. Ability to independently lead structured onsite sessions
7. Ability and willingness to travel throughout Iowa for onsite engagements
8. Must be eligible to work in the United States Preferred Qualifications
1. Prior experience supporting:
a. State/local government entities
b. School districts
c. Emergency management organizations
d. Critical infrastructure environments
2. Familiarity with:
a. NIST Cybersecurity Framework (CSF)
b. CISA tabletop methodologies
c. Incident command and crisis communication processes
3. Previous SOC analyst, IR consultant, emergency management, or cyber operations background
4. Experience with ransomware tabletop facilitation and cyber preparedness workshops Engagement Details
1. Employment Type: 1099 Contractor
2. Engagement Type: Hourly / Project-Based
3. Location: Primarily onsite throughout Iowa
4. Travel: Required
5. Schedule: Flexible based on project assignments and customer scheduling
6. Compensation: Hourly rate based on experience and qualifications
22nd Century Technologies, Inc. (TSCTI) is seeking experienced Cybersecurity Incident Management Exercise (CIME) Facilitators to support statewide cybersecurity resilience initiatives across Iowa. This role is focused on leading in-person tabletop and incident response exercises for public sector organizations including cities, counties, school districts, and related agencies.
The ideal candidate is a senior cybersecurity professional with prior experience in incident response, SOC operations, emergency management, cyber exercises, or public-sector cyber preparedness initiatives. Candidates must be comfortable facilitating executive and technical discussions in front of diverse stakeholder groups and driving structured incident-response conversations during live tabletop exercises.
This is a 1099 contractor role supporting project-based, hourly engagements with onsite travel across Iowa. Key Responsibilities
1. Facilitate onsite Cybersecurity Incident Management Exercises (CIME) and tabletop exercises (TTX) at customer locations across Iowa
2. Lead structured cyber incident scenarios involving ransomware, operational disruption, business continuity, and crisis response
3. Guide participant discussions involving IT teams, leadership personnel, emergency management stakeholders, and operational staff
4. Maintain professional delivery and ensure smooth execution of exercise agendas, scripts, and facilitation materials
5. Capture exercise observations, participant feedback, and operational findings during engagements
6. Develop concise post-exercise summaries, observations, and reporting deliverables
7. Coordinate with TSCTI project leadership and customer stakeholders before and after engagements
8. Represent TSCTI professionally during all public-sector interactions Required Qualifications
1. 5+ years of cybersecurity, incident response, SOC, emergency management, or cyber risk experience
2. Experience facilitating tabletop exercises, incident response workshops, or crisis management discussions
3. Strong understanding of:
a. Incident Response (IR)
b. Ransomware response workflows
c. Cybersecurity operations
d. Business continuity concepts
e. Public-sector cyber risk environments
4. Experience interacting with executive leadership and technical stakeholders
5. Strong verbal communication and presentation skills
6. Ability to independently lead structured onsite sessions
7. Ability and willingness to travel throughout Iowa for onsite engagements
8. Must be eligible to work in the United States Preferred Qualifications
1. Prior experience supporting:
a. State/local government entities
b. School districts
c. Emergency management organizations
d. Critical infrastructure environments
2. Familiarity with:
a. NIST Cybersecurity Framework (CSF)
b. CISA tabletop methodologies
c. Incident command and crisis communication processes
3. Previous SOC analyst, IR consultant, emergency management, or cyber operations background
4. Experience with ransomware tabletop facilitation and cyber preparedness workshops Engagement Details
1. Employment Type: 1099 Contractor
2. Engagement Type: Hourly / Project-Based
3. Location: Primarily onsite throughout Iowa
4. Travel: Required
5. Schedule: Flexible based on project assignments and customer scheduling
6. Compensation: Hourly rate based on experience and qualifications
Skills
Scheduling
Similar jobs
Senior Information Systems Security Officer (ISSO) with Security Clearance
HII Mission Technologies · Springfield, United States
28 minutes ago$102.8k - $154k/yrNetwork Administrator I (SDA) with Security Clearance
Trace Systems · Scott AFB, United States
28 minutes ago$60k - $80k/yrTest Engineer III - Lead with Security Clearance
Sierra Nevada Corporation · Colorado Springs, United States
28 minutes ago$98.6k - $135.6k/yrCyber New Professional Cyber Engineering with Security Clearance
MITRE Corporation · Huntsville, United States
28 minutes ago$85.2k - $106.5k/yrCyber New Professional Cyber Engineering with Security Clearance
MITRE Corporation · fort meade-annapolis junction, United States
28 minutes ago$85.2k - $106.5k/yrServiceNow Configuration Manager (Top Secret Clearance Required) with Security Clearance
ICF Consulting Group, Inc. · Reston, United States
28 minutes ago$81.5k - $167.6k/yr