Incident Response Planner

Overview

The Data Privacy and Compliance Analyst assesses business policies, procedures, and operations to ensure the organization meets privacy requirements and government regulations for the protection of sensitive information. The Analyst manages legal and operational risks related to sensitive information assets, continuously evaluates business unit operations, and develops policies, procedures, and user training to exceed privacy requirements.

• Master’s degree.
• 5 years of experience in incident response.
• 9 years of experience in vulnerability management.
• Experience leading or managing an Incident Response Program.
• Advanced cybersecurity certifications: CISSP, CISM, CRISC, CISA, CASP, GEVA, CCNP‑Security or equivalent.
• Basic cybersecurity certifications:
  Security+, CEH, CND, CySA+, CCNA‑Security or equivalent.
• Practical knowledge of security applications and operating systems (Windows, Mac, Linux, Networking).
• Knowledge of application and infrastructure vulnerability scanning tools (Rapid7, Nessus, Qualys, Fortify, etc.).
• Technical background to understand vulnerability exploitation vectors.
• Strong knowledge of Splunk, Tenable Nessus, APIs, Excel, and Power BI for data analytics.
• Advanced Excel data manipulation (pivot tables, macros, intermediate formulas).
• Experience analyzing data to present metrics to remediation stakeholders and leadership.
• Knowledge of CVE, CVSS, CWE.
• Deep understanding of cybersecurity best practices and frameworks (NIST 800‑53/171, CMMC, RMF, MITRE ATT&CK, OWASP top 10).
• Incident management expertise with ability to translate technical risks for business leaders.
• Excellent written and verbal communication skills.

• Assist with difficult cybersecurity questions and requests from GTRI customers.
• Engage sponsors to review secure infrastructure compliance requirements.
• Guide requirements gathering and analysis.
• Lead validation of security control configuration to meet NIST, DFARS 252.204‑7012, CMMC, and related requirements.
• Translate privacy requirements into product lifecycle through analysis, synthesis, cyber engineering, and implementation.
• Conduct privacy impact analyses, recommend enhancements, and review system modifications for privacy compliance.
• Mentor lower‑level cybersecurity and IT professionals across the enterprise.
• Develop and implement incident response plans and procedures.
• Coordinate incident investigations, containment, and recovery efforts.
• Plan and conduct incident response exercises, simulations, and tabletop exercises.
• Gather information for IR reporting and submit reports to governing bodies as required.
• Consult with partners, publications, and cyber forums for threat updates.
• Communicate threats and risks to stakeholders outside the cybersecurity department.
• Document events during exercises and incidents for lessons learned sessions.

Intermediate Level

Contract to Hire position based out of Atlanta, GA. Hybrid workplace.

• Pay range: $58.00 – $67.00/hr.
• Medical, dental & vision coverage.
• Critical illness, accident, and hospital benefits.
• 401(k) Retirement Plan – pre‑tax and Roth post‑tax contributions available.
• Life Insurance (voluntary life & AD&D for employee and dependents).
• Short‑term and long‑term disability.
• Health Spending Account (HSA).
• Transportation benefits.
• Employee Assistance Program.
• Paid time off/leave (PTO, vacation, or sick leave).

This position is anticipated to close on Jan 19, 2026.

We’re partners in transformation, aiding clients across North America, Europe, and Asia with technology and talent solutions. TEKsystems, an Allegis Group company, employs over 80,000 professionals serving 6,000 clients, including 80% of the Fortune 500.

The company is an equal‑opportunity employer and will consider all applications without regard to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information, or any other characteristic protected by law.