ServiceNow Security Incident Response SME
Overview:
ServiceNow Security Incident Response SME
Remote | US Based; Local to Washington D.C. Preferred
US Citizenship - Clearable; Ability to obtain a Public Trust Required
Summary
Our client is an employee and Service-Disabled, Veteran-owned Small Business focused on providing niche technical services. They are a team of experienced cybersecurity professionals with a track record of success in the Federal, Commercial, and Academic workspaces.Additionally, our client designs, builds, operates, and secures scalable cloud and IT infrastructures to meet their customers’ near-term needs and fulfill their long-term requirements.
Responsibilities
Our client is seeking a ServiceNow Security Incident Response (SIR) Subject Matter Expert (SME) to join their team! This role is critical in implementing, managing, and optimizing the ServiceNow Security Operations suite, particularly the Security Incident Response module.The ideal candidate will bring deep expertise in ServiceNow functionality, a strong understanding of cybersecurity frameworks, and the ability to work collaboratively with technical teams and stakeholders to enhance incident response capabilities.
If you thrive in dynamic environments and are passionate about advancing cybersecurity operations, this role is an excellent opportunity.
- Configure, customize, and manage the ServiceNow Security Incident Response (SIR) module, leveraging out-of-the-box features and tailored integrations
- Collaborate with stakeholders to gather, document, and validate technical and functional requirements, ensuring alignment with business objectives
- Develop and manage ServiceNow workflows, notifications, and integrations with external tools, including SIEM systems and threat intelligence platforms
- Facilitate client meetings, document action items, and ensure follow-through on deliverables to meet project goals
- Create and maintain project plans, schedules, and documentation, tracking progress against milestones and deliverables
- Act as a liaison between technical teams and stakeholders to provide clear communication and ensure alignment on priorities
- Analyze incidents and metrics to identify trends, recommend improvements, and support cybersecurity initiatives
- Develop detailed reports and documentation, including incident summaries, system roadmaps, and user guides
- 10+ years of relateable Incident Response experience is required
- Proficiency in ServiceNow Security Incident Response (SIR) module, including out-of-the-box (OOB) features and functionality
- Experience in configuring and customizing ServiceNow applications, specifically within the Security Operations suite
- Understanding of ServiceNow workflows, notifications, and integrations (e.g., SIEM tools, threat intelligence platforms, or incident response tools)
- Strong ability to elicit, document, and validate technical and functional requirements
- Familiarity with engaging diverse stakeholders to refine and prioritize requirements
- Experience with project planning and management tools (e.g., MS Project, Jira, or ServiceNow Project Portfolio Management)
- Ability to create and maintain deliverable schedules, manage project milestones, and track progress
- Proficiency in developing status reports and maintaining project documentation
- Skill in acting as a liaison between technical teams and government stakeholders to ensure alignment
- Experience in facilitating meetings, documenting follow-ups, and driving decision-making processes
- Ability to provide tailored support, including ad hoc troubleshooting and guidance based on client needs
- Knowledge of incident response processes and cybersecurity frameworks (e.g., NIST CSF, NIST SP 800-61, or ISO 27001)
- Understanding of threat intelligence and vulnerability management as they relate to SIR
- None
- A Bachelors degree is highly preferred, but not required
- Familiarity with integrating ServiceNow with external systems and tools (e.g., email, Active Directory, or cloud services)
- Understanding of APIs and web services (REST/SOAP) for interoperability
- Proficiency in creating technical and functional documentation, including user guides and implementation roadmaps
- Ability to produce detailed reports summarizing incidents, risks, and remediation efforts
- Capability to analyze incidents and metrics to recommend system improvements
- Strong troubleshooting skills to identify and resolve configuration or integration issues
- Adaptability to handle unstructured tasks and shifting priorities
- Strong interpersonal skills for stakeholder engagement and collaboration
- Excellent organizational skills to manage competing demands and track deliverables effectively
- Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Must be able to obtain a US Government Public Trust Clearance once starting the position.
Other Duties
Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties, or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities may change at any time with or without notice.
About Us
Northern Virginia-based Precision Solutions is an expert in staffing solutions for companies of any size that open the door to new opportunities and seek outstanding talent. We pride ourselves on being versatile enough to tailor our relationships to the needs of each individual client, being agile in the fast-paced marketplace, and being precise in meeting the needs of any company.
Equal Opportunity Employer Statement
Precision Solutions is an equal opportunity employer. We prohibit discrimination and harassment of any kind based on race, color, sex, religion, sexual orientation, national origin, disability, genetic information, pregnancy, or any other protected characteristic as outlined by federal, state, or local laws.