Mid. Cyber Incident Coordinator

Reposted 7 Days Ago
Be an Early Applicant
Arlington, VA, USA
In-Office
135K-160K Annually
Senior level
Artificial Intelligence • Cloud • Information Technology • Security • Software
The Role
Analyze and correlate cyber threat intelligence to support detection, threat hunting, and incident response for JCDC. Develop and refine detection logic (SIGMA, YARA), map threats to MITRE ATT&CK, produce written guidance for partners, and coordinate operational activities across IT, OT/ICS, cloud, and AI environments.
Summary Generated by Built In
Job Summary & Responsibilities

Everforth ECS is seeking a Mid. Cyber Incident Coordinator to work out of our Arlington, VAoffice.  

 

Everforth ECS is seeking talented professionals to join our successful and growing team supporting the Cybersecurity and Infrastructure Security Agency’s (CISA) Joint Cyber Defense Collaborative (JCDC).  The JCDC is CISA’s flagship initiative for uniting government, industry, and international partners to proactively defend against cyber threats.  Our ECS team is at the center of providing support to JCDC as they continue to plan, share, and respond to cyber threats in real time to support the greater cyber community and we are looking to grow our team supporting this critical mission. 

We are looking for a Mid. Cyber Incident Coordinator for a team that provides deep technical analysis of cyber threat intelligence and operational data, correlating information across available datasets, and producing actionable context to support detection, threat hunting, and incident response activities. This position will support a team that interfaces extensively with multiple organizations within CISA including Vulnerability Management (VM) and Threat Hunt (TH) to provide guidance and analysis on active cyber threats for JCDC partners. This position emphasizes analytical rigor, contextualization, and effective communication in support of coordinated cyber defense operations across government and partner organizations.  

The Mid. Cyber Incident Coordinator will support a team that works closely with many stakeholders, including DHS CISA TH and VM, Agency security analysts / user groups, and the ECS team to ensure alignment between solution development and needs of stakeholders. The coordinator will perform research and assist with solutions for specific IOCs and IOAs. The coordinator will aid in defining tools, processes, and procedures for advancing Threat Hunting and Incident Response capabilities within CISA, FCEB, CI and SLTT 

Responsibilities: 

  • Analyze cyber threat intelligence and related reporting to assess relevance, credibility, and potential operational impact. 
  • Correlate intelligence with internal datasets and partner-provided information to identify patterns, behaviors, and emerging threats. 
  • Apply threat hunting and detection analysis techniques to provide contextual insights that support detection and response activities. 
  • Contribute analytical findings and behavioral context to inform the development and refinement of detection logic, including SIGMA and YARA-based detections. 
  • Support the development of written guidance and recommendations to assist JCDC partners with solutions for active and ongoing cyber vulnerabilities.
  • Stay current with emerging technologies and trends in cybersecurity, and apply this knowledge to improve threat detection and mitigation efforts.
  • Through hands-on analysis provide insights into vulnerabilities, adversarial tactics, and mitigation strategies across diverse environments like IT, OT/ICS, cloud, and AI systems.
  • Assist with mapping technical insights on cyber threats to frameworks like MITRE ATT&CK and other cyber frameworks.
  • Support collaboration and information sharing across internal teams and external partners in alignment with the JCDC mission. 
  • Participate in operational coordination activities and briefing as required. 

Salary Range: $135,000 - $160,000

General Description of Benefits

Preferred Qualifications
  • US citizenship with the ability to obtain and maintain DHS Suitability (EOD). 
  • Active TS security clearance and SCI eligible. 
  • On-site 3-5 days per week in Arlington, VA. 
  • 6+ Years of previous experience in a threat intelligence, cyber security, incident response, or similar role 
  • Strong understanding of computer and network fundamentals 
  • Experience in cyber threat intelligence analysis, cyber incident analysis, or related cybersecurity roles. 
  • Working knowledge of threat hunting concepts and detection methodologies. 
  • Familiarity with detection logic frameworks and concepts (e.g. behavioral detection, SIGMA, YARA). 
  • Strong analytical writing skills with the ability to produce clear, defensible documentation. 
  • With minimum support perform in-depth research tasks and produce written summaries to include insights and predictions based on an analytical process 
  • Excellent written and oral communication skills 
  • An understanding of current cyber threats/exploits, attack methodology, and detection techniques using a wide variety of security products including COTS and open source 
  • Experience working in collaborative, multi-stakeholder environments. 

Skills Required

  • US citizenship with the ability to obtain and maintain DHS Suitability (EOD)
  • Active Top Secret (TS) security clearance and SCI eligibility
  • On-site 3-5 days per week in Arlington, VA
  • 6+ years of experience in threat intelligence, cybersecurity, incident response, or similar roles
  • Strong understanding of computer and network fundamentals
  • Experience in cyber threat intelligence analysis or cyber incident analysis
  • Working knowledge of threat hunting concepts and detection methodologies
  • Familiarity with detection logic frameworks and concepts (e.g., behavioral detection, SIGMA, YARA)
  • Strong analytical writing skills and ability to produce clear, defensible documentation
  • Ability to perform in-depth research and produce written summaries with insights and predictions
  • Excellent written and oral communication skills
  • Experience working in collaborative, multi-stakeholder environments
  • Understanding of current cyber threats, attack methodologies, and detection techniques across COTS and open-source security tools

ECS Compensation & Benefits Highlights

The following summarizes recurring compensation and benefits themes identified from responses generated by popular LLMs to common candidate questions about ECS and has not been reviewed or approved by ECS.

  • Healthcare Strength ECS advertises multiple national-network medical plan options with HSA eligibility alongside dental and vision coverage. Coverage generally begins quickly and is paired with company-paid short- and long-term disability, adding stability to the health package.
  • Retirement Support A 401(k) with Safe Harbor and immediate vesting on employer contributions is emphasized, with an employer match available. Access to an employee stock purchase plan via the parent company provides an additional savings avenue.
  • Parental & Family Support Paid parental leave up to 30 days, adoption assistance, and other family-oriented leaves are highlighted. Feedback suggests these offerings add meaningful value beyond base pay for many roles.

ECS Insights

Am I A Good Fit?
beta
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company
HQ: Elkhorn, NE
2,129 Employees
Year Founded: 1993

What We Do

ECS, a segment of ASGN (NYSE: ASGN), delivers advanced solutions and services in cloud, cybersecurity, artificial intelligence (AI), machine learning (ML), application and IT modernization, and science and engineering. The company solves critical, complex challenges for customers across the U.S. public sector, defense, intelligence and commercial industries. ECS maintains partnerships with leading cloud, cybersecurity, and AI/ML providers and holds specialized certifications in their technologies. Headquartered in Fairfax, Virginia, ECS has more than 3,400 employees throughout the U.S. and has been recognized as a Top Workplace by The Washington Post for the last five years.

Similar Jobs

CDW Logo CDW

Senior Scrum Master

Information Technology
Remote or Hybrid
US
15100 Employees
84K-120K Annually

CDW Logo CDW

Architect

Information Technology
Remote or Hybrid
US
15100 Employees
103K-144K Annually
Remote or Hybrid
US
15100 Employees
1K-1K Hourly

RapDev Logo RapDev

ServiceNow Tech Lead

Information Technology • Productivity • Professional Services • Software
Remote or Hybrid
United States
130 Employees
150K-200K Annually

Similar Companies Hiring

Golden Pet Brands Thumbnail
Digital Media • eCommerce • Information Technology • Marketing Tech • Pet • Retail • Social Media
El Segundo, California
178 Employees
Kepler  Thumbnail
Fintech • Software
New York, New York
6 Employees
Onshore Thumbnail
Artificial Intelligence • Fintech • Software • Financial Services
New York, New York
60 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account