Senior Cyber Incident Analyst

Everforth ECS is seeking a Senior Cyber Incident Analyst to work in our Arlington, VA office.

Job Description:

ECS is seeking talented professionals to join our successful and growing team supporting the Cybersecurity and Infrastructure Security Agency's (CISA) Joint Cyber Defense Collaborative (JCDC). The JCDC is CISA's flagship initiative for uniting government, industry, and international partners to proactively defend against cyber threats. Our ECS team is at the center of providing support to JCDC as they continue to plan, share, and respond to cyber threats in real time to support the greater cyber community, and we are looking to grow our team supporting this critical mission.

We are seeking a highly skilled and experienced Sr. Cyber Incident Analyst to join our team.

The successful candidate will foster collaboration and communication within a team of incident coordinators/analysts, develop and implement playbooks/mitigation strategies supporting cyber threats and incident management, have expert-level communications skills that enable stakeholder and customer actions and decision enablement. This role requires a strong understanding of cybersecurity principles, threat intelligence, and risk management.

The ideal candidate will provide incident management support for coordination with stakeholders and executives/government leaders, provide technical guidance for root cause analysis, risk and mitigation strategies and documentation of post-incident analysis/reporting. Familiarity with knowledge management tools such as Confluence or SharePoint to document workflows and communication methods. Including alignment with industry frameworks such as MITRE ATT&CK for incident management and cyber threat intelligence mapping, CVE and DHS/CISA KEV tracking. They will also collaborate with other teams to satisfy customer requirements and develop and implement technical solutions to advance Threat Hunting, Incident Management, and Risk Mitigation capabilities within FCEB, SLTT and Partner communities.

Responsibilities:

• Create written guidance and recommendations to assist JCDC partners with solutions for active and ongoing cyber threats.
• Maintain and develop SOPs for current processes to streamline workflows.
• Analyze, develop and provide recommendations for process improvements to the customer.
• Perform analysis on active cyber incidents, events and vulnerabilities to provide guidance and targeted recommendations for mitigation efforts.
• Conduct threat intelligence research and analysis to stay up-to-date on emerging technologies, threats and trends. Then apply this knowledge to develop efficient cyber risk mitigation strategies.
• Oversee the translation of strategic products into clear, practical formats that are tailored to the specific needs and operational constraints of different stakeholder groups, including large and small jurisdictions and critical infrastructure (CI) partners.
• Provide tailored vulnerability mitigation recommendations and contextualized examples to stakeholders to address implementation challenges and encourage rapid adoption.