The Senior Cybersecurity Analyst role is a remote-telework position that supports our Risk and Compliance (R&C) arm of the cybersecurity team. This role contributes to Amentum’s data protection requirements through the assessment of cybersecurity controls and working with teams through the mitigation process of gaps that have been identified. Qualified candidates will need a versatile skill set that emphasizes regulatory comprehension, technology, effective collaboration, critical thinking, analytical prowess, risk management, and strong communications skills. US Citizenship is required to apply.
Essential Responsibilities:
Develop Assessment and Authorization (A&A) packages
Contribute to cybersecurity change management and end user support for compliance and risk, Craft, validate, and document necessary cybersecurity as artifacts to include, but not limited to System Security Plan (SSP), Privacy Impact Assessment (PIA), Configuration Management Plan (CMP), Plan of Action and Milestones (POA&M), and Standard Operating Procedures (SOP) as necessary
Perform cyber assessments and audits as directed
Lead discussions with various teams, both internal and external, around data compliance and risk efforts
Provide expertise to system administrators, engineers, and Information System Security Manager (ISSM) to create or update system/site policies, procedures, and process guides.
Consult with and brief executive management on compliance and risk matters
Create, maintain, and provide metrics and status reports to cybersecurity leadership
Perform all other position related duties as assigned or requested.
Travel up to 25%
Minimum Position Knowledge, Skills, and Abilities Requirements
Must be a U.S. Citizen
Minimum of 5 years of experience in performing cybersecurity assessments
Bachelor’s degree in computer science, similar degree path, or additional 4 years of hands-on cybersecurity experience
Demonstrated experience in technology assessments, handling multiple assignments and finding mutually acceptable solutions to security problems
Demonstrated experience recommending and devising cybersecurity controls to mitigate risk
Demonstrated experience in policy research and applying it to developing policies and procedures related to cybersecurity technology
Minimum of 2 years’ hands-on experience in securing Federal Government environments, preferably DoD
CompTIA Security+ certified or equivalent
Knowledge of NIST publications and their relevancy to compliance and risk
Demonstrable strong written and verbal communications
Experience with common cybersecurity tools and platforms such as Nessus, Microsoft GCCH / O365, Microsoft Azure Gov, Microsoft Defender, Fireeye products, Email protection platforms, and Palo Alto products.
Amentum is proud to be an Equal Opportunity Employer. Our hiring practices provide equal opportunity for employment without regard to race, religion, color, sex, gender, national origin, age, United States military veteran’s status, ancestry, sexual orientation, marital status, family structure, medical condition including genetic characteristics or information, veteran status, or mental or physical disability so long as the essential functions of the job can be performed with or without reasonable accommodation, or any other protected category under federal, state, or local law.
Thanks for sharing this job with your friend or colleague
Thank you
Learn more about the internal application process
Did you know there are even MORE jobs on the internal site? More opportunities abound.
If you are an applicant with a disability that requires a reasonable accommodation to complete any part of the application process, or are limited in the ability—or unable to use—the online application system and need an alternative method for applying, you may contact our Reasonable Accommodation Helpline at 1-888-877-3181 or 301-944-3299 for assistance. In order to address your request, the following information is needed:
Amentum uses cookies on our career site to continuously improve our site’s performance. Click here to view our Privacy Policy.