Cyber Security Analyst II

About The Position

Requirements

• Two (2) to five (5) years of experience in cybersecurity or information security.
• Demonstrated working knowledge of NIST cybersecurity standards and Special Publications.
• Experience analyzing logs, alerts, and vulnerability data.
• Understanding of network, system, and application security principles.
• Strong documentation, analytical, and communication skills.

Nice To Haves

• Experience supporting environments that require strict adherence to NIST standards.
• Hands-on experience supporting system authorization, assessments, or continuous monitoring activities aligned with NIST.
• Cybersecurity certifications aligned with NIST principles (e.g., Security+, CySA+, CISSP, or equivalent).

Responsibilities

• Security Operations & Monitoring Monitor security alerts, logs, and system activity to detect potential cybersecurity threats or policy violations.
• Analyze security events and vulnerabilities; recommend corrective and preventive actions aligned with NIST guidance.
• Support system hardening and secure configuration baselines in accordance with NIST standards.
• NIST Implementation & Compliance Implement, assess, and maintain security controls based on NIST Special Publications.
• Support NIST-based risk management activities, including system categorization, control selection, assessment, authorization support, and continuous monitoring.
• Maintain documentation demonstrating compliance with NIST security requirements.
• Assist in the development and maintenance of System Security Plans (SSPs), risk assessments, and Plans of Action and Milestones (POA&Ms) aligned to NIST standards.
• Incident Response Participate in cybersecurity incident response activities using NIST-recommended incident handling practices or incident handling as defined by the USG.
• Assist with containment, eradication, recovery, and post-incident analysis.
• Document incidents, response actions, and lessons learned in accordance with NIST guidance.
• Risk & Vulnerability Management Identify, analyze, and track cybersecurity risks in alignment with NIST risk management principles.
• Support vulnerability scanning, assessment, and remediation tracking consistent with NIST recommendations.
• Assist with risk acceptance and residual risk documentation.
• Policy, Procedures & Awareness Develop, review, and update cybersecurity policies, procedures, and standard operating procedures aligned with NIST publications.
• Support security awareness activities to reinforce NIST-based cybersecurity best practices across the organization.
• Ensure cybersecurity documentation remains current with evolving NIST standards.
• Safety - Amentum enforces a safety culture whereby all employees have the responsibility for continuously developing and maintaining a safe work environment. As appropriate, each employee is responsible for completing all training requirements and fulfilling all self-aid/buddy aid responsibilities, participating in emergency response tasks and serving on safety committees and teams.
• Quality - Quality is the foundation for the management of our business and the keystone to our goal of customer satisfaction. It is our policy to consistently provide services that meet customer expectations. Accordingly, each employee must conform to the Amentum Quality Policy and carry out job activities in compliance with applicable Amentum Quality System documents and customer contracts. Each employee must read and understand his/her Quality Management and Customer Satisfaction responsibilities.
• Procedure Compliance - Each employee must read, understand and implement the general and specific operational, safety, quality and environmental requirements of all plans, procedures and policies pertaining to his/her job.

Benefits

• Health, dental, and vision insurance
• Paid time off and holidays
• Retirement benefits (including 401(k) matching)
• Educational reimbursement
• Parental leave
• Employee stock purchase plan
• Tax-saving options
• Disability and life insurance
• Pet insurance