We are looking for a Cyber Incident Analyst to work with our team supporting a major government civilian agency Computer Security Incident Response Center (CSIRC). As a Cyber Incident Analyst, you will be given the opportunity to learn from an experienced team of security Incident Response Analyst about both traditional and unconventional ways to detect, analyze, and mitigate potential intrusions and other security incidents. **Responsibilities:** + Monitor Security Operations Dashboard for alerts + Monitor and respond to multiple shared Mailbox inquiries + Monitor and answer the SOC phone hotline + Work Incident Response and Administrative tickets + Investigate security incidents and escalate as needed + Perform and develop data mining queries using Splunk ES + Communicate in a clear and concise manner with Leadership, Customers and Peers + Provide vulnerability, threat and risk mitigation support + Support daily Operations briefings + Support customer defined metrics reports + Support government data calls **Requirements:** **Rotational weekend and holiday work will be required. 2nd Shift is 2:00 PM to 9:00 PM, 5 days a week. Limited scheduling flexibility available.** + Must have an active DOD Secret, but clearable to Top Secret (Preferred) + Bachelor degree or years of experience or equivalent years of experience + Minimum 10 years of IT experience + W ork experience in Network Security Background (formal or informal) in hands on computer and networking experience to include a good understanding of TCP/IP, routing, and major Internet protocols. + Candidates must be willing to work in a SOC environment, demonstrate strong problem-solving skills, allow for flexible scheduling. + Must be able to work well both on their own (in an individual setting) as well as with others (in a team setting + Must possess strong self-initiative, curiosity and diligence - must be willing to engage with the team, in the capacity of both learning and sharing information. + Excellent communication skills both verbal and written. **Preferred:** + Experience with Linux OS + Experience with SIEM tools such as Splunk + Experience with IDS tools and technologies + Technical Certifications such as Security +, CEH, GREM, and/or CISSP + Active DOD Top Secret Clearance ***** The successful candidate must complete “Splunk Fundamentals 1” prior to start***** \#javelin #OtherHashTags **Pay Transparency Verbiage** Amentum’s health and welfare benefits are designed to invest in you and in the things you care about. Your health. Your well-being. Your security. Your future. Eligible employees and their dependents may elect medical, dental, vision, and basic life insurance. Employees are able to enroll in our company’s 401k plan, and, if eligible, a deferred compensation plan and Executive Deferral Plan. Employees will also receive 17 days of vacation per year, seven paid holidays, plus floating holidays and caregiver leave. Hired applicants will be able to purchase company stock and have the opportunity to receive a performance discretionary bonus. The base salary range for this position is **$90K to $120K** . This range reflects the minimum and maximum target for new hire salaries for the position across all US locations. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training.