Job details

Senior Cybersecurity Engineer (Incident Response)

Get a free resume review

Amentum is a global leader in advanced engineering and innovative technology solutions, trusted by the United States and its allies to address their most significant and complex challenges in science, security and sustainability. Headquartered in Virginia, we have more than 53,000 employees in approximately 80 countries across all 7 continents.

Amentum is seeking a Senior Cybersecurity Engineer with focus on Incident Response. This is a fully remote and hands-on role, responsible for ensuring Amentum assets are protected from cyber threats. This role provides technical expertise in multiple areas of cybersecurity to include Cloud Security and Endpoint Security. US Citizenship is required to apply. You may work remote-telework from anywhere within the United States.

Responsibilities:

Work closely with our MSSP to monitor and improve Incident Response services.
Design, develop and implement security controls to protect information systems, enterprise applications and data.
Participate in 2nd-level Security Operations Center (SOC) activities, e.g. respond to critical security incidents escalated by a MSSP.
Analyze, troubleshoot and investigate security-related IT system anomalies based on platform reporting, network traffic, log files and automated security alerts.
Optimize processes/tooling and automate recurring tasks.
Provide security oversight and coordination for changes to the IT landscape.
Provide off-hours support on an infrequent, but as needed basis.
Maintain and update relevant system and process documentation.
Perform other duties as assigned.

Knowledge, Skills and Abilities:

Self-starter with desire for professional excellence, able to work with minimal supervision.
Excellent communication skills, able to prioritize and adapt to dynamic changes in the environment.
Ability to travel up to 10%.

Minimum Requirements:

Must be a U.S. Citizen
Bachelor’s degree in Computer Science, Information Systems or related field plus five (5) years of relevant experience; three (3) years with a Master’s degree
Current Security+ or similar industry certification
Solid Microsoft Azure experience, including M365
Solid understanding of system and network security technologies and related concepts, e.g. boundary protection, network segmentation, firewalls, endpoint security, threat hunting, data protection
Effective time management and communication skills
Experience in Incident Management and Breach Investigations
Experience creating playbooks and detection automations
Experience in Threat Intelligence/Hunting using KQL
Experience in SIEM Management

Additional desired qualifications and experience:

Exposure to Microsoft Sentinel
Experience with NIST based controls or similar standard
Experience in forensics
Azure GCC-H exposure

Amentum is proud to be an Equal Opportunity Employer. Our hiring practices provide equal opportunity for employment without regard to race, religion, color, sex, gender, national origin, age, United States military veteran’s status, ancestry, sexual orientation, gender identity, marital status, family structure, medical condition including genetic characteristics or information, veteran status, or mental or physical disability so long as the essential functions of the job can be performed with or without reasonable accommodation, or any other protected category under federal, state, or local law. Learn more about your rights under Federal EEO laws and supplemental language at EEO including Disability/Protected Veterans and Labor Laws Posters.

Average salary estimate

$115000 / YEARLY (est.)

min

max

$100000K

$130000K

If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.

What You Should Know About Senior Cybersecurity Engineer (Incident Response), PAE

Amentum, a global leader in advanced engineering and innovative technology solutions, is on the lookout for a Senior Cybersecurity Engineer specializing in Incident Response. If you’re passionate about protecting assets from cyber threats and you thrive in a fully remote environment, this might be the right fit for you! In this hands-on role, you’ll collaborate closely with our Managed Security Service Provider to monitor and enhance Incident Response services. Your responsibilities will include designing, developing, and implementing security controls that protect critical information systems and enterprise applications. You will also respond to critical security incidents, analyze and troubleshoot IT system anomalies, and optimize processes and tools. A robust understanding of various cybersecurity aspects is a must, especially Cloud Security and Endpoint Security. Plus, with your strong communication skills and self-starter mentality, you’ll adapt smoothly to the dynamic nature of the cybersecurity landscape. While a bachelor’s degree and substantial experience are required, your drive for professional excellence will set you apart. Join our diverse team and contribute to addressing some of the most significant challenges in security and sustainability!

Frequently Asked Questions (FAQs) for Senior Cybersecurity Engineer (Incident Response) Role at PAE

What are the primary responsibilities of a Senior Cybersecurity Engineer (Incident Response) at Amentum?

As a Senior Cybersecurity Engineer (Incident Response) at Amentum, you'll be responsible for monitoring and improving incident response services in collaboration with our MSSP. You will design and implement security controls, participate in SOC activities, troubleshoot security incidents, and provide security oversight for IT changes. Your role is crucial in ensuring our assets are protected against evolving cyber threats.