• Implement technical measures from the Kelvion Cyber Security Strategy • Further advance the security architecture • Operate, maintain, and enhance existing security tools • Participate in technical security projects • Work closely with Group IT, Local IT, and external SOC • Manage the external SOC provider and support operational tasks • Analyze security findings and implement necessary improvements • Create and maintain documentation for security processes and tools

Avint is hiring a **Cybersecurity Analyst (SOC Analyst / Threat Monitoring & Response)** to support and protect critical systems within the HACS program at FRTIB HQ. In this role, you’ll monitor security events, analyze threats, and support incident response efforts to maintain a strong cybersecurity posture.

Role Description The Incident Response Coordinator supports the end-to-end response to IT incidents and service disruptions, helping restore normal operations quickly and reduce impact on mission-critical systems. The role serves as the central coordination point for incident response activities, ensuring alignment with established incident management processes, service incident models, and enterprise IT objectives in a highly regulated federal environment. The coordinator orchestrates communication among technical teams, vendors, and leadership; provides clear and timely status reporting; and executes functional and hierarchical escalations to Senior Coordinators and the Senior Incident Manager as defined in the incident management practice and Major Incident Process. The coordinator maintains complete, audit-ready documentation throughout the incident lifecycle and contributes to lessons-learned activities and process improvements. Key Responsibilities - Operational Coordination: Organize response efforts across the full end-to-end lifecycle of incidents, high-impact events, and multiple concurrent incidents; set priorities; assign actions; track progress through restoration; maintain disciplined status calls. - Runbook & ITSM Execution: Ensure accurate categorization, CI linkage, documentation, and knowledge updates; maintain audit-ready records/timelines, and capture key decisions, timelines, and impacts accurately. - Telemetry-Informed Engagement: Use monitoring/ITSM data to route incidents; engage infra/app/cyber/vendor dependencies. - Communications & Handoffs: Provide structured internal messaging (leadership updates, stakeholder briefings, and status pages); manage shift handoffs and continuity of incident coordination. - PIR Support & Improvement: Help lead PIRs; identify recurring patterns; update runbooks/workflows; track action closure. - Escalation Discipline: Elevate deteriorating/unresolved incidents per SLA/escalation guidelines. - Evidence Management: Collect/store key decisions, impact summaries, timelines for compliance/audits. - Single point of contact: Facilitate collaboration for IT incidents between infrastructure, application, cybersecurity, and vendor teams to drive timely resolution. - IT service management platforms/related monitoring tools: Track incidents, verify remediation steps, and maintain accurate records required for audits, compliance reviews, and post-incident analysis. - Post-incident reviews: Participate by identifying systemic issues and recurring patterns, and translate lessons learned into updates to runbooks, workflows, and ITSM configurations. Qualifications - Bachelor’s degree in information technology, Computer Science, Business Administration, or related field, or equivalent relevant work experience. - 4–7 years of experience in incident management, incident response, or related IT operations roles with direct responsibility for coordinating multi-party incident activities. - Strong understanding of ITIL-aligned incident management and structured incident response practices, including prioritization, escalation, and lifecycle management. - Proficiency with IT service management platforms and monitoring solutions. Ability to manage multiple incidents and communicate clearly in a high-pressure operations center environment. - Excellent problem-solving, analytical, written, and verbal communication skills, with the ability to tailor content for both technical staff and business leadership. - Active SECRET clearance or ability to obtain and maintain required background investigation; U.S. citizenship required. Preferred Qualifications - ITIL Foundation or similar IT service management certification, ideally combined with training in structured IT or cybersecurity incident response. - Hands-on experience coordinating incident response in large enterprise or defense-focused operations centers. - Experience contributing to the design or optimization of incident response runbooks, coordination models, and ITSM workflows. Compensation Ranges Compensation ranges for ASM Research positions vary depending on multiple factors; including but not limited to, location, skill set, level of education, certifications, client requirements, contract-specific affordability, government clearance and investigation level, and years of experience. The compensation displayed for this role is a general guideline based on these factors and is unique to each role. Monetary compensation is one component of ASM's overall compensation and benefits package for employees. EEO Requirements It is the policy of ASM that an individual's race, color, religion, sex, disability, age, sexual orientation or national origin are not and will not be considered in any personnel or management decisions. We affirm our commitment to these fundamental policies. All recruiting, hiring, training, and promoting for all job classifications is done without regard to race, color, religion, sex, disability, or age. All decisions on employment are made to abide by the principle of equal employment. Physical Requirements The physical requirements described in "Knowledge, Skills and Abilities" above are representative of those which must be met by an employee to successfully perform the primary functions of this job. Reasonable accommodations may be made to enable individuals with qualifying disabilities, who are otherwise qualified, to perform the primary functions. Disclaimer The preceding job description has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications required of employees assigned to this job.

Role Description The Incident Response Coordinator, Senior leads tactical coordination of complex IT incidents to minimize mission impact. The role facilitates disciplined war rooms, enforces cadence and runbooks, drives cross-team collaboration, and provides executive-ready communications during and after major events. This role executes the incident response process as defined by enterprise ITSM governance and the Senior Incident Manager, integrates with cyber defenders when needed, and champions readiness and continual improvement. Key Responsibilities - War‑Room Facilitation: Structure/facilitate major incident bridges; maintain restoration focus; assign actions/owners; track progress to closure; enforce decision/messaging cadence. - Process Execution & Standards: Maintain/enforce incident playbooks, escalation matrices, and communication templates; ensure ITSM record quality, CI linkage, and documentation discipline. - Value‑Stream Awareness: Engage dependencies (infra, app, identity, cloud, network) early based on service mapping; identify/remove bottlenecks delaying restoration (approvals, routing). - Communications: Produce leadership updates/executive briefings translating technical impact/risk/remediation into clear business language; maintain SSOT. - Cross‑Practice Integration: Coordinate with Problem, Change, Release, Service Continuity, and SOC/Cyber IR where service impact/security intersects; support PIRs and trend analysis. - Readiness & Drills: Run tabletop exercises; review playbooks; audit on‑call readiness; ensure consistent execution across shifts/teams. - Mentoring: Coach coordinators/junior IM staff on escalation protocols, communication discipline, and analysis techniques. - Evidence & Audit Trail: Ensure timelines, key decisions, and impact assessments are documented and stored to meet compliance and audit requirements. Qualifications - Bachelor’s degree in Information Technology, Computer Science, Business Administration, or related field, or equivalent relevant work experience. - 8+ years of experience in incident management, incident response, or related IT roles, including leadership of major incidents in large, complex enterprise or federal IT environments. - Deep understanding of ITIL principles and advanced incident management and response best practices, including governance of runbooks, escalation models, and communications. - Demonstrated proficiency with incident management tools, IT service management platforms, and monitoring solutions used to manage major incidents and produce operational and executive reporting. - Excellent problem‑solving, analytical, written, and verbal communication skills, with proven ability to brief senior leadership and translate technical risk into business terms. - Demonstrated ability to lead multiple concurrent complex incidents, make timely decisions with incomplete information, and drive consensus across diverse technical and business stakeholders. - Active SECRET clearance or ability to obtain and maintain required background investigation; U.S. citizenship required. Preferred Qualifications - Leadership experience in enterprise‑scale or defense‑related major incident management, including coordination with external partners or multi‑agency stakeholders. - Advanced incident management or cybersecurity certifications (such as ITIL intermediate/advanced or incident‑response‑oriented credentials). - Experience designing or maturing enterprise incident response frameworks, including integration with cyber defense centers, problem management, and governance processes. Compensation Ranges Compensation ranges for ASM Research positions vary depending on multiple factors; including but not limited to, location, skill set, level of education, certifications, client requirements, contract-specific affordability, government clearance and investigation level, and years of experience. The compensation displayed for this role is a general guideline based on these factors and is unique to each role. Monetary compensation is one component of ASM's overall compensation and benefits package for employees. EEO Requirements It is the policy of ASM that an individual's race, color, religion, sex, disability, age, sexual orientation or national origin are not and will not be considered in any personnel or management decisions. We affirm our commitment to these fundamental policies. All recruiting, hiring, training, and promoting for all job classifications is done without regard to race, color, religion, sex, disability, or age. All decisions on employment are made to abide by the principle of equal employment. Physical Requirements The physical requirements described in "Knowledge, Skills and Abilities" above are representative of those which must be met by an employee to successfully perform the primary functions of this job. (For example, "light office duties' or "lifting up to 50 pounds" or "some travel" required.) Reasonable accommodations may be made to enable individuals with qualifying disabilities, who are otherwise qualified, to perform the primary functions. Disclaimer The preceding job description has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications required of employees assigned to this job.