Peraton is seeking a qualified candidate will become part of Peraton’s Department of State (DoS) Diplomatic Security Cyber Mission (DSCM) program providing leading cyber and technology security experience to enable innovative, effective and secure business processes. Peraton’s DSCM program encompasses technical, engineering, data analytics, cyber security, management, operational, logistical and administrative support to aid and advise DoS Cyber & Technology Security (CTS) Directorate. This includes protecting a global cyber infrastructure comprising networks, systems, information, and mobile devices all while identifying and responding to cyber risks and threats. Those supporting Peraton’s DSCM program strive to leverage their expert knowledge and propose creative solutions to real-world cybersecurity challenges.

• 
  Analyze Red Cell activities to identify detection gaps
• Resolve gaps found through monitoring Red Cell activities
• Provides recommendations for better network security.
• Create new detection methodologies that highlights suspicious activity
• Briefs executive summary and findings to stakeholders to include Sr. Leadership
• Researches and maintains proficiency in tools, techniques, countermeasures, and trends in computer network vulnerabilities, data hiding and network security and encryption.
• Provide support to incident response teams through capability enhancement and reporting.
• Mentor junior staff members by creating and teaching latest techniques in ethical hacking and vulnerability analysis.

• Must have a Bachelor's degree at least 5 years of substantive IT knowledge. 4 addtional years of experience may be used in lieu of degree.
• Active Secret clearance required with the ability to obtain Top Secret.
• Experience with threat detection, gap analysis, threat hunting methodologies, and understand the capability of hacking tools and how they are used to exploit vulnerabilities and features in enterprise networks.
• Experience analyzing Azure/O365 Logs and their logging platform (eg: Sentinel, Unified Audit Logs, Log Analytics, AAD Audit Logs, Office Activity Logs, etc)
• Fundamentals of network routing & switching, assessing network device configurations, and operating systems (Windows/*nix).
• Knowledge of Splunk with the ability to leverage the more advanced statistical features.
• Experience performing incident response using a modern EDR tool.
• Familiarity with NIST Standards on cybersecurity and incident handling (800-53, 800-61)
• Experience with PCAP analysis. (e.g. Wireshark)
• Familiarity with tools like Nessus, Burp, and Metasploit Framework/Pro.
• Security+ certification or similar industry standard cert required.

• Previous SOC and Red Team experience is a plus.
• Experience Scripting in languages such as PowerShell, Bash, Python, Perl, or Ruby.
• Experience with the MITRE ATT&CK framework.
• Top Secret clearance.

At Peraton, our benefits are designed to help keep you at your best beyond the work you do with us daily. We’re fully committed to the growth of our employees. From fully comprehensive medical plans to tuition reimbursement, tuition assistance, and fertility treatment, we are there to support you all the way.