About Peraton
Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world’s leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees do the can’t be done by solving the most daunting challenges facing our customers. Visit peraton.com to learn how we’re keeping people around the world safe and secure.
Responsibilities
Cybersecurity A&A Analyst
Location: Kansas City, Missouri or Quantico VA
Overview:
We are seeking a Cybersecurity A&A Analyst to:
- Support US Marine Corps (USMC) enterprise-level hybrid cloud data center operations
- Enable USMC world-wide customers to execute critical missions
What you will do:
As a Cybersecurity A&A Analyst, you will work with a team responsible for all aspects of cybersecurity support to the hybrid-cloud enterprise hosting environment. In addition you will conduct ATO package development for the data-center. Finally, you will manage in the continuous monitoring program supporting data-center operations. In addition, you will support vulnerability analysis and self- assessment technical analysis, monitor and report compliance status, manage and maintain the accreditation packages and support plan of action and milestone (POA&M) for known security vulnerabilities. You will support 2 ISSM and an ISSO.
Responsibilities include:
- Providing technical and authorization and accreditation support
- Developing POA&M for identified vulnerabilities and developing remediation, mitigation and criticality downgrade strategies
- Supporting accreditation activities for installed and in-deployment infrastructure as well as requirements in development and engineering change proposal/pipeline processes such as developing supporting documentation and completing cybersecurity self-assessments
- Conducting vulnerability management assessments using ACAS (Tenable Nessus) and other tools including mitigation development and POA&M and documentation support
- Coordinating and collaborating with operations teams to identify solutions for vulnerability mitigation and preparing cybersecurity documentation to obtain support and approval to operate
- Preparing systems for review and independent verification and validation (self-assessments)
- Developing POA&M for identified vulnerabilities and developing remediation, mitigation and criticality downgrade strategies
- Supporting accreditation activities for installed and in-deployment infrastructure as well as requirements in development and engineering change proposal/pipeline processes such as developing supporting documentation and completing cybersecure
Qualifications
Required Experience/Education:
- BS 8, MS 6, PhD 3 years of experience, Will also consider HS diploma and 12+ years of experience.
- US DOD Secret Clearance.
- IAT II Certification, IAT III preferred
- Demonstrated strong understanding and application of RMF And DISA STIG/Security framework implementation.
- Experience creating and maintaining RMF-based accreditation packages.
- Experience using a certification and accreditation tool/GRC -- MCCAST (built on RSA Archer preferred), eMASS alternative.
- Demonstrated understanding of DOD cybersecurity infrastructure tools including PKI, Data encryption, McAfee HBSS/ePO, DOD IA Tookit.
- Strong technical foundation with system administration skills and experience to support independent assessments of cybersecurity risk and mitigation measures of enterprise data center systems including Virtualization, networking (CISCO, Palo Alto), Storage (SAN, NAS), Windows, Linux, Oracle and SQL database, SharePoint solutions.
- Experiencing operating within an Enterprise ITSM solution and queue operations (BMC Remedy preferred).
- Experience with the configuration of data-center monitoring and management solutions.
- Experience using Log Management and SIEM solutions to support cybersecurity program (LogInsight is tool in use).
Preferred
- ACAS and RMF certification.
- Experience with cloud implementation desired.
- Expert experience conducting Tenable ACAS vulnerability management and reporting using Security Center, Nessus, PVS), experience with IAVM/IAVA management and reporting desired
- Fundamental understanding of ITSM/ITIL processes (ITIL training or certification desired).
Benefits: At Peraton, our benefits are designed to help keep you at your best, beyond the work you do with us daily. We are fully committed to the growth of our employees. From fully comprehensive medical plans, to tuition reimbursement, tuition assistance, and fertility treatment, we are there to support you all the way.
Target Salary Range
$104,000 - $166,000. This represents the typical salary range for this position based on experience and other factors.
SCA / Union / Intern Rate or Range
EEO
An Equal Opportunity Employer including Disability/Veteran.