Peraton is seeking qualified individuals to join our team to provide engineering support for Cyber Situational Awareness (SA), Cyber Command and Control (C2), Mission Assurance, and Homeland Defense in Virginia Beach, Virginia.

This includes conducting Agile software engineering in a Development, Security, and Operations (DevSecOps) environment, performing Cloud architectural design, operation, and administration functions, and cyber security and Risk Management Framework (RMF) support.

Also included are rapid design, development, test, deployment, maintenance and operation of specific software and hardware capabilities to meet current Cyber Defensive needs.

Peraton has an opportunity for an Information System Security Specialist w/ESS expertise to:

• Used, installed, and configured ESS (Endpoint Security Solutions).
• Provides technical and programmatic Information Assurance Services to internal and external customers in support of network and information security systems.
• Designs, develops and implements security requirements within an organization’s business processes.
• Prepares documentation from information obtained from customer using accepted guidelines such as RMF (Risk Management Framework)  using Xacta and EMASS.
• Prepares test plans.
• Provides assessment and authorization (A&A) support in the development of security and contingency plans and conducts complex risk and vulnerability assessments.
• Analyzes policies and procedures against Federal laws and regulations and provides recommendations for closing gaps.Develops and completes system security plans and contingency plans.
• Recommends system enhancements to improve security deficiencies.
• Develops, tests and integrates computer and network security tools.
• Secures system configurations and installs security tools, scans systems in order to determine compliancy and report results and evaluates products and various aspects of system administration.
• Conducts security program audits and develops solutions to lessen identified risks. Develops strategies to comply with privacy, risk management, and e-authentication requirements.
• Provides information assurance support for the development and implementation of security architectures to meet new and evolving security requirements.
• Evaluates, develops and enhances security requirements, policy and tools. Provides assistance in computer incident investigations.
• Performs vulnerability assessments including development of risk mitigation strategies.

• Requires 5 years with BS/BA or 3 years with MS/MA/MBA or 0 years with PhD or 9 related work years with no degree
• Minimum of two (2) years’ experience in performing Risk Management Framework activities using Xacta and EMASS
• Use, installed, and configured ESS (Endpoint Security Solutions).
• Demonstrated experience with performing STIG assessments to include using SCAP benchmarks
• Demonstrated experience performing vulnerability assessments with the Assured Compliance Assessment Solution tool
• Demonstrated experience using STIG
• Experience in developing Plans of Actions and Milestones (POA&M) entries.
• Experience in completing Risk Management Framework Step 5 authorizations in the Information System Security Engineer (ISSE) capacity.
• Experience in communicating risk reduction recommendations to stakeholders
• IAT Level II Certification
• Minimum certification as 461 (or similar as required by the Technical Instruction) at the Intermediate level per DoDD 8140.01, or successor
• Must possess an active Top Secret with SCI eligibility clearance or above

#EJ-DNA