Principal Scanning Engineer

Cyber Security
Top Secret



Secondary Location:


Telecommute Options:

Flexible for occasional telework – must be local to work location
Join Our Team
Apply now
right arrow
Share on your newsfeed or with a friend
About Peraton

Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world’s leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees do the can’t be done by solving the most daunting challenges facing our customers. Visit to learn how we’re keeping people around the world safe and secure.


Peraton is seeking a qualified candidate will become part of Peraton's Department of State (DOS) Diplomatic Security Cyber Mission (DSCM) program providing leading cyber and technology security experience to enable innovative, effective, and secure business processes. Peraton's DSCM program encompasses technical, engineering, data analytics, cyber security, management, operational, logistical, and administrative support to aid and advise DOS Cyber & Technology Security (CTS) Directorate. This includes protecting a global cyber infrastructure comprising networks, systems, information, and mobile devices all while identifying and responding to cyber risks and threats. Those supporting Peraton's DSCM program strive to leverage their expert knowledge and propose creative solutions to real-world cybersecurity challenges.


Your will have the opportunity to:


Vulnerability Scanning:

  • Perform regular vulnerability scans across the Department's systems and networks, identifying deviations from acceptable configurations and standards.
  • Evaluate and prioritize identified vulnerabilities based on potential impact and risk, and recommend remediation strategies and solutions.
  • Collaborate with system owners and administrators to address identified vulnerabilities and ensure timely remediation.

Compliance Scanning:

  • Execute enterprise-wide operating system and application compliance verification, assessing adherence to established security policies and best practices.
  • Develop security baseline configuration compliance and vulnerability scan policies for Departmenthosted operating system platforms (e.g., Windows, UNIX, Linux, Cisco, Juniper, etc.).
  • Prepare audit reports identifying technical and procedural findings, providing recommended remediation strategies and solutions.
  • Perform security authorization audits using NIST Risk Management Framework (RMF), NIST Cybersecurity Framework, and FISMA reporting criteria for security control testing procedures, and create the associated Security Assessment Reports.

Web Application Scanning:

  • Conduct web application vulnerability scanning to identify potential security risks and weaknesses in w applications and services.
  • Collaborate with web developers and application owners to address identified vulnerabilities and ensure the implementation of secure coding practices.
  • Monitor emerging web application vulnerabilities and threats, and recommend appropriate mitigation strategies.

Database Scanning:

  • Perform database vulnerability scanning to identify potential security risks and weaknesses in database management systems and configurations.
  • Collaborate with database administrators to address identified vulnerabilities and ensure the implementation of secure database practices.
  • Monitor emerging database vulnerabilities and threats, and recommend appropriate mitigation strategies.



Basic Qualifications:

  • Bachelor's degree in Computer Science, Information Systems, Cybersecurity, or a related field, and a minimum of 9 years of experience in enterprise scanning, vulnerability management, or cybersecurity; an additional 4 years of experience may be substituted in lieu of degree.
  • US Citizenship required with the ability to obtain an interim Secret security clearance before start date, in addition you must be able to obtain a Top Secret clearance.
  • Possess or be able to obtain before start date one of the following certifications: CASP+CE, CCNA Cyber ops, CCNA-Security, CCNP-Security, CEH, CFR, ISA, CISSP (or Associate), Cloud+, CySA+, GCED, GCIA, GCIH, GICSP, SCYBER, or VCA DCV.
  • In-depth knowledge of vulnerability, compliance, web application, and database scanning methodologies and best practices.
  • Familiarity with various operating systems (Windows, UNIX, Linux, Cisco, Juniper, etc.).
  • Experience using Tenable software suite to perform vulnerability scanning, discovery scans, and baseline compliance scoring.
  • Strong analytical and problem-solving skills, with the ability to identify and resolve complex security issues.
  • Excellent communication and interpersonal skills, with the ability to work collaboratively with cross functional teams.

Target Salary Range

$112,000 - $179,000. This represents the typical salary range for this position based on experience and other factors.
SCA / Union / Intern Rate or Range


An Equal Opportunity Employer including Disability/Veteran.

Our Values


At Peraton, our benefits are designed to help keep you at your best beyond the work you do with us daily. We’re fully committed to the growth of our employees. From fully comprehensive medical plans to tuition reimbursement, tuition assistance, and fertility treatment, we are there to support you all the way.

  • Paid Time-Off and Holidays
  • Retirement
  • Life & Disability Insurance
  • Career Development
  • Tuition Assistance and Student Loan Financing
  • Paid Parental Leave
  • Additional Benefits
  • Medical, Dental, & Vision Care
Happy man with his two children