About Peraton
Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world’s leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees do the can’t be done by solving the most daunting challenges facing our customers. Visit peraton.com to learn how we’re keeping people around the world safe and secure.
Responsibilities
Peraton is seeking a Security (Cloudflare) Engineer to join our team of highly skilled, dedicated, and motivated cleared professionals supporting the Department of State (DOS) Bureau of Consular Affairs Enterprise Infrastructure Operations (CAEIO) Program. The program provides IT Operations and Maintenance to modernize the legacy networks, applications, and databases supporting CA services globally.
The Security (Cloudflare) Engineer will be a member of the CAEIO Engineering Team and work closely with other CAEIO team members, application/system owners, and Government Leadership to ensure Consular Affairs mission success.
Responsibilities
- Provide Cloudflare subject matter expertise in support of CA applications and systems.
- Design, develop, and implement Cloudflare security measures that protect web applications and other services from cyber security threats.
- Create, test, and enforce security policies, rulesets, and configurations that meet DOS requirements, including developing expressions for custom rules specific to applications.
- Collaborate with application and platform teams to gather requirements focused on operational efficiency, security, traffic routing, and performance optimization to enhance user experience.
- Work closely with applications owners, government leadership, security organizations and other stakeholders to understand security requirements and provide effective WAF solutions.
- Oversee, administer, and manage operational aspects of Cloudflare, including caching, load balancing, workers, custom pages, traffic routing configurations, and SSL certificate management.
- Continuously enhance application security.
- Collaborate with Security Operations to implement new security measures based on incident response activities and to continuously strengthen application security.
- Manage Cloudflare engineering documentation and changes using approved platforms including Confluence, Jira, and SNOW.
- Develop and maintain comprehensive network flow diagrams, ensuring clarity in data flow, security protocols, and system interactions.
- Support the implementation of Cloudflare in Pre-production and Production environments.
- Support the integration of WAF monitoring with approved data aggregation platforms used by Security Operations.
- Conduct in-depth data analysis in pre-production environments, proactively identifying false positives and providing adequate tuning of configurations and security protections.
- Provide guidance to Security Operations personnel on effective monitoring of Cloudflare triggered events.
- Provide Escalation Engineering/Tier III Cloudflare support for critical CA public-facing and internal applications/services.
- Mentor and support team members through hands-on training and knowledge sharing, ensuring a deep understanding of network configurations, security protections, and operational processes.
- Identify and assess licensing requirements for Cloudflare products and services.
- Manage Cloudflare accounts using least privilege access principles.
Core Work Schedule: Monday – Friday, 7:00 AM ET - 3:30 PM ET (Flexible)
Work Location: This position is hybrid with remote work and one day each week (Wednesday) in the Peraton office in Sterling, VA.
Qualifications
Basic Qualifications
- U.S. citizenship and an active SECRET Government Security Clearance with ability to obtain TOP SECRET Government Security Clearance, if needed.
- 3-5 years of relevant security engineering experience.
- Strong understanding of TCP and HTTP protocols.
- Ability to integrate Cloudflare features, such as CDN, Web Application Firewall (WAF), and DDoS protection.
- Understanding of Cloudflare CDN and basic networking topology.
- Possess subject matter expertise in web application security, with a thorough understanding of vulnerabilities, such as SQL injection, XSS, CSRF, API security, and other OWASP Top Ten threats as well as effective mitigation strategies.
- At least one year of hands-on experience supporting Cloudflare application services in a production environment.
- Hands-on proficiency in JavaScript, with the ability to create and deploy scripts for Cloudflare Workers.
- Knowledge of web security protocols, encryption standards, and best practices for securing applications and infrastructure.
- Strong problem-solving skills and willingness to learn quickly in a fast-paced environment.
Desired Qualifications
- 1+ year of networking experience.
- 2+ years of Cloudflare experience.
- Experience integrating WAFs with cloud platforms including Azure and AWS.
- Vendor certifications and/or Industry relevant certifications in Networking or Security.
- Experience with Department of State.
- 1+ year of frontend developer experience.
- Familiarity with Cloudflare Zero-Trust Services.
Education and Experience Requirements: Minimum of 12 years with HS diploma; Minimum of 10 years with AS; Minimum 8 years with BS/BA; Minimum of 6 years with MS/MA; Minimum of 3 years with PhD.
Target Salary Range
$112,000 - $179,000. This represents the typical salary range for this position based on experience and other factors.
SCA / Union / Intern Rate or Range
EEO
An Equal Opportunity Employer including Disability/Veteran.