About Peraton
Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world’s leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees do the can’t be done by solving the most daunting challenges facing our customers. Visit peraton.com to learn how we’re keeping people around the world safe and secure.
Responsibilities
Senior ICS Threat Analyst
This role is located in Arlington, VA. (Hybrid: Remote - 50% / On-site - 50%)
In this role, you will:
- Fuse multiple intelligence sources to develop products, recommendations, and inform priorities for the organization
- Perform research and investigates current threats in operational technology, specific critical infrastructure sectors, and mission areas to inform senior leaders and drive priorities for operational teams, including the forward deployed incident response and threat hunting functions
- Analyze collected data to derive facts and projections concerning capabilities, intentions, attack approaches—research resource allocations, motivations, tendencies, personalities; and contribute to profiling adversarial behavior with respect to identified system attacks in the context of the critical infrastructure mission
- Research and review cyber warfare tactics, techniques, and procedures focused on the threat to information networks
- Prepare assessments and cyber threat profiles of current and planned products based on recent and current trends within ICS/SCADA
- Escalate new or high threats to the Cyber Physical Forensics Team as required
- Research OT defensive tactics, techniques, and procedures (TTPs) for detecting and responding to cyber threats
- Map ICS activity and threats using MITRE ATT&CK Framework
- Seamlessly work alongside a team of host, network, and cloud forensic analysts to meet the mission requirements for both incident response and threat hunting engagements
- Serve as subject matter expert (SME) for ICS Security activities
- Identify potential open-source vulnerabilities existing within ICS/SCADA
- Identify and assess current and emerging threats and vulnerabilities as they relate to homeland security
- Identify classified threat intelligence reporting related to ICS/SCADA and analyze for adversary intent and capability
- Develop and maintain analytical procedures to meet changing requirements
- Produces high-quality papers, presentations, recommendations, and findings for senior US government intelligence and operations officials
- Serve as a customer facing SME supporting them achieve success with the technology for their overall ICS security efforts
Qualifications
Basic Qualifications:
- Bachelor’s degree and 12 years of experience, Associates and 14 years, and 16+ years in lieu of a degree, performing processing, triage, threat analysis, and response to cyber incident reports
- Experience with industrial Control Systems (ICS), Operational technology (OT), Supervisory Control and Data Acquisition (SCADA) systems, and the underlying principles necessary to ensure security and safe function of ICS systems
- Experience specific to critical infrastructure sector threat analysis; significant experience with one specific sector
- Knowledge of advanced threat analysis technology in telecommunications, computer science, or electronic warfare
- Experience producing and completing all-source (unclassified and classified) finished intelligence assessments that adhere to the ICD203 analytic tradecraft standards
- Proven ability to collaborate and establish key threat intelligence partnerships to bolster information sharing and defenses
- U.S. citizenship required, Active Top Secret Security Clearance and the ability to obtain TS/SCI. The selected candidate must be able to maintain a favorably adjudicated DHS background investigation (EOD) for continued employment.
Preferred Qualifications:
- IAT LEVEL II certification
- SANS Global Industrial Cyber Security Professional (GICSP)
- SANS GIAC Response and Industrial Defense (GRID)
- SANS GIAC Cyber Threat Intelligence (GCTI)
Benefits:
At Peraton, our benefits are designed to help keep you at your best beyond the work you do with us daily. We’re fully committed to the growth of our employees. From fully comprehensive medical plans to tuition reimbursement, tuition assistance, and fertility treatment, we are there to support you all the way.
Target Salary Range
$146,000 - $234,000. This represents the typical salary range for this position based on experience and other factors.
SCA / Union / Intern Rate or Range
EEO
An Equal Opportunity Employer including Disability/Veteran.