About Peraton
Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world’s leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees do the can’t be done by solving the most daunting challenges facing our customers. Visit peraton.com to learn how we’re keeping people around the world safe and secure.
Responsibilities
Peraton is seeking a Team Lead - Operational Threats and Analysis (OTA)will become part of Peraton’s Department of State (DoS) Diplomatic Security Cyber Mission (DSCM) program providing leading cyber and technology security experience to enable innovative, effective and secure business processes. Peraton’s DSCM program encompasses technical, engineering, data analytics, cyber security, management, operational, logistical and administrative support to aid and advise DoS Cyber & Technology Security (CTS) Directorate.
Location: in Rosslyn, VA.
In this role, you will:
- Serve as the Team Lead for the Operational Threats and Analysis (OTA) Branch in support of a major federal client.
- This organization provides services that analyze and produce enhanced cyber security and threat intelligence information to include threats and potential threats to the customer’s personnel, information, and information systems.
- Provide timely and relevant intelligence to assist with mitigating cyber threats confronting the Department; supports evaluation, implementation, and operations of tools/technologies used in advanced analysis.
- Identify malevolent indicators of system and network activity data, define source(s) for the data, create policy to produce normalized daily auditable data to detect anomalous user behavior.
- Identify, prioritize, and track relevant cyber events, potential security and policy violations, incidents, and other anomalous activity. Conduct limited inquiry and testing to prove threat and risk hypotheses for further investigation and resolution.
- Conduct in-depth analysis of user activity data and perform data acquisitions from live hosts located worldwide using various Windows and forensics tools and ensure chain of custody and control procedures.
- Prepare analytic products with reports of findings and recommendations upon which security countermeasures, investigations and remediation actions may be based.
- Develop program policies, processes, and procedures, provide user support and customer service, and provide training to case agents and supporting personnel.
- The Team Lead must have the political acumen to collaborate with investigative, law enforcement, and IT professionals working with sensitive information and infrastructures.
- The Team Lead will also reach out and work with other agencies and industry stakeholders, to share information and work together to advance one another’s capabilities.
- Ensure that relevant insider threat indicators are infused in all aspects of program operations.
- As Team Lead, must understand insider threat indicators to better evaluate the effectiveness of employed techniques and to provide strategic recommendations on new technical and non-technical detection methods to counter insider threats.
- Have proven expert-level written and oral communication skills to include experience with presentations to stakeholders and community partners and executive level briefings.
- Knowledge related to current Insider Threat related policies, directives, industry standards and trends.
#DSCM2024
Qualifications
Required qualifications:
To be considered for this position, you must minimally meet the knowledge, skills, and abilities listed below:
- A Bachelor’s degree and a minimum of 9 years of related technical experience required. An additional 4 years of experience may be substituted in lieu of degree.
- Possess ONE of the following certifications: CCNA-Security, CND, CySA+, GICSP, GSEC, Security+ CE, SSCP
- Previous experience managing cross functional and interdisciplinary project teams to achieve tactical and strategic objectives, to include staff development, team leadership and training.
- U.S. citizenship required.
- Active Secret security clearance with the ability to obtain Top Secret/SCI security clearance is required.
Desired qualifications:
- Good working knowledge of behavioral, audit, security, and/or policy compliance analysis.
- Ability to work across a large cyber program to improve an organization’s insider threat detection capabilities, as well as, development of anomaly detection techniques.
- Project and Process Management, process improvement, and management of customer service support services.
- Experience working with senior leadership to generate and update team/branch objectives to fulfill or aim at broader Division, Office, and Directorate wide strategic objectives.
Target Salary Range
$104,000 - $166,000. This represents the typical salary range for this position based on experience and other factors.
SCA / Union / Intern Rate or Range
EEO
An Equal Opportunity Employer including Disability/Veteran.