Senior Gap Team Analyst / Red Cell Team
Arlington, VA, United States
Full Time Senior-level / Expert Clearance required USD 86K - 138K
Peraton
Peraton drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world’s leading mission capability integrator and transformative enterprise IT provider, we deliver trusted and highly...Responsibilities
Peraton is seeking a Senior Gap Team Analyst to become part of Peraton’s Department of State (DoS) Diplomatic Security Cyber Mission (DSCM) program providing leading cyber and technology security experience to enable innovative, effective and secure business processes. You will be a part of the Cyber Incident Response Team.
Location: Arlington, VA.
In this role, you will:
- Provides Threat and Gap Analysis support to a cabinet level federal agency.
- Contribute to a team of information assurance professionals working to improve technical security posture.
- Duties include writing reports, briefing event details to leadership, and coordinating remediation with personnel throughout the globe.
- Analyze Red Cell activities to identify detection gaps.
- Resolve gaps found through monitoring Red Cell activities.
- Provides recommendations for better network security.
- Create new detection methodologies that highlights suspicious activity.
- Briefs executive summary and findings to stakeholders to include Sr. Leadership.
- Researches and maintains proficiency in tools, techniques, countermeasures, and trends in computer network. vulnerabilities, data hiding and network security and encryption.
- Provide support to incident response teams through capability enhancement and reporting.
- Mentor Jr and Mid staff members by creating and teaching latest techniques in ethical hacking and vulnerability analysis.
- Be a self-starter with keen analytical skills, curiosity, agility, and adaptability.
- Need to work quickly, be willing to work on ad hoc assignments, work independently as needed
- Strong written and verbal communication skills, andNeed to be a team player.
#DSCM
Qualifications
Required:
- A Bachelor of Science degree in Computer Science, Information Systems, Engineering, Telecommunications, or similar field required and a minimum of 5 years of penetration testing experience is required. An additional 4 years of experience may be substituted in lieu of a degree.
- Must possess a minimum of six (6) years of substantive IT knowledge and demonstrate hands-on expertise and/or training in areas of emerging technologies.
- Must have hands-on experience and expertise with threat detection, gap analysis, threat hunting methodologies, and understand the capability of hacking tools and how they are used to exploit vulnerabilities and features in enterprise networks. Previous SOC and Red Team experience is a plus.
- Must have at least ONE of the listed certifications listed:
- CCNA Cyber Ops
- CCNA-Security
- CEH
- CFR
- Cloud+
- CySA+
- GCIA
- GCIH
- GICSP
- SCYBER
- Security+ CE
- SSCP
- Experience analyzing Azure/O365 Logs and their logging platform (eg: Sentinel, Unified Audit Logs, Log Analytics, AAD Audit Logs, Office Activity Logs, etc)
- Have a firm understanding of network and system architecture and analysis.
- Knowledge in and with fundamentals of network routing & switching, assessing network device configurations, and operating systems (Windows/*nix)
- Possess an advanced knowledge of Splunk with the ability to leverage the more advanced statistical features.
- Experience performing incident response using a modern EDR tool.
- Be familiar with NIST Standards on cybersecurity and incident handling (800-53, 800-61)
- Experience with PCAP analysis. (e.g. Wireshark)
- Experience performing forensic analysis on the different Operating systems.
- Experience identifying gaps in detection and creation of detection methodologies to address the gaps.
- Experience analyzing Network Security logs (e.g. Splunk)
- Experience with the MITRE ATT&CK framework
- Familiarity with tools like Nessus, Burp, and Metasploit Framework/Pro.
- Experience Scripting in languages such as PowerShell, Bash, Python, Perl, or Ruby.
- U.S. citizenship and an active Secrect security clearnace, with the ability to obtain a final Top Secret security clearance.
Peraton Overview
Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world’s leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees do the can’t be done by solving the most daunting challenges facing our customers. Visit peraton.com to learn how we’re keeping people around the world safe and secure.
Target Salary Range
$86,000 - $138,000. This represents the typical salary range for this position based on experience and other factors.Tags: Analytics Azure Bash CEH Clearance Cloud Computer Science EDR Encryption Ethical hacking Exploit GCIA GCIH GICSP Incident response Metasploit MITRE ATT&CK Monitoring Nessus Network security NIST NIST 800-53 PCAP Pentesting Perl PowerShell Python Red team Ruby Scripting Security Clearance Sentinel SOC Splunk SSCP Teaching Threat detection Top Secret Vulnerabilities Windows
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Cybersecurity Engineer jobs
- Open Cloud Security Architect jobs
- Open Security Operations Engineer jobs
- Open Principal Security Engineer jobs
- Open Information Security Specialist jobs
- Open Information Security Officer jobs
- Open Senior Cyber Security Engineer jobs
- Open Senior Product Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Penetration Tester jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Network Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Security Consultant jobs
- Open IT Security Analyst jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Security Operations Analyst jobs
- Open Information Security Architect jobs
- Open Information System Security Officer jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open SOC-related jobs
- Open Analytics-related jobs
- Open Network security-related jobs
- Open CISA-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open Vulnerability management-related jobs
- Open DevOps-related jobs
- Open DoD-related jobs
- Open Security Clearance-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open Security assessment-related jobs
- Open SaaS-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open Java-related jobs
- Open EDR-related jobs
- Open TS/SCI-related jobs