Apply on Employer Site

Peraton · 15 hours ago

Information Assurance Engineer

Sterling, VA

Full-time

Hybrid

Entry, Mid Level

$104K/yr - $166K/yr

2+ years exp

Peraton is a next-generation national security company that drives missions of consequence. They are seeking an Information Assurance Engineer to enhance cyber hygiene and security across various applications and platforms while ensuring compliance with cybersecurity requirements.

Information TechnologyRobotics

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Develop and maintain the Plan of Actions and Milestones (POA&M), Acceptance of Risk (AOR) and other required security documentation processes and procedures

Ensure appropriate response to security findings by coordinating activities with multiple operations teams

Provide process and remediation recommendations by leveraging knowledge and experience with Common Vulnerabilities and Exposures (CVE)

Communicate technical findings clearly to technical and non-technical audiences, including project managers, systems engineers, developers, enterprise architects and senior management

Review and research vulnerabilities and provide guidance to engineers and respective OS admins to respond to vulnerabilities

Provide guidance on vulnerability and risk analysis, including current and emerging technologies and methodologies (including cloud security models)

Write and implement technical security controls in cloud environments

Prepare documentation for new and existing systems and provide training or technical guidance

Serve as liaison to clients and participate in meetings to ensure client needs are met

Research and collaborate with teams to develop knowledge regarding the environment

Prepare reports on investigations, incidents, and other security-related matters

Recommend system-level solutions to resolve security

Provide security planning, assessment, and risk analysis

Ensure data integrity by evaluating, proposing, and providing guidance on appropriate software and hardware solutions while facilitating their implementation

Recommend and provide guidance on system enhancements that improve the performance, security, and reliability of the system

Qualification

Security+ CE certificationSecurity implementation experienceVulnerability scanning toolsCISSP certificationNetworking conceptsSIEM toolsMixed operating systemsDevSecOps conceptsCloud security modelsRisk analysisApplication securityTCP/IPUDP protocolsTechnical documentation

Required

U.S. citizenship and an active SECRET Government Security Clearance with the ability to obtain TOP SECRET, if needed

Security+ CE or other 8570 IAT level II certification

Minimum 2 years of security implementation experience, including firewalls, IDSs, and encryption protocols

Understanding of networking concepts and cybersecurity related tools to include, Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIG) and Security Content Automation Protocol (SCAP), and vulnerability scanners

Experience collecting and analyzing performance data, developing metrics and presenting to Peraton and government leaders

Experience using tracking and reporting tools, such as Confluence, ServiceNow, and SharePoint

Experience using SIEM and scanning tools, such as Splunk, Nessus, Azure Sentinel