Security & Development Developer
CAtegory:
Clearance:
Location:
Telecommute:
About Peraton
Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world’s leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees solve the most daunting challenges that our customers face. Visit peraton.com to learn how we’re keeping people around the world safe and secure.
Program Overview
About The Role
Peraton is currently seeking an experienced Security & Development Developer to become part of our Federal Strategic Cyber Group.
Location: Rosslyn, VA and a secondary at Beltsville, MD.
Schedule: Mon-Friday, 08:00-16:00 (8:00 AM - 4:00PM).
In this role, you will:
- Perform advanced custom development and implementation of cybersecurity alerts
- Develop, configure, and tune cyber security tools, alerts, and response capabilities
- Integrate security alerts and process workflows into SOAR and SIEM systems
- Automate and optimize security alert workflows to enhance threat response capabilities and enhance efficiency throughout the Incident Response lifecycle
- Analyze systems and environments to determine necessary logging and alerting to optimize cyber security monitoring in an ever-changing cyber threat landscape
- Provide technical expertise for Splunk, Python, JavaScript, PowerShell, and similar coding languages
- Support the security operations center through security development
- Support cross team collaboration efforts to enhance the customer’s defense against advanced cyber adversaries
- Implement cyber monitoring, analysis, and response capabilities within our SIEM, SOAR, and detection tools.
- Develop and enhance threat detections and advanced analysis capabilities.
- Provide tuning of threat detections.
- Onboard and integrate cyber monitoring tools from the analyst’s perspective.
- Coordinate with engineers to assist in building and maintaining platforms.
- Coordinate with cyber threat experts to implement the latest signatures.
- Create and maintain various security dashboards, alerts, and reports.
- Write Zeek (Bro), Suricata and Snort signatures.
- Maintain Python and JavaScript based detections and automation capabilities within our tools.
Qualifications
Minimum requirements:
- Bachelor’s degree and minimum of 9 Years with bachelor’s degree; Four (4) additional years of experience can be substituted in lieu of the degree requirement ; 7 Years with Masters; 4 Years with PhD.
- To be considered for this position, applicants must either currently hold one of the professional certifications listed below or obtain one prior to their start date. Continued certification is required as a condition of employment:
- CASP+ CE, CCNA Cyber Ops, CCNA-Security, CCNP Security, CEH, CFR, CISA, CISSP (or Associate), Cloud+, CySA+, GCED, GCIA, GCIH, GICSP, SCYBER, VCA DCV, PPDA, Agile IC, SNOW App Dev
- U.S. citizenship required.
- Active Secret security clearance.
- Ability to obtain final Top Secret clearance.
Preferred Qualifications:
- A solid understanding of the MITRE ATT&CK Framework
- A solid understanding of Splunk Enterprise Security
- A solid understanding of Cybersecurity Incident Response
- A solid understanding of Cloud Development with Microsoft Azure/MDE.
- A solid understanding of Machine Learning and User and Entity Behavior Analytics.
SCA / Union / Intern Rate or Range
Details
EEO: Equal opportunity employer, including disability and protected veterans, or other characteristics protected by law.
