About Peraton
Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world’s leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees solve the most daunting challenges that our customers face. Visit peraton.com to learn how we’re keeping people around the world safe and secure.
About The Role
Position Overview
We are seeking a Cybersecurity Engineer / SIEM Administrator to support enterprise cybersecurity operations within a federal agency environment. This role is responsible for administering and maintaining enterprise SIEM infrastructure, managing vulnerability assessment programs, overseeing endpoint detection and response (EDR) platforms, and supporting continuous monitoring and compliance initiatives. The ideal candidate combines hands-on security engineering expertise with team leadership capabilities to protect mission-critical systems and ensure federal compliance readiness.
Key Responsibilities
- Administer and maintain enterprise Splunk infrastructure including system health monitoring, upgrades, configuration management, and performance optimization
- Design and develop Splunk dashboards, reports, alerts, and custom searches to support cybersecurity monitoring and federal compliance requirements
- Manage enterprise vulnerability scanning programs including operations, maintenance, recurring reporting, and remediation validation
- Deploy, configure, and maintain endpoint detection and response (EDR) solutions across enterprise and enclave environments
- Support incident investigations, threat detection, troubleshooting, and root-cause analysis across security toolsets
- Coordinate audit readiness activities for federal assessments (EA, OIG, CCRI) and support continuous monitoring initiatives
- Lead and prioritize cybersecurity engineering team activities, allocating resources and tracking deliverables across geographically dispersed teams
- Serve as primary liaison between federal stakeholders and engineering teams for cybersecurity operations
- Develop and maintain technical documentation including SOPs, deployment guides, and architecture documentation
- Support RMF, STIG, and continuous monitoring compliance initiatives across enterprise environments
- Build and deploy SIEM applications, data inputs, and integrations to expand security monitoring coverage
Qualifications
Required Qualifications
- Minimum of 12 years with BS/BA; Minimum of 10 years with MS/MA; Minimum of 7 years with Ph.D., 16 years with a HS diploma
- Active TS/SCI or Q/SCI clearance
- Extensive hands-on experience administering Splunk Enterprise (or equivalent SIEM platform) including dashboard development, alerting, search optimization, and data ingestion
- Experience with enterprise vulnerability management tools (Tenable.sc, Nessus, or equivalent)
- Experience deploying and managing endpoint security platforms (SentinelOne, CrowdStrike, or equivalent)
- Knowledge of federal compliance frameworks including RMF, STIG, CCRI, and continuous monitoring requirements
- Experience supporting federal agency environments with enterprise-scale security operations
- Strong analytical, troubleshooting, and problem-solving skills
- Excellent written and verbal communication skills with the ability to produce executive-level reporting
Preferred Qualifications
- Splunk Enterprise Certified Admin or Splunk Core Certified Power User certification
- Experience supporting Department of Energy (DOE) or similar federal agency cybersecurity programs
- Team leadership or management experience overseeing cybersecurity engineering staff
- Experience with web application scanning tools (Invicti, WebInspect, or equivalent)
- Knowledge of High Value Asset (HVA) system security requirements
Details
Target Salary Range: $112,000 - $179,000. This represents the typical salary range for this position. Salary is determined by various factors, including but not limited to, the scope and responsibilities of the position, the individual’s experience, education, knowledge, skills, and competencies, as well as geographic location and business and contract considerations. Depending on the position, employees may be eligible for overtime, shift differential, and a discretionary bonus in addition to base pay.
Benefits Statement:
Peraton offers eligible employees a variety of benefits including medical, dental, vision, life, health savings account, short/long term disability, EAP, parental leave, 401(k), paid time off (PTO) for vacation, and company paid holidays. A full listing of available benefits can be viewed at <a href="https://www.careers.peraton.com/benefits?" target="_blank" rel="noopener">https://www.careers.peraton.com/benefits.
Application Statements:
The application period for the job is estimated to be 30 days from the job posting date. However, this timeline may be shortened or extended depending on business needs and the availability of qualified candidates. By applying to this job, you are expressing interest in the role and the Company. During the review of your application, you may be required to participate in an on-camera interview, as well as participate in a process to verify your identity.
EEO: Equal opportunity employer, including disability and protected veterans, or other characteristics protected by law.