Information Systems Security Engineering (ISSE)

Peraton is seeking an Information Systems Security Engineering (ISSE) to collaborate on design efforts, provide security engineering, and lead the engineering of RMF B0E artifacts of a large-scale enterprise Information Technology (IT) program. Responsibilities include:

• Establish and maintain configuration and technical support to a unique community of users, assist in the technical design process, and provide guidance/direction to customer on how to best get value from the cyber platforms.
• Maintain, upgrade and troubleshoot the cyber platforms
• Install, upgrade and maintain required cyber security applications and add-ons.
• Provide performance and license tuning for systems and troubleshoot components across multiple network environments.
• Provide solution engineering support to ensure systems and components meet current and future standards.
• Develop, create, deploy, and manage custom monitors, alerts and dashboards.
• Monitor the cyber platforms for health status, and other issues, and resolve as needed.
• Follow approved DoD, STIG standards and DoD IAVA requirements.
• Manage patching and updates of the cyber platforms.
• Monitor and audit configurations and participate in the Change Management process to ensure that unauthorized changes do not occur.
• Build and integrate contextual data into notable events.
• Develop advanced scripts for the manipulation of data to support analyst requirements.
• Provide recommendations and implement changes to optimize the effectiveness of the cyber security platforms
• Perform integration activities to connect with 3rd party software APIs.
• Recommend innovative solutions to management and key stakeholders

Required:

• Must possess an active Top Secret clearance with SCI eligibility
• Minimum of 8 years with BS/BA; Minimum of 6 years with MS/MA;  4 years of relevant work experience will be considered in lieu of a Bachelors degree
• Minimum 5 years’ experience in security engineering of Information Systems
• Proven experience performing Systems Security tasks including Security Information and Event Monitoring (Splunk); Endpoint security (HBSS); password and credential management (CyberArk); Compliance and vulnerability scanning (ACAS / Nessus); HashiCorp; and Code Scanning (Fortify), IDS/IPS (Cisco), open source tools Zeek, Snort, Surricata, Elastic.
• Familiar with Scrum methodologies
• Data Migration experience
• Strong scripting capabilities using RegEx.
• Monitor and maintain SIEM systems over multiple domains and systems.
• Create parsing scripts to ingest exotic logs into the SIEM solution.
• Design and implement defensive cyber security solutions to protect data, networks, and applications from unauthorized access, modification, or destruction.
• Design and implement defensive cyber security solutions to protect data, networks, and applications from unauthorized access, modification, or destruction.
• Must have a current DoD 8570.1-M IAT Level III certification (i.e., Security X)

Desired:

• Proven experience in application development, using programming and scripting languages such as Python, C/C++, Assembly, or Java.
• Knowledge of code analysis, code manipulation, and payload development.
• Knowledge of defensive tool development, threat detection, and incident response