Overview
On Site
Full Time
Skills
Information system security
Intrusion detection
Law enforcement
Threat analysis
Incident management
Operating systems
Microsoft Windows
Network security
Penetration testing
Security operations
Event management
Problem solving
Leadership
Nexus
Adobe AIR
SAFE
Pivotal
Counterintelligence
Splunk
Software development
SPL
Linux
Network
Firewall
Microsoft Azure
Google Cloud
Cyber security
Operations
Data
Security clearance
Military
SIEM
Analytical skill
Communication
Collaboration
Management
CISSP
CISA
CISM
Red Hat Certified Engineer
SCA
Insurance
Financing
Job Details
About Peraton
Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world's leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees do the can't be done by solving the most daunting challenges facing our customers. Visit peraton.com to learn how we're keeping people around the world safe and secure.
Responsibilities
Peraton is seeking a Cyber Threat Analyst t o join our innovative engineering team of qualified, diverse individuals located in Morrisville, NC. . The ideal candidate will i dentify and assess the capabilities and activities of cyber criminals or foreign intelligence entities. This role is pivotal in driving our efforts in supporting law enforcement and counterintelligence investigations or activities for the USPS critical to our mission.
Day to Day Roles and Responsibilities:
Identify and develop threat signatures from all available sources.
Maintain threat indicators within the threat intelligence platform.
Implement and support standard procedures for incident response.
Interface with Business Unit Information System Security Officers and Incident Response Teams.
Implement a dynamic, advanced Risk-Based Alerting (RBA) security framework within Splunk.
Create and test detections written in advanced Splunk Programming Language (SPL).
Perform analysis on hosts running on a variety of platforms and operating systems, to include, Microsoft Windows & Linux.
Perform analysis of log files from a variety of sources (e.g., individual host logs, network traffic logs, firewall logs, and intrusion detection system logs) to identify possible threats to network security.
Leverage tools including Splunk, Tanium, Firepower, Azure, GoogleCloud, SentinelOne, SESC suite as part of duties performing cyber incident response analysis.
Act as an observer to Red Team penetration testing exercises and collaborating with Cybersecurity Operations Center (CSOC)
Correlate event or incident data to identify specific vulnerabilities and make recommendations that enable expeditious remediation.
Work with a diverse team of analysts in conducting incident triage, incident handling, and remediation.
Qualifications
Basic Qualifications:
Bachelor's degree with 2+ years' experience or High School diploma/ equivalent with 6+ years' experience.
Ability to obtain and maintain a Public Trust clearance.
U.S Citizenship or .
Residing in the U.S for the past five years with no more than 6 months travel outside the U.S. during this time frame.
Military Service excluded. (Exception does not include military family members).
Experience with security operations and incident response.
Proficiency in threat intelligence platforms, security information and event management (SIEM) tools, and other cybersecurity technologies.
Strong analytical and problem-solving skills with the ability to interpret complex data sets.
Excellent communication and collaboration skills to interact effectively with technical and non-technical stakeholders.
Experience working in a fast-paced environment with the ability to prioritize and manage multiple tasks effectively.
Preferred Qualifications:
One or more of the following Certification(s): CISSP, CISA, CISM, GIAC, RHCE.Target Salary Range
SCA / Union / Intern Rate or Range
EEO
An Equal Opportunity Employer including Disability/Veteran.
Our Values
Benefits
At Peraton, our benefits are designed to help keep you at your best beyond the work you do with us daily. We're fully committed to the growth of our employees. From fully comprehensive medical plans to tuition reimbursement, tuition assistance, and fertility treatment, we are there to support you all the way.
Paid Time-Off and Holidays
Retirement
Life & Disability Insurance
Career Development
Tuition Assistance and Student Loan Financing
Paid Parental Leave
Additional Benefits
Medical, Dental, & Vision Care
Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world's leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees do the can't be done by solving the most daunting challenges facing our customers. Visit peraton.com to learn how we're keeping people around the world safe and secure.
Responsibilities
Peraton is seeking a Cyber Threat Analyst t o join our innovative engineering team of qualified, diverse individuals located in Morrisville, NC. . The ideal candidate will i dentify and assess the capabilities and activities of cyber criminals or foreign intelligence entities. This role is pivotal in driving our efforts in supporting law enforcement and counterintelligence investigations or activities for the USPS critical to our mission.
Day to Day Roles and Responsibilities:
Identify and develop threat signatures from all available sources.
Maintain threat indicators within the threat intelligence platform.
Implement and support standard procedures for incident response.
Interface with Business Unit Information System Security Officers and Incident Response Teams.
Implement a dynamic, advanced Risk-Based Alerting (RBA) security framework within Splunk.
Create and test detections written in advanced Splunk Programming Language (SPL).
Perform analysis on hosts running on a variety of platforms and operating systems, to include, Microsoft Windows & Linux.
Perform analysis of log files from a variety of sources (e.g., individual host logs, network traffic logs, firewall logs, and intrusion detection system logs) to identify possible threats to network security.
Leverage tools including Splunk, Tanium, Firepower, Azure, GoogleCloud, SentinelOne, SESC suite as part of duties performing cyber incident response analysis.
Act as an observer to Red Team penetration testing exercises and collaborating with Cybersecurity Operations Center (CSOC)
Correlate event or incident data to identify specific vulnerabilities and make recommendations that enable expeditious remediation.
Work with a diverse team of analysts in conducting incident triage, incident handling, and remediation.
Qualifications
Basic Qualifications:
Bachelor's degree with 2+ years' experience or High School diploma/ equivalent with 6+ years' experience.
Ability to obtain and maintain a Public Trust clearance.
U.S Citizenship or .
Residing in the U.S for the past five years with no more than 6 months travel outside the U.S. during this time frame.
Military Service excluded. (Exception does not include military family members).
Experience with security operations and incident response.
Proficiency in threat intelligence platforms, security information and event management (SIEM) tools, and other cybersecurity technologies.
Strong analytical and problem-solving skills with the ability to interpret complex data sets.
Excellent communication and collaboration skills to interact effectively with technical and non-technical stakeholders.
Experience working in a fast-paced environment with the ability to prioritize and manage multiple tasks effectively.
Preferred Qualifications:
One or more of the following Certification(s): CISSP, CISA, CISM, GIAC, RHCE.Target Salary Range
SCA / Union / Intern Rate or Range
EEO
An Equal Opportunity Employer including Disability/Veteran.
Our Values
Benefits
At Peraton, our benefits are designed to help keep you at your best beyond the work you do with us daily. We're fully committed to the growth of our employees. From fully comprehensive medical plans to tuition reimbursement, tuition assistance, and fertility treatment, we are there to support you all the way.
Paid Time-Off and Holidays
Retirement
Life & Disability Insurance
Career Development
Tuition Assistance and Student Loan Financing
Paid Parental Leave
Additional Benefits
Medical, Dental, & Vision Care