Responsibilities
Peraton is currently seeking a Blue TeamSecurity Validation & Testing Analyst to become part of Peraton’s Department of State (DoS) Diplomatic Security Cyber Mission (DSCM) program providing leading cyber and technology security experience to enable innovative, effective and secure business processes. You will be a part of the Cyber Incident Response Team.
Location: Rosslyn, VA.
In this role, you will:
Serve as Blue Team’s lead analyst for security optimization and adversary emulation, using Mandiant Security Validation to perform evaluations against Department system baselines and security configurations to determine their susceptibility to adversary tactics, techniques, and procedures (TTPs). This analyst ensures that test prerequisites are met, executes tests and evaluations, reports on identified gaps, and coordinates corrective actions to address findings.
Core Responsibilities:
- Designs evaluations for execution in MSV, including creating test actions to meet Blue Team assessment requirements where out of the box test actions do not exist.
- Coordinates with external partners to ensure that all test prerequisites (such as endpoint configurations, network configurations, and security tool integrations) are met before evaluations are initiated.
- Coordinate with DS/CTS partners such as the Cyber Threat Analysis Division and Red Cell to ensure adversary TTPs represented during assessments are in alignment with threat actor profiles and current trends.
- Develop reports on individual completed evaluations and the summary of all evaluations performed to provide insights into the Department’s security posture against the MITRE ATT&CK framework.
- Support coordination efforts between Blue Team and Department stakeholders to address gaps identified through MSV testing.
#DSCM
Qualifications
Required:
- Bachelors degree and a minimum of 14 years of relevant experience, or a MS/MA and 10 years of experience; Ph.D. and 7 years.
- Proficiency with executing and reporting on the findings of tests and evaluations within the Mandiant Security Validation platform, or another Security Validation and testing platform.
- Proficiency with creating custom test actions within the Mandiant Security Validation platform.
- Demonstrated working knowledge of offensive security practices and principles.
- Demonstrated understanding of the MITRE ATT&CK Framework and adversary TTPs in general.
- Proficient in the use of the ServiceNow ticket management system for tracking work actions.
- Proficient in communicating across all media to stakeholders.
- Must be US Citizen with an Active Top Secret (TS) clearance.
Peraton Overview
Peraton drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world’s leading mission capability integrator and transformative enterprise IT provider, we deliver trusted and highly differentiated national security solutions and technologies that keep people safe and secure. Peraton serves as a valued partner to essential government agencies across the intelligence, space, cyber, defense, civilian, health, and state and local markets. Every day, our employees do the can’t be done, solving the most daunting challenges facing our customers.