Senior Cyber Security Deception Engineer/Threat Hunter

Program Overview

Encompasses technical, engineering, data analytics, cyber security, management, operational, logistical, and administrative support for Bureau of Diplomatic Security, Cyber and Technology Security Directorate in three key offices/functional areas: Cyber Monitoring and Operations, Cyber Threat and Investigations, and Technology Innovation and Engineering State.

About The Role

Peraton is seeking a Senior Cyber Security Deception Engineer/Threat Hunter to become part of Peraton’s Department of State (DoS) Diplomatic Security Cyber Mission (DSCM) program providing leading cyber and technology security experience to enable innovative, effective and secure business processes.

Location: Arlington, VA; Full-time/On-site.

In this role, you will:

• Work closely with cross-functional teams, including Security Operations, Incident Response, Threat Intelligence, and Threat Hunting to ensure a proactive and robust security posture.
• Perform advanced network threat hunting to detect malicious or suspicious behavior on Department on-premises and cloud-based networks.
• Respond to security events received from CIRT, provide comprehensive findings and recommend remediation steps.
• Perform advanced traffic analysis (at the packet level) and reconstruction of network traffic to discover anomalies, trends, and patterns.
• Perform forensic analysis of suspected systems (e.g. on and off premise network devices, and storage media) impacted by malicious activity.
• Implement and use cyber security frameworks (e.g. MITRE-ATT&CK, Kill Chain, etc.).
• Has proven expertise in performing analyses to validate established security requirements and recommended additional security requirements and safeguards.
• May interface with external entities including law enforcement, intelligence and other government organizations and agencies.
  #DSCM

Qualifications

Minimum requirements:

• A Bachelor’s degree and 9 years of experience, or 7 years of experience with a Master’s. An additional 4 years of experience may be considered in lieu of degree.
• Possess one of the following certifications:
  • CCNA-Security, CND, CySA+, GICSP, GSEC, Security+ CE, or SSCP
• Proven ability to develop and recommend corrective actions.
• Expertise, knowledge, and experience integrating new architectural analysis of cyber security features.
• Comfortable interfacing with external entities including law enforcement, intelligence and other government organizations and agencies.
• Experience in threat hunting or network/cloud forensics.
• U.S. citizenship is required.
• Active Top Secret security clearance required.
  • The ability to obtain a final TS/SCI.

Preferred:

• Demonstrated experience performing static and dynamic analysis techniques.
• Experience using sandbox and other simulated networked environments for analysis.
• Ability to recommend sound counter measures to malware and other malicious type code and applications which exploit customer communication systems.
• Experience supporting the Department of State cyber security mission.
• Experience using Databricks.
• Experience using Artificial intelligence (AI) and large language models (LLMs).
• Ability to create, troubleshoot, configure and operate complex scripting solutions with the ability to output the results in a variety of formats (e.g. HTML, XML, etc.) and to re-purpose the results for reports targeting different technical levels (e.g. other analysts, management, etc.)

SCA / Union / Intern Rate or Range

Details

Target Salary Range: $146,000 - $234,000. This represents the typical salary range for this position. Salary is determined by various factors, including but not limited to, the scope and responsibilities of the position, the individual’s experience, education, knowledge, skills, and competencies, as well as geographic location and business and contract considerations. Depending on the position, employees may be eligible for overtime, shift differential, and a discretionary bonus in addition to base pay.

EEO: Equal opportunity employer, including disability and protected veterans, or other characteristics protected by law.