Cybersecurity Reviewer – Scrm/Cds/Cloud/CS
| Company | Peraton |
|---|---|
| Location | Chambersburg, PA, USA, Odenton, MD, USA |
| Salary | $135000 – $216000 |
| Type | Full-Time |
| Degrees | Bachelor’s, Master’s, PhD |
| Experience Level | Senior |
Requirements
- Minimum of 8 years experience with BS/BA; Minimum of 6 years with MS/MA; Minimum of 3 years with Ph.D.
- Must be IAT II and IAM Level II certified having one or more of the following current certifications: GICSP or Cloud+ or GCED or PenTest+ or Security+ or GSEC. Certifications must be obtained within 90 days of hire.
- Specific familiarity with DoDI 8500.01, ‘Cybersecurity’
- Specific familiarity with SCADA systems such as Rockwell Automation, OMRON, Siemens, and GE
- Experience with monitoring and assessing DoD networks
- Knowledge of risk management processes such as methods for assessing and mitigating risk
- Knowledge of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, Procedural Language/Structured Query Language [PL/SQL] and injections, race conditions, covert channel, replay, return-oriented attacks, malicious code).
- Knowledge of national and international laws, regulations, policies, and ethics as they relate to cybersecurity.
- Active DoD TS/SCI clearance
- U.S Citizenship Required
Responsibilities
- Conduct specialized assessments on: SCRM, Cybersecurity Contracts, Cross Domain Solution (CDS), Cloud (Cloud Services, Software as a Service (SaaS), Platform as a Service (PaaS), Infrastructure as a Service (IaaS), Control Systems (CS) / Operational Technology (OT) / Industrial Control Systems ICS) / Supervisory Control and Data Acquisition (SCADA) and Platform Information Technology (PIT)
- Work as and with the Red Team Reviewers for identified vulnerabilities and gaps garnered from site assessments
- Conduct a coordinated, holistic research approach to risk identification by collectively identifying, analysing and addressing potential failure points or modes within or affecting the supply chain
- Identify strategies to reduce supply chain vulnerabilities
- Prepare audit reports that identify technical and procedural findings, and provide recommended remediation strategies/solutions in coordination with the Red Team assessments
- Use AI-supported predictive analysis models to help with supply chain visibility and reduces uncertainty
Preferred Qualifications
- Prefer a BS degree in Information Technology, Cybersecurity, Data Science, Information Systems, or Computer Science, from an ABET accredited or CAE designated institution fulfills the educational requirement for this WRC