Salary up to $167,627 a year
Full job description
Peraton drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxyAs the world’s leading mission capability integrator and transformative enterprise it provider, we deliver trusted and highly differentiated national security solutions and technologies that keep people safe and securePeraton serves as a valued partner to essential government agencies across the intelligence, space, cyber, defense, civilian, health, and state and local marketsEvery day, our employees do the can’t be done, solving the most daunting challenges facing our customers.
The security tools engineer will be responsible for understanding and maintaining the security requirements as the technical subject matter expert.
Roles and responsibilities:
Security tools engineer responsibilities, u nder general supervision, supports the account security officer and other account security team personnel in information assurance and security activities for the clientOperate vulnerability assessment equipment in support of vulnerability and compliance initiativesWork with the security team to refine current processes and procedures and suggest and implement any new processes that will assist with fulfilling the mission of the current client contractAct as the point of contact and subject matter expert for web application scanning/assessment activities.
Serve as a subject matter expert for web application development and web application scanning work independently with developers, product owners, and other domains to ensure secure design, development, and implementation of applications become familiar with fsa and irs security policies and technical standards relating to web applications and web application development to facilitate effective security assessmentsEngage with testing stakeholders to gather all required information needed to create detailed test plansConduct security testing of web applications and services (and other web-related assets) using provided automated testing tools and manual testing techniquesTroubleshoot any technical issues preventing successful completion of testing engagements within the scheduled time allotted for the engagement (i.eInsufficient credentials, proxy blocking, accounts blocked/expired, etc.)Recommend adjustments of finding validity (valid or false positive) and severity (high, medium, low) to governance, risk, and compliance (grc) portfolio managers and primary assessors based on stakeholder responsesReview application stakeholder mitigation or remediation actions to address valid findings to assist iad with determining the applicability and effectiveness of those actionsConduct web application scans on enterprise web applications perform end-to-end application security reviews to ensure critical information is appropriately protected conduct design review, code review, and dynamic analysis be the security expert and effectively communicate information to technical and non-technical team members lead in the design of more secure pipelines and update existing ones
Basic qualifications:
A bachelor’s degree and 8-10 years of experience or master’s degree and 6-8 years of experience, in computer science, information systems or other related field; additional years of experience may be accepted in lieu of the degree.
At least eight (8) years of technical it security experienceSuch experience can come from system or network administration, security analysis, security testing and evaluation, security incident response, security monitoring, it project implementation, or other similar technical activities.
At least five (5) years of experience performing security control assessments (i.eSecurity testing such as security auditing, primary assessor for security control assessments, etc.).
At least 5 years of web application security experience
At least three (3) years of experience performing web application security testing.
At least one (1) year of experience performing security testing of federal it systems.
Experience with nist and fips security controls, disa stigs, and irs standards.
Experience working in groups acting as the sole security practitioner, as well as experience working in team(s) of various sizes of security personnel reviewing the same system.
Extensive experience in web application security
Strong knowledge of aws code pipelines and automation
Strong knowledge of the owasp top 10 and sans top 25
Strong knowledge of osint and active reconnaissance
Strong knowledge of operating systems, ports, and services
Familiarity with network security devices such as firewalls, wafs, and ips
Demonstrate technical writing skills
Experience with adversary emulation frameworks such as the cyber kill chain or mitre
Must be a us citizen.
High risk public trust, level 6c – or – top secret clearance is requiredColorado salary minimum: $78,416.00
Colorado salary maximum: $167,627.20
The estimate displayed represents the typical salary range for this position, and is just one component of peraton`s total compensation package for employeesOther rewards may include annual bonuses, short- and long-term incentives, and program-specific awardsIn addition, peraton provides a variety of benefits to employees.
Hiring insights
Job activity
Posted 8 days ago
Senior product engineer – power electronics Key accountabilities: Own the design and development of power electronics subsystems in a new,...
Apply For This JobJob Responsibilities: · Develop and maintain an in-depth knowledge of specific travel destinations, including tourist attractions, accommodations, transportation options, local...
Apply For This JobWorking experience: No Experience Management Trainee – Sales:We are looking for enthusiastic young people who will be the key in...
Apply For This JobR&P; Administrator, B1. (English Language Learning) As a member of the Rights and Permissions team you will support the rights...
Apply For This JobJob Description We are providing US Medical Health insurance forms to centers and work from home people In this process...
Apply For This JobAre you apt to be part of the accelerated growth in the automotive Consumer Industry and win across a diverse...
Apply For This Job