Cybersecurity Vulnerability Analyst Security Clearance

Position: Cybersecurity Vulnerability Analyst with Security Clearance
About Peraton Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world's leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace.

The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees solve the most daunting challenges that our customers face. Visit  to learn how we're keeping people around the world safe and secure. Program Overview About

The Role This Cybersecurity Vulnerability Analyst supports a Vulnerability Disclosure Program (VDP) for the federal government and is responsible for reviewing and vetting security vulnerability reports submitted to the DoD VDP from outside hackers. The Analyst will evaluate the reports to ensure the vulnerability is reproducible and therefore valuable to the customer. They will assess each vulnerability for severity and assign an associated risk statement.

The Hacker One Triage  console tool will be utilized to assist in assigning and prioritizing reports. It will also assist the Analyst in helping identify duplicate submissions. Valid reports will be written in a DOD approved format and sent to the Vulnerability Management Analyst team for system owner coordination and mitigation. The Vulnerability Analyst will bea VDPliaison with the hacker community.

The Vulnerability Analyst will also:
* Utilize offensive toolsets such as Kali Linux to safely analyze production networks and systems, documenting steps and procedures to produce usable vulnerability assessments for the customer.

* Identify and investigate vulnerabilities, asses exploit potential, and document findings and remedies for presentation to facilitate mitigations on customer systems.

* Conduct web application vulnerability assessment testing using both automated tools and manual web exploitation techniques, using tools such as Burp Suite and open-source toolsets.

* Utilize a variety of industry standard security tools to conduct automated scans against systems and applications.

* Develop and execute proof-of-concept exploits to demonstrate the real-world impact of identified vulnerabilities, utilizing various web exploitation methods.

* This position requires full-time, onsite attendance Monday through Friday in the Baltimore metropolitan area. Qualifications Qualifications
* Minimum Associate's degree and 5+ years of experience;
Minimum Bachelor's degree and 3+ years of experience; OR Master's Degree and 1+ year of experience; OR 0 years with PhD. Bachelor's or Master's degree must be one of the following fields:
Information Technology, Cybersecurity, Computer Science, Information Systems, Data Science, or Software Engineering. In lieu of a degree in one of these fields, an additional 4 years of relevant experience or specialized training may be considered.

* Strong understanding of information security principles and practices,

* Utilize MITRE ATT&CK, CVSS, and NIST frameworks to assess vulnerability severity and risk impact.

* Basic understanding of web exploitation concepts and techniques.

* Knowledge and understanding of the Open Web Application Security Project (OWASP) top 10.

* Experience operating in aprofessional IT orcybersecurityenvironment.

* Experience investigating security events, threats and/or vulnerabilities.

* Understand informationsecurityprinciples,technologies and practices.

* Excellent customer service skills.

* Active Security+ certification.

* Active Secret security clearance required.

Preferred Additional Skills
* CEH,CCNA-Security,CySA+, OSCP (or equivalent),Pen Test+ or similar certificationa plus.

* Completed multiple Hack-The-Box penetration testing labs and challenges, developing hands-on expertise in vulnerability enumeration, exploitation, privilege escalation, and post-exploitation techniques within realistic, adversarial environments.
SCA / Union / Intern Rate or Range Details Target Salary Range: $66,000 - $106,000. This represents the typical salary range for this position. Salary is determined by various factors, including but not limited to, the scope and responsibilities of the position, the individual's experience, education, knowledge, skills, and competencies, as well as geographic location and business and contract considerations. Depending on the position, employees may be eligible for overtime, shift differential, and a discretionary bonus in addition to base pay.

Benefits Statement:
Peraton offers eligible employees a variety of benefits including medical, dental, vision, life, health savings account, short/long term disability, EAP, parental leave, 401(k), paid time off (PTO) for vacation, and company…