Cybersecurity Reviewer (SCRM/CDS/Cloud/CS)

Required:
? Minimum of 12 years with BS/BA; Minimum of 10 years with MS/MA; Minimum of 7 years with Ph.D.
? Must be IAT II and IAM Level II certified having one or more of the following current certifications: GICSP or Cloud+ or GCED or PenTest+ or Security+ or GSEC. Certifications must be obtained within 90 days of hire.
? Specific familiarity with DoDI 8500.01, ?Cybersecurity?
? Specific familiarity with SCADA systems such as Rockwell Automation, OMRON, Siemens, and GE
? Experience with monitoring and assessing DoD networks
? Knowledge of risk management processes such as methods for assessing and mitigating risk
? Knowledge of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, Procedural Language/Structured Query Language [PL/SQL] and injections, race conditions, covert channel, replay, return-oriented attacks, malicious code).
? Knowledge of national and international laws, regulations, policies, and ethics as they relate to cybersecurity.
? U.S Citizenship Required
? Active DOD TS/SCI clearance

Preferred
? Prefer a BS degree in Information Technology, Cybersecurity, Data Science, Information Systems, or Computer Science, from an ABET accredited or CAE designated institution fulfills the educational requirement for this WRC

Peraton offers enhanced benefits to employees working on this critical National Security program, which include heavily subsidized employee benefits coverage for you and your dependents, 25 days of PTO accrued annually up to a generous PTO cap and eligible to participate in an attractive bonus plan.

Peraton seeks a Supply Chain Risk Management Analyst to support the JFHQ-DODIN in enabling network resilience. Location: Fort Meade, MD or Chambersburg, PA.

In this role, you will assess, identify, and develop strategies to manage both every day and exceptional risks along the DODIN supply chain based on Red Team risk assessments and reviews with the objective of reducing vulnerability and ensuring continuity.

Tasks include:
? Conduct specialized assessments on:
? SCRM,
? Cybersecurity Contracts,
? Cross Domain Solution (CDS),
? Cloud (Cloud Services,
? Software as a Service (SaaS),
? Platform as a Service (PaaS),
? Infrastructure as a Service (IaaS),
? Control Systems (CS) / Operational Technology (OT) / Industrial Control Systems ICS) / Supervisory Control and Data Acquisition (SCADA) and
? Platform Information Technology (PIT)
? Work as and with the Red Team Reviewers for identified vulnerabilities and gaps garnered from site assessments
? Conduct a coordinated, holistic research approach to risk identification by collectively identifying, analysing and addressing potential failure points or modes within or affecting the supply chain
? Identify strategies to reduce supply chain vulnerabilities
? Prepare audit reports that identify technical and procedural findings, and provide recommended remediation strategies/solutions in coordination with the Red Team assessments
? Use AI-supported predictive analysis models to help with supply chain visibility and reduces uncertainty
? Apply a systematic process for both identifying and managing cyber supply chain risk exposures, threats, and vulnerabilities throughout the supply chain
? Support the development of risk response strategies to the risks presented by the supply chain, to include supplier and the supplied products and services

Apply Job!