Vulnerability Management Specialist

About Peraton
Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world's leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees do the can't be done by solving the most daunting challenges facing our customers. Visit peraton.com to learn how we're keeping people around the world safe and secure.

Program Overview
Encompasses technical, engineering, data analytics, cyber security, management, operational, logistical, and administrative support for Bureau of Diplomatic Security, Cyber and Technology Security Directorate in three key offices/functional areas: Cyber Monitoring and Operations, Cyber Threat and Investigations, and Technology Innovation and Engineering State.

About The Role

Peraton is seeking a Vulnerability Management Specialist with the Federal Strategic Cyber programs to support a high-impact cybersecurity and technology program focused on securing global infrastructure and enabling innovative, effective, and secure business processes.

Location: Beltsville, MD.

Role and Responsibilities:

• Conduct Vulnerability Scans and Assessments: Perform ad-hoc scans on networks, operating systems, and applications using automated tools detect security weaknesses.
• Analyze and Prioritize Vulnerabilities: Review scan results, analyze potential impacts on business operations, and prioritize vulnerabilities based on risk and severity ratings.
• Coordinate Remediation Efforts: Collaborate with IT, and other technical teams to develop and implement effective remediation plans, such as patch management or configuration changes.
• Track and Document Findings: Maintain detailed records of identified vulnerabilities, assessment results, and remediation actions using tracking systems to quantify program effectiveness and ensure accountability.
• Manage vulnerability lifecycle: Oversee the entire lifecycle of vulnerability, from discovery to closure, using structured processes.
• Monitor and Stay Updated: Continuously monitor the threat landscape, stay current with the latest security threats and emerging vulnerabilities (e.g., CVE databases), and tune detection signatures to improve identification.
• Report to Stakeholders: Generate detailed reports and communicate vulnerability findings, risk levels, and remediation status to both technical and non-technical stakeholders, including management and compliance officers.
• Develop and Enforce Policies: Contribute to the creation and maintenance of vulnerability management policies, procedures, and standards to ensure compliance with relevant regulations.
• Support Incident Response: Assist in investigating and resolving security incidents, providing expertise on vulnerability exploitation and mitigation.
• Deliver technical Subject Matter Expertise: Deliver technical support and training to end-users and internal teams, fostering a knowledgeable user base. Maintain comprehensive documentation of system configurations, procedures, and change management activities.

Qualifications

Required:

• Bachelor's degree and 5 years of relevant experience. An additional 4 years of relevant experience may be substituted in lieu of the degree requirement.
• To be considered for this position, applicants must either currently hold one of the professional certifications listed below or obtain one prior to their start date. Continued certification is required as a condition of employment.
• CAP; CASP CE; CCISO; CCNA-Security; CISM; CISSP (or Associate); CND; CSSLP; CySA ; GICSP; GSEC; GSLC; Security CE; SSCP; PPDA; Agile IC; SNOW App Dev
• Experience in technical planning, system integration, verification and validation, risks, and supportability and effectiveness analyses for total systems.
• Skilled at performing analysis at all levels of total system products to include concept, design, fabrication, test, installation, operation, maintenance, and disposal.
• Demonstrated strong analytical and problem-solving skills.
• Demonstrated excellent communication and collaboration skills to work with various teams.
• Detail-oriented and organized with strong follow-up skills.
• U.S. citizenship required.
• Active Secret security clearance required.
• The ability to obtain a final Top-Secret Clearance with SCI eligibility.

SCA / Union / Intern Rate or Range

Details

Target Salary Range: $86,000 - $138,000. This represents the typical salary range for this position. Salary is determined by various factors, including but not limited to, the scope and responsibilities of the position, the individual's experience, education, knowledge, skills, and competencies, as well as geographic location and business and contract considerations. Depending on the position, employees may be eligible for overtime, shift differential, and a discretionary bonus in addition to base pay.

EEO: Equal opportunity employer, including disability and protected veterans, or other characteristics protected by law.