We are seeking a Cybersecurity Engineer / SIEM Administrator to support enterprise cybersecurity operations within a federal agency environment. This role is responsible for administering and maintaining enterprise SIEM infrastructure managing vulnerability assessment programs overseeing endpoint detection and response (EDR) platforms and supporting continuous monitoring and compliance initiatives. The ideal candidate combines hands-on security engineering expertise with team leadership capabilities to protect mission-critical systems and ensure federal compliance readiness.
Key Responsibilities
Administer and maintain enterprise Splunk infrastructure including system health monitoring upgrades configuration management and performance optimization
Design and develop Splunk dashboards reports alerts and custom searches to support cybersecurity monitoring and federal compliance requirements
Manage enterprise vulnerability scanning programs including operations maintenance recurring reporting and remediation validation
Deploy configure and maintain endpoint detection and response (EDR) solutions across enterprise and enclave environments
Support incident investigations threat detection troubleshooting and root-cause analysis across security toolsets
Coordinate audit readiness activities for federal assessments (EA OIG CCRI) and support continuous monitoring initiatives
Lead and prioritize cybersecurity engineering team activities allocating resources and tracking deliverables across geographically dispersed teams
Serve as primary liaison between federal stakeholders and engineering teams for cybersecurity operations
Develop and maintain technical documentation including SOPs deployment guides and architecture documentation
Support RMF STIG and continuous monitoring compliance initiatives across enterprise environments
Build and deploy SIEM applications data inputs and integrations to expand security monitoring coverage
Qualifications
Required Qualifications
Minimum of 12 years with BS/BA; Minimum of 10 years with MS/MA; Minimum of 7 years with Ph.D. 16 years with a HS diploma
Active TS/SCI or Q/SCI clearance
Extensive hands-on experience administering Splunk Enterprise (or equivalent SIEM platform) including dashboard development alerting search optimization and data ingestion
Experience with enterprise vulnerability management tools ( Nessus or equivalent)
Experience deploying and managing endpoint security platforms (SentinelOne CrowdStrike or equivalent)
Knowledge of federal compliance frameworks including RMF STIG CCRI and continuous monitoring requirements
Experience supporting federal agency environments with enterprise-scale security operations
Strong analytical troubleshooting and problem-solving skills
Excellent written and verbal communication skills with the ability to produce executive-level reporting
Preferred Qualifications
Splunk Enterprise Certified Admin or Splunk Core Certified Power User certification
Experience supporting Department of Energy (DOE) or similar federal agency cybersecurity programs
Team leadership or management experience overseeing cybersecurity engineering staff
Experience with web application scanning tools (Invicti WebInspect or equivalent)
Knowledge of High Value Asset (HVA) system security requirements
Peraton Overview
Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the worlds leading mission capability integrator and transformative enterprise IT provider we deliver trusted highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land sea space air and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day our employees do the cant be done by solving the most daunting challenges facing our customers. Visit to learn how were keeping people around the world safe and secure.
Target Salary Range
$112000 - $179000. This represents the typical salary range for this position. Salary is determined by various factors including but not limited to the scope and responsibilities of the position the individuals experience education knowledge skills and competencies as well as geographic location and business and contract considerations. Depending on the position employees may be eligible for overtime shift differential and a discretionary bonus in addition to base pay.
EEO
EEO: Equal opportunity employer including disability and protected veterans or other characteristics protected by law.
Required Experience:
IC
ResponsibilitiesPosition OverviewWe are seeking a Cybersecurity Engineer / SIEM Administrator to support enterprise cybersecurity operations within a federal agency environment. This role is responsible for administering and maintaining enterprise SIEM infrastructure managing vulnerability assessmen...
Responsibilities
Position Overview
We are seeking a Cybersecurity Engineer / SIEM Administrator to support enterprise cybersecurity operations within a federal agency environment. This role is responsible for administering and maintaining enterprise SIEM infrastructure managing vulnerability assessment programs overseeing endpoint detection and response (EDR) platforms and supporting continuous monitoring and compliance initiatives. The ideal candidate combines hands-on security engineering expertise with team leadership capabilities to protect mission-critical systems and ensure federal compliance readiness.
Key Responsibilities
Administer and maintain enterprise Splunk infrastructure including system health monitoring upgrades configuration management and performance optimization
Design and develop Splunk dashboards reports alerts and custom searches to support cybersecurity monitoring and federal compliance requirements
Manage enterprise vulnerability scanning programs including operations maintenance recurring reporting and remediation validation
Deploy configure and maintain endpoint detection and response (EDR) solutions across enterprise and enclave environments
Support incident investigations threat detection troubleshooting and root-cause analysis across security toolsets
Coordinate audit readiness activities for federal assessments (EA OIG CCRI) and support continuous monitoring initiatives
Lead and prioritize cybersecurity engineering team activities allocating resources and tracking deliverables across geographically dispersed teams
Serve as primary liaison between federal stakeholders and engineering teams for cybersecurity operations
Develop and maintain technical documentation including SOPs deployment guides and architecture documentation
Support RMF STIG and continuous monitoring compliance initiatives across enterprise environments
Build and deploy SIEM applications data inputs and integrations to expand security monitoring coverage
Qualifications
Required Qualifications
Minimum of 12 years with BS/BA; Minimum of 10 years with MS/MA; Minimum of 7 years with Ph.D. 16 years with a HS diploma
Active TS/SCI or Q/SCI clearance
Extensive hands-on experience administering Splunk Enterprise (or equivalent SIEM platform) including dashboard development alerting search optimization and data ingestion
Experience with enterprise vulnerability management tools ( Nessus or equivalent)
Experience deploying and managing endpoint security platforms (SentinelOne CrowdStrike or equivalent)
Knowledge of federal compliance frameworks including RMF STIG CCRI and continuous monitoring requirements
Experience supporting federal agency environments with enterprise-scale security operations
Strong analytical troubleshooting and problem-solving skills
Excellent written and verbal communication skills with the ability to produce executive-level reporting
Preferred Qualifications
Splunk Enterprise Certified Admin or Splunk Core Certified Power User certification
Experience supporting Department of Energy (DOE) or similar federal agency cybersecurity programs
Team leadership or management experience overseeing cybersecurity engineering staff
Experience with web application scanning tools (Invicti WebInspect or equivalent)
Knowledge of High Value Asset (HVA) system security requirements
Peraton Overview
Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the worlds leading mission capability integrator and transformative enterprise IT provider we deliver trusted highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land sea space air and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day our employees do the cant be done by solving the most daunting challenges facing our customers. Visit to learn how were keeping people around the world safe and secure.
Target Salary Range
$112000 - $179000. This represents the typical salary range for this position. Salary is determined by various factors including but not limited to the scope and responsibilities of the position the individuals experience education knowledge skills and competencies as well as geographic location and business and contract considerations. Depending on the position employees may be eligible for overtime shift differential and a discretionary bonus in addition to base pay.
EEO
EEO: Equal opportunity employer including disability and protected veterans or other characteristics protected by law.
Peraton provides innovative solutions for the most sensitive and critical programs in government today, developed and executed by scientists, engineers, and other experts.