Senior Cyber Threat Analyst – Assessment

Peraton is seeking to hire an experienced Senior Cyber Threat Analyst – Assessment for the Regional Cyber Center - Europe (RCC-E) program.

Location: On-site, Wiesbaden, Germany

Potentially 2nd/3rd Shift work required

 

Responsibilities:

• Lead and execute Network Assistance Visits (NAVs) and Persistent Penetration Tests (PPTs) against USAREUR-AF mission partner networks, coordinating all phases from scoping and planning through execution and reporting
• Conduct comprehensive web application security assessments using OWASP methodology, Burp Suite, and OWASP ZAP to identify vulnerabilities including injection flaws, authentication weaknesses, and access control failures
• Perform in-depth Microsoft Active Directory and Linux security assessments, identifying misconfigurations, privilege escalation paths, and lateral movement opportunities using tools such as BloodHound and PowerView
• Employ exploitation frameworks including Metasploit, Core Impact, and Immunity Canvas to validate identified vulnerabilities and demonstrate real-world attack impact to mission owners
• Produce detailed, professional assessment reports that clearly communicate findings, risk ratings, evidence, and prioritized remediation recommendations to both technical and executive audiences
• Mentor and technically guide junior assessment team members, conducting knowledge transfer sessions, reviewing deliverables, and developing team proficiency in emerging offensive security techniques and tools

 

Required:

• 5 years of penetration testing or vulnerability assessment experience with a Bachelor’s degree in a STEM field or Business Administration; 11 years of relevant experience may substitute for degree
• Must meet TESA Qualifications
• DoD 8140- Cybersecurity (Vulnerability Analyst) - Intermediate
• Certifications — must hold active certifications (one of the following):
• TCM Security PNPT; OR
• OSCP (Offensive Security Certified Professional); OR
• HTB CPTS (Hack The Box Certified Penetration Testing Specialist); OR
• Zero Point Security RTO (Red Team Ops); OR
• OSCE (Offensive Security Certified Expert); OR
• GPEN (GIAC Penetration Tester); OR
• GWAPT (GIAC Web Application Penetration Tester); OR
• GAWN (GIAC Assessing and Auditing Wireless Networks); OR
• GXPN (GIAC Exploit Researcher and Advanced Penetration Tester); OR
• GWEB (GIAC Certified Web Application Defender)
• U.S. citizenship required
• Active DoD TS/SCI clearance

Preferred:

• Advanced proficiency with Metasploit Framework and Metasploit Pro for exploitation and post-exploitation operations
• Expert-level Burp Suite Pro skills for web application vulnerability identification and exploitation
• Experience with OWASP ZAP for automated and manual web application security testing
• Familiarity with Cobalt Strike or Havoc C2 for adversary simulation and red team operations
• Proficiency with BloodHound and SharpHound for Active Directory attack path enumeration
• Strong scripting skills in Python and PowerShell for custom exploit development and automation
• Experience with PowerShell Empire or similar post-exploitation frameworks for Windows environments
• Demonstrated ability to produce executive-level and technical assessment reports with clear remediation guidance

 

Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world’s leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees do the can’t be done by solving the most daunting challenges facing our customers. Visit peraton.com to learn how we’re keeping people around the world safe and secure.

$104,000 - $166,000. This represents the typical salary range for this position. Salary is determined by various factors, including but not limited to, the scope and responsibilities of the position, the individual’s experience, education, knowledge, skills, and competencies, as well as geographic location and business and contract considerations. Depending on the position, employees may be eligible for overtime, shift differential, and a discretionary bonus in addition to base pay.

EEO: Equal opportunity employer, including disability and protected veterans, or other characteristics protected by law.