Technical Risk Management Analyst

Responsibilities

 

We are looking for a Technical Risk Management Analyst to conduct vulnerability, compliance, and configuration management efforts through advanced scanning reviews. The role requires developing metrics, assigning tasks to relevant teams, ensuring timely mitigation of issues, and delivering briefings and presentations to clients. The ideal candidate will deeply understand security tools, data analysis, cloud infrastructure, security frameworks, and risk management processes.

 

What you will do:

• Execute and analyze security scans using vulnerability tools to identify vulnerabilities, configuration issues, and compliance deviations
• Correlate scan results with CISA-Known Exploitable Vulnerabilities and other threat intelligence sources to prioritize risks effectively
• Develop and implement key performance indicators (KPIs) and metrics to track the effectiveness of vulnerability management and compliance efforts
• Create and maintain dashboards and reports to provide visibility into scanning results, remediation progress, and compliance status
• Assign identified issues to relevant technical teams based on the nature of the vulnerability, configuration deviation, or compliance issue
• Ensure remediation tasks are clearly defined, prioritized, and aligned with organizational risk management objectives
• Oversee and manage the remediation process, ensuring mitigation actions are completed within agreed timelines based on severity and risk
• Track and report on the status of mitigations, including any delays or issues affecting timelines.
• Conduct and update threat modeling to identify and evaluate potential attack vectors and their impact
• Develop threat maps to simulate attack vector propagation and identify disruption of potential attack chains
• Develop and deliver technical briefings and presentations to clients, summarizing vulnerability findings, remediation status, and compliance metrics
• Prepare executive summaries and detailed reports to communicate risk management activities and outcomes to stakeholder
• Collaborate with cross-functional teams, including IT, security operations, and compliance, to manage vulnerabilities and configuration issues effectively
• Communicate findings, recommendations, and progress updates to technical and non-technical stakeholders

Qualifications

Required Qualifications:

• Minimum of 8 years with BS/BA; Additional 4 years of experience maybe accepted in lieu of the degree
• Experience in risk management, with a strong focus on vulnerability assessment, compliance, and configuration management
• Advanced proficiency with cloud technologies, particularly AWS, including native security tools
• Expertise in scripting languages for automation and data analysis
• Proficiency in using security scanning tools, including Nessus, and understanding of security configuration benchmarks (e.g., STIGS, CIS Benchmarks)
• Experience in developing metrics and dashboards to track security and compliance performance
• Strong ability to manage task assignments and ensure timely remediation of issues
• Experience with threat mapping and modeling frameworks and familiarity with SIEM systems
• Experience with MITRE ATT&CK Tactics, Techniques, and Procedures (TTPs)
• Must be a US Citizen
• Must be able to obtain and maintain a Public Trust clearance

Preferred Qualifications:

• Strong analytical and problem-solving skills with a technical focus on cloud
• Ability to develop and implement metrics and reporting systems
• Practical task assignment and coordination skills to manage remediation efforts
• Proficiency in creating and delivering technical briefings and presentations
• Detail-oriented with a focus on accuracy and thoroughness in reporting and documentation

 

Benefits:

 

At Peraton, our benefits are designed to help keep you at your best beyond the work you do with us daily. We’re fully committed to the growth of our employees. From fully comprehensive medical plans to tuition reimbursement, tuition assistance, and fertility treatment, we are there to support you all the way. 

 

#LI-ET1

Peraton Overview

Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world’s leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees do the can’t be done by solving the most daunting challenges facing our customers. Visit peraton.com to learn how we’re keeping people around the world safe and secure.

Target Salary Range

$86,000 - $138,000. This represents the typical salary range for this position based on experience and other factors.