×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security

Cloud Security Subject Matter Expert; SME

Job in Beltsville, Prince George's County, Maryland, 20705, USA
Listing for: Peraton
Full Time position
Listed on 2026-01-12
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security
Salary/Wage Range or Industry Benchmark: 60000 - 80000 USD Yearly USD 60000.00 80000.00 YEAR
Job Description & How to Apply Below
Position: Cloud Security Subject Matter Expert (SME)

Responsibilities

Peraton is currently seeking an experienced CIRT Cloud Security Subject Matter Expert (SME) to join our Federal Strategic Cyber Program
, delivering leading cyber and technology security expertise to enable innovative, effective, and secure business processes.

Location:
Beltsville, MD and Rosslyn, VA.

The customer requirement requires every employee to be onsite for the first 90 days. After the 90 day period, a hybrid schedule may be offered.

Need to be able to support a hybrid and flexible work schedule; in the event of a significant cyber incident a continuous on-site presence will be required.

This role directly supports the Cyber Incident Response Team (CIRT) as a key member of the Advanced Response and Tactics Team (ARTT).

In this role, you will:

  • Provide Subject Matter Expert (SME) level Cloud Security support in a 24x7x365 environment.
  • Share in-depth knowledge and intelligence gained from cyber security events with stakeholders.
  • Protect against potential cyber security incidents by pro‑actively identifying steps to remediate threats and vulnerabilities.
  • Provide SME level response, technical assistance and expertise for significant cyber incidents, investigations, operational events, and related cyber projects.
  • Develop and implement training programs for CIRT Tier 1 and Tier 2 analysts.
  • Conduct detailed research to increase awareness and readiness levels of the security operations center.
  • Conduct advanced analysis and recommend remediation steps.
  • Analyze network events to determine impact.
  • Conduct all‑source research to determine threat capability and intent.
  • Develop and maintain analytical procedures to meet changing requirements.
  • Coordinate with cross‑functional teams during significant cyber incidents.
  • Identify emergent cybersecurity technologies and develop methodologies for their employment.
  • Analyze identified malicious activity to determine weaknesses exploited, exploitation methods, effects on system and information.
  • Identify and determine tactics, techniques, and procedures for intrusion sets.
  • Work with stakeholders to resolve computer security incidents and vulnerability compliance.
  • Collect and analyze intrusion artifacts (e.g., source code, malware, and system configurations) and use discovered data to enable mitigation of potential cyber defense incidents within the enterprise.
  • Perform real‑time cyber defense incident handling (e.g., forensic collections, intrusion correlation and tracking, threat analysis, and direct system remediation) tasks to support incident response.
  • Publish after‑action reports, cyber defense techniques, guidance, and incident reports.
  • Review, draft, edit, update and publish cyber incident response plans.
Qualifications
  • Bachelor's degree and minimum of 14 years of relevant experience; 12 years with Masters.
  • To be considered for this position, applicants must either currently hold one of the professional certifications listed below or obtain one prior to their start date. Continued certification is required as a condition of employment.
  • CASP+ CE, CCNP Security, CISA, CISSP (or Associate), CISSP-ISSAP, CISSP-ISSEP, GCED, GCIH
  • Demonstrated expertise in the Incident Response Lifecycle and how it applies to cloud, legacy and hybrid environments.
  • Demonstrated experience with cloud computing technologies to include Infrastructure as a Service (IaaS), Platform as a Service (PaaS), Software as a Service (SaaS), and Identity as a Service (IDaaS).
  • Demonstrated expertise in traditional computing technologies architecture, design and security.
  • Demonstrated proficiency in using Endpoint Detection and Response (EDR) platforms (e.g., Microsoft Defender for Endpoint, Elastic Defend, Carbon Black).
  • Demonstrated proficiency in using Security Information and Event Management (SIEM) platforms (e.g., Splunk, Elastic, Arc Sight).
  • Demonstrated proficiency in using Security Orchestration and Automation (SOAR) platforms (e.g., Service Now, Sentinel, Splunk SOAR, IBM QRadar).
  • Ability to analyze cyber threat intelligence reporting and understand adversary methodologies and techniques.
  • Knowledge of malware analysis techniques.
  • Knowledge of the MITRE ATT&CK and D3

    FEND frameworks and their relevancy…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search