Responsibilities

Peraton is seeking a Senior Site Security Officer, Manager- a seasoned security professional responsible for managing and enhancing the security posture of an organization’s site through collaboration, compliance oversight, training, and advanced technical security measures. This role requires a blend of leadership, regulatory knowledge, and technical expertise to ensure security decisions align with organizational and federal standards.

 

The SSO will work closely with the Information System Security Officers (ISSOs) at the federal civilian agency, and will own security authorization artifacts, drive Zero Trust maturity, and lead a technical security team within a multi-tenant, FedRAMP High multi-CSP cloud environment. They work with cross-functional teams to enforce identity and access management, oversee vulnerability assessments, and coordinate penetration testing efforts. They lead security training programs and manage compliance to safeguard user identity, assets and other sensitive data. This role is ideal for a strategic, hands-on security professional who excels at managing complex security environments, driving compliance, and protecting organization assets through collaboration and technical vigilance.

 

This opportunity will support the modernization of a large-scale multi-tenant cloud ecosystem, providing critical enterprise-wide support for more than 40 million users in a complex stakeholder environment. This position requires senior level leadership skills combined with modern cloud and industry leading technical capabilities including product development, strict security compliance, latest technology cloud solutions, reliable application delivery with SaaS and Artificial Intelligence integrations and rapid continuous delivery.   

 

Work location: This is a remote position with the ability to travel as needed.

 

Key Responsibilities

• Regulatory and Compliance: Ensure site security policies comply with federal, state, and industry regulations (e.g. most recent NIST, ISO 27001, SOC 2, GDPR). Collaborate with the federal civilian agency ISSO to align security practices with government standards and audits.
• Security Authorization & Compliance Governance: Own and maintain SSP, POA&Ms, FISMA metrics, Shared Responsibility Matrix, privacy documentation (PTA, PIA, SORN). Manage OSA program enrollment and quarterly security control assessments.
• Identity and Access Management: Manage and oversee identity verification processes, access control systems, user permissions, and implementation of zero trust to prevent unauthorized entry and data breaches.
• Vulnerability and Penetration Testing: Coordinate regular vulnerability scanning and penetration tests; analyze findings and work with the federal civilian agency and security teams to remediate issues promptly.
• Training and Development: Design, deliver, and maintain comprehensive security awareness and training programs for teams delivering system changes.
• Security Management: Lead day-to-day site security activities including automated monitoring, incident response and reporting.
• Collaboration and Communication: Serve as the primary liaison between site security, IT security, law enforcement and other stakeholders to ensure cohesive threat mitigation and response.
• Incident and Risk Management: Conduct thorough investigations of security incidents, develop risk mitigation strategies, and maintain incident documentation and reporting.
• Continuous Improvement: Identify security gaps, recommend enhancements, and contribute to the development of security plans, protocols, and emergency response procedures. 

Leadership and Collaboration

• Lead and monitor security teams, fostering a proactive security culture focused on awareness, accountability and quality performance.
• Collaborate closely with the federal civilian agency’s ISSO and other internal teams to synchronize security strategies and compliance efforts.
• Facilitate communication and coordination with external agencies, vendors and emergency responders as required.

**Position could support /work across multiple enterprise- wide efforts within Peraton.**

Qualifications

Basic Qualifications:

• 12 years of experience, may have supervisory or lead experience
• Extensive experience (7+ years) in site security management, preferably with federal or regulatory environments.
• Deep understanding of IAM, vulnerability assessment, and penetration testing methodologies.
• Strong knowledge of regulatory frameworks (e.g. FISMA, NIST) and security compliance requirements.
• Proven ability to lead training and development programs that improve security awareness and effectiveness.
• Excellent investigative, analytical and incident response skills.
• Effective communication, leadership, and stakeholder management abilities.

Clearance Requirements:

• U.S. Citizenship required
• Ability to obtain agency clearance (public trust)

Preferred Qualifications:

• Top Secret clearance preferred
• Relevant certifications such as CISSP, CISM, or CISA security certifications preferred

Target Salary Range$135,000 - $216,000. This represents the typical salary range for this position. Salary is determined by various factors, including but not limited to, the scope and responsibilities of the position, the individual’s experience, education, knowledge, skills, and competencies, as well as geographic location and business and contract considerations. Depending on the position, employees may be eligible for overtime, shift differential, and a discretionary bonus in addition to base pay.