Penetration Tester
Herndon, VA.
TS/SCI w/Poly
We are looking for an experienced penetration tester to conduct penetration testing and ethical hacking, to target, assess, and exploit risk and vulnerabilities of information systems.
The Sponsor's team provides a highly technical and in-depth penetration testing service, in support of enterprise cyber security equities. The Sponsor requires support specializing in penetration testing and ethical hacking, to target, assess, and exploit risk and vulnerabilities of information systems. The intent is to provide senior decision makers with documented and actionable data to aid in making strategic investment decisions. The team will document all identified system risks, planned test procedures, and results; perform analyses of vulnerabilities identified during testing; and review program-level documentation (e.g., requirements specification, system architecture, design documents, test plans, security plans, etc.). They will recommend changes to program-level documentation with an eye to reducing system vulnerabilities, create and document penetration testing plans and procedures, and approved testing plans and procedures to conduct hands-on penetration testing. The team will also analyze test results, document risks, and recommend countermeasures to uncovered risks; participate or lead technical exchange meetings and application review boards; document action items and results from technical exchange meetings and application review boards; and brief management on the status of action items and results of activities.
Requirements
Required Skills{{{{:}
}}}Demonstrated work experience in cyber security or related IT fi
eldDemonstrated experience with cyber penetration test
ingDemonstrated experience applying computer attack methods and system exploitation techniq
uesDemonstrated working knowledge of cyber security principles for Linux, Windows, and virtual platfo
rmsDemonstrated experience designing, testing, or implementing IT security architect
ureDemonstrated experience performing network security analy
sisDemonstrated experience analyzing network architectu
resDemonstrated experience using network management to
olsDemonstrated experience leveraging adversarial tactics to conduct hands-on security test
ingDemonstrated experience developing risk management methodolog
iesDemonstrated experience analyzing test results to develop risk and threat mitigation pl
ansDemonstrated experience testing or reviewing system configuration, development, and design specifically around enterprise systems and hypervis
orsDemonstrated experience designing, testing, or implementing complex Windows installati
onsDesired Skills{{{
{:}}}}Demonstrated experience participating in public and private information security groups and organiz
ationsDemonstrated experience communicating vulnerability results and risk posture to senior exec
utivesDemonstrated experience researching, evaluating, and developing security policies and gu
idanceDemonstrated experience performing complex technical tasks with minimal dir
ectionA Bachelor's degree in Computer Science, Information Systems, Engineering, or other related scientific or technical disc
iplineBe
- nefits Vacation - 5 weeks of accrued paid vacation per year (i.e., 8.33 hours accrued per pay period w
- orked) Holidays - Paid holidays published annually by the Office of Personnel Management, excluding Inaugurati
- on Day 100% paid for Health Benefits* (United Healthcare, Guardian Dental, VSP Vision, MetLife, Life and Disability Insurance and annual $1500 employer HSA contribution on qualified plans) *health benefits kick in the 1st of the month following your star
- t date 6% 401k Contribution (3% paid out during each pay period, the additional 3% will be paid out as a lump sum in Q1 each
- year) Training Reimbursement - Approved training and education expenses will be reim
- bursed Travel Expenses - Approved travel expenses will be reimbursed *Note - From time to time, the company may change employee be
nefits
