F2F
USC/GC
candidate currently living in Virginia, Maryland, or District of Columbia (DC) and willing to perform a weekly hybrid schedule in Manassas, VA starting on day one of contract, beginning Monday, September 16, 2024.
The weekly hybrid schedule consists of two days on-site in Manassas, VA, and three days remote (starting on day one of position, September 16).
The interview schedule involves 2-3 rounds of interviews including the initial MS Teams video conference(s) and a final in-person interview on-site in SWIFT’s Manassas, VA office.
We need a candidate that meets the following skillsets in the job description below.
We’re unable to work with your sub-vendors. The candidate must be directly associated to your C2C firm.
We are only accepting green card or U.S. citizen authorizations in this role since there may be a new government clearance processed in this position.
Please provide the candidate’s state ID (attachment), resume, confirmed C2C pay rate, work authorization, city/state of residence and contact information before I conduct a phone screen with them today (8/19) by 5:30 pm EST.
We’re supporting our financial messaging and server-side development partner SWIFT in Manassas, VA. SWIFT provides government support to the U.S. Federal Trade Commission (FTC), the U.S. Federal Communications Commission (FCC) along with private sector clients Coinbase and Robinhood. There is no previous government clearance needed for this role. SWIFT will process a new Public Trust clearance through FTC after starting the role on September 16, 2024. SWIFT is seeking a Penetration Tester with a completed bachelor’s degree, also financial industry background and 4+ years’ experience performing cyber-security tests in AWS, Linux (Red Hat; RHEL), Azure, Google Cloud, TCP/IP, 3-way handshake (SYN; SYN-ACK; ACK) and penetration tests of web applications along with mobile technologies (iOS; Android). The objective of the role is to improve SWIFT’s global security posture in public key infrastructure (PKI) of financial messaging services for their international clients involving cryptographic technology that utilizes two keys – a public key and a private key – to secure communications and verify the identity of parties involved with transactional data. SWIFT operates backend server-side automated tests in Terraform, Java and Python scripts to ensure international push notifications to SWIFT consumers are performed in real-time through VMWare vCenter API. This is a 11-month contract (w/ possible extension) starting September 16, 2024!! Our client SWIFT requires the weekly hybrid schedule of two days on-site in their Manassas, VA office and three days remote.
Job Description
As a Penetration Tester in the Swift Red Team, you will assess security from an offensive perspective with the intent to improve the global security posture of the company.
Your Key Responsibilities Will Be To
- Perform scoping, planning, execution, and reporting of penetration tests (ethical hacking)
- Conduct security testing of systems and networks to ensure appropriate security hygiene
- Simulate real-world attacks to identify vulnerabilities and potential attack vectors
- Communicate complex technical security concepts to technical and non-technical audiences
Requirements
- Broad range of technical skills / knowledge (e.g. Windows internals, Linux internals, Azure, AWS, networking, iOS/Android, etc)
- Bachelor's Degree (or comparative experience) in Cybersecurity, Computer Science, Engineering, Information Systems, or related field
- Minimum of 4-5 years of experience in cybersecurity
- Strong communication and interpersonal skills
- Ability to work autonomously and having strong problem-solving skills
Preferred Qualifications
- Offensive security / ethical hacking certifications such as OSCP, OSCE, OSWE, GPEN, GXPN, Pentest+, CEH
MATRIX Of Skills Needed
Specific Skills
Cloud (Azure, AWS, Google, etc.)
Professional (4-5) ( 4,00 years )
Experience levels and years of experience
Linux internals
Professional (4-5) ( 4,00 years )
Experience levels and years of experience
Mobile technology (iOS, Android)
Professional (4-5) ( 4,00 years )
Experience levels and years of experience
Networking (TCP/IP, common service ports, 3-way handshake, etc.)
Professional (4-5) ( 4,00 years )
Experience levels and years of experience
Penetration testing
Professional (4-5) ( 4,00 years )
Experience levels and years of experience
Web application security testing
Professional (4-5) ( 4,00 years )
Experience levels and years of experience
Windows internals
Professional (4-5) ( 4,00 years )
Experience levels and years of experience
