Lead Penetration Tester, Clearance Required – TS/SCI w/Polygraph
Please note, this position requires all candidates to currently possess an active Top-Secret SCI Clearance with a Polygraph. This position is not an opportunity to be sponsored or nominated for a government security clearance.
The Work:
A
Lead Penetration Tester
is needed to join a high performing agile team using the Scaled Agile Framework (SAFe) methodology. The selected candidate will work on a team of cyber Subject Matter Experts (SMEs) who are providing support to a large, complex technical program for preventing, identifying, containing and eradicating cyber threats to networks through monitoring, intrusion detection and protective security services on information systems including local area networks/wide area networks (LAN/WAN), commercial Internet connections, public facing websites, security devices, servers and workstations. She/he will be responsible for the overall security of Enterprise-wide information systems, and will collect, investigate, and report any suspected and confirmed security violations.
Minimum Qualifications:
- A current Top-Secret/SCI government security clearance with polygraph is required.
- Must haveexperience in web development and programming languages such as Java, XML, Perl and HTML.
- Must have extensive experience performing IT security risk assessments.
- Must have experience performing web app and physical pentests.
- Experience with programming/scripting in Python, Powershell, C, JavaScript, etc.
- Must have experience with or strong familiarity of the following Web Application tools; Burp Suite, Web Inspect, Appdetective.
- Must have experience with or strong familiarity of Kali.
- Must have experience with or strong familiarity of IPS/IDS solutions.
- Must have a strong understanding of the Cyber Kill Chain methodology.
- Must have the ability to effectively collaborate with technical staff and customers when necessary to forming strategies and plan for continuous modernization and legacy integration.
- Must have experience managing multiple projects and quickly and effectively adjusting to shifting priorities and resolving issues.
Bonus Points:
- BS in a related field and at least 8 years of relevant experience
- Certifications in one or more of the following areas:
- GIAC Web Applications Penetration Tester (GWAPT)
- GIAC Penetration Tester (GPEN)
- Certified Ethical Hacker (CEH)
- Certified Information Security Manager (CISM)
- Certified Web Application Defender (GWEB)
- Certified Information System Security Professional (CISSP)
As a Lead Penetration Tester, You Will:
- Perform internal and external pentest against systems to determine vulnerabilities and offer mitigation strategies.
- Perform web app pentests.
- Perform vulnerability risk assessment.
- Perform physical pentests and social engineering.
- Perform cyber incident response as needed for programs.
Work Site: Greater Ft. Meade, MD area.
To Learn More About Our Team and Solutions, Check Out the Following:
Corporate Website: www.ssati.com
GlassDoor Page: https://www.glassdoor.com/Overview/Working-at-SSATI-EI_IE1260475.11,16.htm
Indeed Page: https://www.indeed.com/cmp/Ssati/reviews
LinkedIn Page: https://www.linkedin.com/company/ssati/
Facebook Page: https://www.facebook.com/ssati2003/
Twitter Page: https://twitter.com/ssati2003?lang=en
At Sensible Solutions and Technologies, Inc. (SSATI), we don’t just accept difference—we celebrate it, we support it, and we thrive on it for the benefit of our employees, our services, and our community. SSATI is honored to be an equal opportunity workplace. We are committed to equal employment opportunity regardless of race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.