Penetration Tester, Expert (Federal agency)
Core Hours: 9:00 am - 3:00 pm
Location: Tysons, VA
- Job Type: Full-time (40 hours per week) with benefits
- Availability: immediate
- Security Clearance: TS/SCI with CI of FS Polygraph
Years of Experience:
4 years with a PhD
8 years with a BS degree.
6 years with a master's degree
10 years with an AA degree
12 years with an HS diploma
Job Description
Required Skills
- Conduct internal penetration testing and vulnerability assessment of servers, web applications, webservices, and databases
- Manually exploit and compromise operating systems, web applications, and databases
- Examine results of web/OS scanners, scans and static source code analysis
- Identify vulnerabilities, misconfigurations, and compliance issues
- Write final reports, defend all findings to include the risk or vulnerability, mitigation strategies, and references
- Ability to meet and coordinate with various audiences to include developers, system administrators, project managers, and senior government stakeholders
- Provide security recommendations for developers, system administrators, project managers, and senior government stakeholders
- Report vulnerabilities identified during security assessments
- Write penetration testing Rules of Engagements (RoE), Test Plans, and Standard operating procedures (SOP)
- Conduct security reviews, technical research, and provided reporting to increase security defense mechanisms
- Experience with NIST 800-53 and Risk Management Framework
Desired Skills
- Certifications: CEH - Certified Ethical Hacker Certification, CPT - Certified Penetration Tester
- Strong writing skills
- Experience with AWS Cloud Security