Job Description
JOB LOCATION: Washington D.C.
START DATE: Immediate
PAY: $90,000 – $150,000(1) + Benefits(2)
Employment Type: F/T Employee (W-2) and F/T Contractor (1099) positions available
(1) Pay rate is determined by Candidate’s level of experience
(2) Full-time (W-2) employees receive 15 paid personal days, Platinum Health/Dental/Vision/Rx coverage under BlueCross BlueShield Preferred, Short Term/Long Term Disability coverage and $50,000 life insurance coverage, a 401(k) with company match, access to IT and cyber training courses, as well as opportunity for cross-training or mentorship with cyber skills
Employer is seeking a Senior-Level Cyber Penetration Tester to work with a team of cyber-security SMEs to perform formal penetration tests on web-based applications, networks, and computer systems.
JOB DUTIES & RESPONSIBILITIES:
– Conduct physical security assessments of servers, systems, and network devices
– Use a combination of given tools and your own tools to probe for vulnerabilities
– Identify and document ways hackers could exploit weaknesses on formal reports
– Provide feedback and verification as a client resolves security issues
MINIMUM QUALIFICATIONS:
– Candidate MUST possess either an active SECRET or TOP SECRET clearance from any US Government clearance issuing authority (TS is preferred but will accept and upgrade those with active Secret clearances)
– 5+ years of experience in penetration testing
– Windows, UNIX, and Linux operating systems skills
– Proficiency in any of the following software programming languages: C, C++, C#, Java, ASM, PHP, PERL
– Experience in network servers and networking tools (e.g. Nessus, nmap, Burp, Splunk, etc…)
– Ability to use security tools and products (Fortify, AppScan, etc…)
– Metasploit framework knowledge
– Must possess at least one of the following certifications: Certified Ethical Hacker (CEH), Certified Penetration Tester (CPT), Certified Expert Penetration Tester (CEPT), GIAC Certified Penetration Tester (GCPT), Offensive Security Certified Professional (OSCP), or Certified Information Systems Security Professional (CISSP)
– Attention to detail, with strong verbal communication skills
– Computer hardware and software systems skills
– Web-based applications knowledge
– Security framework knowledge
– Bachelor’s degree
– Fluent in English
PREFERRED QUALIFICATIONS:
– Cryptography skills