Penetration Tester

Position Overview

We are seeking a highly skilled Penetration Tester to join our cybersecurity team serving our client in Camp Spring, MD. The ideal candidate will have extensive hands-on experience performing penetration tests and ethical hacking across Amazon Web Services (AWS), Microsoft Azure, and On-Premise environments. This role requires expertise in identifying vulnerabilities, exploiting them, and providing actionable recommendations to strengthen security postures.

Note : This hybrid role requires the candidate to be on the client site at least one day per week, preferably on Tuesdays.

Key Responsibilities

• Conduct comprehensive penetration tests on AWS, Azure, and on-premise systems, including networks, applications, APIs, and infrastructure.
• Perform reconnaissance, vulnerability scanning, exploitation, privilege escalation, and post-exploitation tasks.
• Collaborate with cross-functional teams to assess and validate security vulnerabilities.
• Develop, customize, and execute advanced attack scenarios tailored to client environments.
• Provide detailed reports, including an executive summary, technical findings, risk assessments, and actionable recommendations.
• Stay up-to-date with emerging threats, vulnerabilities, and trends in cybersecurity.
• Assist in building and enhancing penetration testing tools and methodologies.
• Deliver technical presentations and debriefs to stakeholders, translating complex findings into understandable terms.
• Ensure compliance with industry standards and frameworks like OWASP, NIST, and MITRE ATT&CK.

Required Qualifications

OSCP, OSCE, OSEE, OSWE, CRTO, GCPN, GPEN, AWS Certified Security - Specialty, or Microsoft Certified : Azure Security Engineer Associate are highly preferred.

A minimum of 5 years of proven penetration testing and ethical hacking experience.

Proficiency in penetration testing tools (e.g., Burp Suite Pro, Metasploit Framework, Kali Linux, Cloudsploit, Prowler, Scoutsuite, Pacu, CloudCheckr, AWS CLI, and Kali CLI, Tenable, and others).

Bachelor's degree in Cybersecurity, Software Development, Database Management, or related fields. Equivalent work experience may be considered in lieu of a degree.

Preferred Qualifications

Personal Attributes

Compensation :

At GTech, we believe in treating every person the way we want to be treated - fairly. Our compensation package ensures everyone at GTech is given equal pay for equal work - regardless of race, ethnicity, gender, sexual orientation, disability, religion, age, nationality, or even negotiation skills!

Most IT companies can probably offer many of the same services, but what sets us apart from the others is truly our people! We care about our employees and show it often with sincere appreciation and acknowledgment of the final work products and the little steps taken along the way! In addition, our generous benefits package helps support our team members to live well and prosper.

Here are just a few highlights :

Why Graham Technologies?

Our Core Values say it all!

Founded in 2007, GTech is a consulting services firm zealous about providing the best solutions to address our clients needs and maximize the value of their investments. One of the ways we do this is by providing exceptional employees for our clients - whose range of expertise expands the entire IT industry! We've cultivated a family of individuals where integrity, commitment, and reliability, are etched into the heart of our delivery teams.

In addition, we are equally zealous about caring for our employees - the lifeblood of our business! We've purposefully created a culture that is friendly, family-oriented, and all-inclusive. Our team members are encouraged to "have a life," both in and out of the office, through flexible schedules (where available), continuing education, and support to pursue their passions!