Senior Penetration Tester - FedRAMP

In this exciting opportunity for Senior Penetration Tester you will independently lead penetration testing engagements to simulate cyberattacks on customer computer systems, cloud solutions, and scoped networks. Generate deliverables, confirm scope, and execute with minimal oversight.

• Promote an inclusive, learning-focused team by sharing knowledge, promoting best practices, and collaborating to reach consensus on our approach to tactical issues. Work with the team to devise novel tests and scenarios for various penetration tests of emerging technologies.
• Consistently produce high quality, client ready deliverables.
• Develop and implement automation solutions, new tools, or processes to eliminate wasted effort and allow our team to focus on the important issues that require finesse and expertise.
• Research cybersecurity incidents, threats and vulnerabilities to keep up to date.
• Adhere to projects/tasks, scheduling, and quality control by monitoring penetration test execution. Reviews reporting to ensure it thoroughly breaks down and explains all weaknesses and vulnerabilities, their attack vectors and remediation steps in a clear and concise manner.
• Create proofs of concept, documentation, and evidence can be easily followed by customer points of contact. Provide recommendations for new technologies and system designs according to test results.

Experience and Skills

Senior Penetration Testers are required to have the following qualifications for consideration:

1. One or more of the following certifications: OSCP*, OSWA*, OSED*, GXPN*, CEPT*, LPT*, GWAPT*, CMWAPT*, and CRTOP* or other certifications approved on a case-by-case basis.
2. One or more of the following R311 Certifications: CCNP, CASP , CISSP,CSSLP, CISSP-ISSEP, GPEN, Pentest , GCFA, CHFI, CCNA Cyber Ops, CEH, or GCED
3. Five years with direct, full time penetration testing experience with at least (2) years of experience leading penetration testing engagements.

Candidates who do not meet all three requirements cannot be considered for this position.

US Citizenship is a requirement for this role.

Preferred Skills and Experience

• Advanced experience and knowledge of general network testing skills and web application testing, to include: Open Source Intelligence Gathering, Cloud Configuration Testing, Network Testing & Exploitation, Web Application Exploitation, and Web API testing (REST & SOAP)
• Functional knowledge or experience of one or more types of specialized testing, to include: Mobile Applications; Desktop Applications (Mac, Linux, or Windows); Red Team Social Engineering; Physical Bypass.
• An understanding or experience with the FedRAMP framework and it’s requirements for penetration testing.
• Advanced knowledge of commonly used penetration testing tools and some ability to write scripts or develop rudimentary new tools as needed.
• Qualified candidates should be prepared to use and test new technologies with little notice through effective research and study strategies.