Penetration Tester, Expert (Federal agency) - Tysons, VA - Full Time - iSoftTek Solutions Inc

Penetration Tester, Expert (Federal agency)

Core Hours: 9:00 am – 3:00 pm

Location: Tysons, VA

• Job Type: Full-time (40 hours per week) with benefits.

• Availability: immediate.

• Security Clearance: TS/SCI with CI of FS Polygraph.

Years of Experience:

4 years with a PhD

8 years with a BS degree.

6 years with a master’s degree

10 years with an AA degree

12 years with an HS diploma

Job Description

Required Skills

• Conduct internal penetration testing and vulnerability assessment of servers, web applications, webservices, and databases

• Manually exploit and compromise operating systems, web applications, and databases

• Examine results of web/OS scanners, scans and static source code analysis

• Identify vulnerabilities, misconfigurations, and compliance issues

• Write final reports, defend all findings to include the risk or vulnerability, mitigation strategies, and references

• Ability to meet and coordinate with various audiences to include developers, system administrators, project managers, and senior government stakeholders

• Provide security recommendations for developers, system administrators, project managers, and senior government stakeholders

• Report vulnerabilities identified during security assessments

• Write penetration testing Rules of Engagements (RoE), Test Plans, and Standard operating procedures (SOP)

• Conduct security reviews, technical research, and provided reporting to increase security defense mechanisms

• Experience with NIST 800-53 and Risk Management Framework

Desired Skills

• Certifications: CEH – Certified Ethical Hacker Certification, CPT – Certified Penetration Tester

• Strong writing skills

• Experience with AWS Cloud Security