Penetration Tester – Intermediate

About The Position

Requirements

• Must have Active Secret Clerance
• Three (3) years of proven proficiency performing vulnerability assessment and penetration testing
• Two (2) years of experience using testing tools (Nessus, Metasploit, CANVAS, Nmap, Burp Suite, Kismet)
• Two (2) years of experience with network vulnerability assessments and penetration testing methods
• One (1) year of experience writing testing assessment reports
• Two (2) years of experience administering/troubleshooting Windows Server, IIS, Linux server, or Apache
• Knowledge of TCP/IP protocols and networking architectures
• Two (2) years of experience administering/troubleshooting Linux
• Understanding of PCI DSS testing
• Knowledge of OWASP standards and testing methodologies
• Knowledge of database, application, and web server design
• Experience scripting in Perl, Python, Ruby, Bash, or Java
• Experience with wireless LAN security testing
• Must hold any of the Penetration testing certification (LPT, CEPT, CEH, or GPEN)

Nice To Haves

• Experience supporting DoD enterprise penetration testing programs
• Experience producing executive-level summaries of findings

Responsibilities

• Perform penetration testing of applications, systems, and enclaves under general supervision.
• Conduct application, network, and wireless penetration testing assessments.
• Identify security flaws and recommend mitigation strategies.
• Coordinate testing projects with internal and external system owners.
• Document findings in technical reports and provide remediation recommendations.