Penetration Testing - SME

EnDynaMcLean, VA
Hybrid

About The Position

EnDyna is seeking a highly experienced Penetration Testing Subject Matter Expert (SME) to provide technical leadership supporting the HHS Office of Inspector General Cyber Assessment Team. The SME will lead complex penetration testing engagements, provide technical consulting to Federal auditors, develop testing methodologies, mentor penetration testers, deliver cybersecurity training, and serve as a trusted advisor to Government leadership.

Requirements

  • Bachelor's degree
  • 10+ years of penetration testing experience
  • 5+ years leading technical teams
  • Experience supporting Federal agencies
  • Extensive report writing experience
  • Strong presentation skills
  • Demonstrated expertise in Offensive Security
  • Demonstrated expertise in Threat emulation
  • Demonstrated expertise in Adversary tactics
  • Demonstrated expertise in Cloud security
  • Demonstrated expertise in Active Directory
  • Demonstrated expertise in Application security
  • Demonstrated expertise in Network security
  • Demonstrated expertise in Secure development
  • Demonstrated expertise in Risk management
  • Demonstrated expertise in Federal cybersecurity
  • Must be eligible to obtain and maintain an HHS Tier 4 High Risk Public Trust.

Nice To Haves

  • Master's preferred
  • OSCE3 certification
  • OSEP certification
  • OSEE certification
  • GXPN certification
  • GPEN certification
  • CISSP certification
  • GREM certification
  • CRTO certification
  • CARTP certification
  • CARTC certification
  • Experience with HHS
  • Experience with OIG
  • Experience with DHS
  • Experience with Federal Inspector General organizations
  • Experience with NIST SP 800-115
  • Experience with Federal auditing
  • Experience with Cyber Range environments
  • Experience with Offensive security consulting

Responsibilities

  • Lead penetration testing engagements
  • Develop attack strategies
  • Review Rules of Engagement
  • Provide technical oversight
  • Review testing methodologies
  • Ensure technical quality
  • Mentor penetration testers
  • Validate technical findings
  • Lead and perform Red Team operations
  • Lead and perform Advanced exploitation
  • Lead and perform Cloud security testing
  • Lead and perform AI security testing
  • Lead and perform Active Directory attacks
  • Lead and perform Wireless testing
  • Lead and perform Mobile security
  • Lead and perform Web application assessments
  • Lead and perform Social engineering assessments
  • Lead and perform Container security testing
  • Lead and perform Internal network assessments
  • Lead and perform External network assessments
  • Serve as cybersecurity advisor to OIG auditors
  • Provide technical guidance to auditors
  • Support complex audits
  • Evaluate security architectures
  • Review vulnerability data
  • Advise on remediation strategies
  • Support Cyber Range activities
  • Lead development of Executive briefings
  • Lead development of OARS findings
  • Lead development of Penetration test reports
  • Lead development of Conclusions memoranda
  • Lead development of Attack confirmation lists
  • Lead development of Risk analyses
  • Lead development of Technical recommendations
  • Develop and deliver 4–5 day penetration testing courses
  • Develop and deliver Hands-on laboratories
  • Develop and deliver Live exploit demonstrations
  • Develop and deliver Capstone exercises
  • Develop and deliver Instructor coaching
  • Develop and deliver Training materials
  • Develop and deliver Student guides
  • Develop and deliver Presentation slides
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service