Red Team Penetration Tester III

DirectViz Solutions, LLC•Virginia Beach, VA

About The Position

DirectViz Solutions (DVS) is a dynamic and rapidly growing government contractor committed to delivering innovative IT solutions that address the mission-critical needs of our government clients. Through the expertise and dedication of our talented team, we provide cutting-edge technology services designed to achieve success and exceed expectations. At DVS, we prioritize our employees as our greatest asset. We offer competitive compensation, comprehensive medical benefits, a 401(k) match, generous PTO accrual, professional development reimbursement, corporate-funded technology certifications, and robust employee recognition and appreciation programs. Position Overview: We are seeking a highly skilled and motivated Red Team Penetration Tester III to join our cybersecurity team. This individual will be responsible for conducting advanced penetration tests, simulating real-world cyber threats, and identifying security weaknesses across various systems and environments. The ideal candidate will possess a strong offensive cybersecurity background, expert-level knowledge of threat actor tactics, and deep technical expertise in penetration testing tools and methodologies. ACTIVE TS/SCI CLEARANCE IS REQUIRED.

Requirements

Bachelor's Degree in Information Systems, Information Technology, Computer Science, or Computer Engineering.
Minimum of seven (7) years of full-time professional experience in penetration testing or offensive cyber operations.
Deep knowledge and hands-on experience in: Penetration testing tools and red team frameworks.
Deep knowledge and hands-on experience in: Exploit development and threat simulation.
Deep knowledge and hands-on experience in: Multiple operating systems and Active Directory environments.
Deep knowledge and hands-on experience in: Programming and scripting for custom tool development.
Strong analytical, problem-solving, and communication skills.
Compliant with DoD 8570.01-M IAW DFARS 252.239-7001 Baseline Certification - minimum SSCP Auditor.
One or more of the following: Offensive Security Certified Professional (OSCP)
One or more of the following: Offensive Security Certified Expert (OSCE)
One or more of the following: Offensive Security Exploitation Expert (OSEE)
One or more of the following: Offensive Security Wireless Professional (OSWP)
Active Secret Clearance or Higher

Nice To Haves

Prior experience in government or defense-related red teaming environments.
Familiarity with MITRE ATT&CK framework.
Experience conducting covert operations or purple team exercises.

Responsibilities

Plan, execute, and document sophisticated red team engagements and penetration tests.
Emulate advanced persistent threat (APT) behaviors to evaluate enterprise-level defenses.
Develop and utilize tools such as Metasploit, NMAP, Kali Linux, and Cobalt Strike.
Perform exploit development and scripting to mimic threat actor capabilities.
Identify gaps in existing security tools, processes, and defensive technologies.
Work with various operating systems including Linux, Windows, and macOS.
Utilize Active Directory to simulate lateral movement and privilege escalation scenarios.
Apply programming or scripting in at least two languages (e.g., Python, C++, Java, Rust, Assembly, C#).
Collaborate with Blue Teams and SOC personnel to provide findings and recommendations for remediation.