Senior Penetration Tester

October 25

Apply Now

Receive Emails with Similar Jobs

Agile Defense

WebsiteLinkedInAll Job Openings

IT Engineering Support Services • Cybersecurity Support Services • C4ISR Support Services • Systems Integration Support Services • Robotics Process Automation

501 - 1000

Description

• At Agile Defense we know that action defines the outcome and new challenges require new solutions. • Our vision is to bring adaptive innovation to support our nation's most important missions through the seamless integration of advanced technologies, elite minds, and unparalleled agility—leveraging a foundation of speed, flexibility, and ingenuity to strengthen and protect our nation’s vital interests. • Requisition #641 • Job Title: Penetration Tester • Location: REMOTE • Clearance Level: Active DoD - Public Trust • SUMMARY • The United States Patent and Trademark Office (USPTO), Cybersecurity Division, has a requirement to enhance existing Pen Test resources with the goal of improving the Pen Test team’s capability in assessing external-facing agency systems. • JOB DUTIES AND RESPONSIBILITIES • Conduct Penetration Testing (application and/or infrastructure) and articulate security issues to both technical and non-technical audiences • Identify, research, validate, and exploit various known and unknown security vulnerabilities • Coordinate with business and technical contacts to assist in the development and delivery of secure solutions • Compose detailed, technical, attack narratives which outline specific attack chains utilized, clear impact of vulnerabilities discovered, and suggested paths to remediation which address root cause of identified weak points in enterprise security architecture • QUALIFICATIONS

Requirements

• 3+ years of relevant experience with the requirements below: • Extensive experience working with Offensive Security Methodologies and Attack Simulation Techniques • Offensive Security testing tools. e.g., Cobalt Strike, Kali Linux, Bloodhound, Red Team Toolkits • Exploitation frameworks, e.g., Metasploit, CANVAS, Core Impact • Deep understanding of OSI model • OS Security. e.g., Unix/Linux, Windows, OSX • Understanding of common protocols. e.g., HTTP, LDAP, SMTP, DNS • Web application infrastructure. e.g., Application Servers, Web Servers, Databases • Demonstrated ability to collaborate with a variety of analytical groups and service delivery organizations • Advanced analytical and problem-solving skills • Consistently demonstrates clear and concise written and verbal communication • Proficient in interpreting and applying policies, standards, and procedures • Demonstrated ability to remain unbiased in a diverse working environment • Required Certifications: PNPT, OSCP, OSCE, GXPN, GPEN, GCIH, GWAPT, GCFA or possess a willingness to pursue certifications after hire • Education, Background, and Years of Experience: Bachelor’s degree/University degree or equivalent experience