Not Authorized
You are currently not authorized to access this section.
Please contact your Administrator to change your authorization settings.
Please contact your Administrator to change your authorization settings.
Penetration Tester
Ashburn, VA
Job Description
Requisition #: 283
Job Title: Penetration Tester
Location: Ashburn, VA (Remote)
Clearance Level: Active DoD - Secret
Salary Range: $115,500 - $173,250
Required Certification(s):
* OSCP
SUMMARY
Agile Defense is currently seeking a talented Penetration Tester to support an Agency-level Focused Operations Advanced Cyber Analytics team at DHS. This program provides targeted threat monitoring and response capabilities requiring analysts to have advanced levels of experience in security event monitoring, incident response, malware analysis and reverse engineering, cyber intelligence, insider threat, penetration testing, and fusion analysis (skills in more than one cyber discipline are preferred).
The position will respectively focus on Cyber Threat Emulation or advanced Penetration Testing. To support this vital mission, Agile staff are on the forefront of providing Advanced Analytics, Cyber Offense, and Systems Engineering support to include the development of advanced analytics.
JOB DUTIES AND RESPONSIBILITIES
* The ideal candidate will have a solid understanding of cyber threats and information security in the domains of TTP's, Threat Actors, Campaigns, and Observables.
* Additionally, the ideal candidate would be an expert in penetration testing and exploit development and familiar with intrusion detection systems, intrusion analysis, security information event management platforms, endpoint threat detection tools, big data analytics, and cyber defense operations.
QUALIFICATIONS
Required Certifications
* OSCP
Education, Background, and Years of Experience
* Bachelor's Degree.
ADDITIONAL SKILLS & QUALIFICATIONS
Required Skills
* A minimum of five years of experience with assessing APT threats, Penetration Testing, Vulnerability Management, attack methodologies, forensics analysis techniques, malware analysis, attack surface comprehension, Cyber Threat Emulation operations, Cyber Advanced Threat Emulation Team operations and research, identification, and verification of new APT TTPs.
* Experience with any three of the seven tools listed below:Kali Linux, Metasploit, Burp suite, Cobalt Strike, Tenable Nessus, Web Inspect, Scuba, Appdetective.
* A relevant degree or equivalent, and/or proven operational experience in penetration testing or cyber threat emulation.
* Knowledge and experience in Penetration Testing, SOC support, and coordination with security teams to strengthen the overall security posture in addition to developing mitigations, including signature development and working with incident management teams to better design and implement signatures and response policies and procedures.
* Able to generate threat intelligence indicators during the course of Threat Emulation operations and apply/fine tune them across the enterprise network.
* Research and remain up to date with emerging threats and Threat Emulation methodologies.
* Familiarity with mapping Cyber Key Terrain and generating priority target lists.
* Able to automate tasks and script at a basic level.
* Familiarity with NIST and FISMA compliance.
* Active Secret or DHS Agency Clearance
* Strong proficiency Report writing - a technical writing sample and technical editing test will be required if the candidate has no prior published intelligence analysis reporting
* Provide subject matter expertise support in the detection, analysis, and mitigation of malware, trends in malware development and capabilities, and proficiency with malware analysis capabilities.
Preferred Skills
* Experience developing custom exploits and exploitation tools in support of authorized penetration tests or cyber threat emulation exercises.
* One or more certifications for Analysts: GCIA, GCED, GCFE, GCTI, GNFA, GCIH, CND, ECSA, OSCP, OSEE, OSCE, GCFA, GREM, CHFI, CEH, GPEN, GWAPT, GISF, GXPN
* Experience with analyzing deceptive technologies such as honeynets.
* Ability to work with a cyber network defense organization to improve an organization's detection capabilities.
* Expertise in policies, industry trends, techniques related to penetration testing.
* Existing Subject Matter Expert of Advanced Persistent Threat or Emerging Threats
WORKING CONDITIONS
Environmental Conditions
* Remote - must be able to report to Ashburn, VA if the client requests it.
Strength Demands
* Sedentary - 10 lbs. Maximum lifting, occasional lift/carry of small articles. Some occasional walking or standing may be required. Jobs are sedentary if walking and standing are required only occasionally, and all other sedentary criteria are met.
Physical Requirements
* Stand or Sit; Repetitive Motion; Use Hands / Fingers to Handle or Feel; See
At Agile Defense, we know that our employees are our most important asset. We believe in our responsibility to our fellow employees, customers, company, and to our country. We promote teamwork, integrity, and creativity; we expect our fellow employees to also live these values.
Agile Defense, Inc. does not discriminate in practices or employment opportunities on the basis of an individual's race, color, national or ethnic origin, religion, age, sex, gender, sexual orientation, marital status, veteran status, disability, or any other proscribed category set forth in federal or state regulations.
Job Summary
Start Date
As soon as possible
Employment Term and Type
Regular, Full Time
Required Education
Bachelor's Degree
Required Experience
5+ years
Email this Job to Yourself or a Friend