Penetration Tester, Mid

About the position

As a Mid Penetration Tester at Booz Allen, you will play a crucial role in supporting both remote and onsite testing efforts of client networks to identify and expose security weaknesses. Your primary responsibility will be to maintain baseline system security in accordance with organizational policies while monitoring and evaluating the effectiveness of the enterprise's cybersecurity safeguards. This ensures that the systems provide the intended level of protection against potential threats. You will collaborate with various stakeholders to resolve computer security incidents and ensure compliance with vulnerability management protocols. In this position, you will be tasked with identifying, assessing, and recommending cybersecurity products that align with the organization's evaluation and validation requirements. Your expertise in penetration testing will be essential as you conduct assessments on networks, applications, and external systems. You will also be responsible for creating detailed Technical Assessment Reports that outline your findings and suggest remediation efforts. Your knowledge of penetration testing methodologies will guide your approach to testing and reporting. The role requires a proactive mindset, as you will need to stay updated with the latest vulnerability information sources, including alerts, advisories, and bulletins. You will also be expected to create Rules of Engagement (ROE), test plans, and scripts to facilitate your testing efforts. Your ability to conduct web application and API penetration testing will be vital, as will your understanding of network hardware devices and traffic analysis methods. Additionally, you will need to demonstrate knowledge of incident categories and responses, as well as identity and access management protocols such as public key infrastructure and OAuth.