Verite Group - Dulles, VA
posted 4 days ago
About the position
VGI is a 100% employee-owned custom software company supporting government missions and private sector enterprises for over two decades. VGI staff combine a strong technical prowess with a deep understanding of our customers and their operations. VGI can take your current network needs and challenges and create tools that protect your data throughout its lifecycle. Verite Group offers 100% paid Benefits, 15% Employer Contribution to 401K, Stock Options, Flex-Time, Year End Bonuses, Overtime and many more Amazing first-class benefits. The position is for a penetration tester for a customer mission system. The successful candidate will perform vulnerability assessments and penetration testing following the customers prescribed scope statement with authorities derived from the customers Enterprise cyber security organization. The ideal candidate must display familiarity with Windows and Linux Mobile operating systems and be able to conduct network and security vulnerability analysis. Specifically, the candidate will analyze mission systems to help assess vulnerability to compromise from adversaries. The successful candidate must have prior experience with scope defined penetration testing using mainly open source tools.
Responsibilities
- Perform vulnerability assessments and penetration testing following the customers prescribed scope statement.
- Analyze mission systems to help assess vulnerability to compromise from adversaries.
- Penetrate desktops, servers, applications, operating systems, and security systems to gain root/admin access.
- Provide black-box penetration testing utilizing tools and techniques to conduct cybersecurity evaluations for highly specialized network communication systems.
- Modify open source exploits to bypass/evade antivirus, firewalls, hardened systems, and IDS/IPS systems.
- Modify computer/system/network attacks, exploits, and Metasploit modules to create variations that evade detection.
- Perform reconnaissance, privilege escalation persistence, lateral movement, and payload generation for multiple targets.
- Hide digital artifacts and communications to evade antivirus, firewalls, IDS/IPS systems, Wireshark, and TCPDump.
Requirements
- 3-5 years of exploit development, computer/network security, or network traffic analysis using analytical tools.
- Experience with Kali Linux and Metasploit tools.
- Experience with programming/scripting: Python, PowerShell, Ruby, C, JavaScript, etc.
Nice-to-haves
- Degree in Computer Science, Engineering, Computer Forensics, Network Security, or equivalent technical experience.
- Expert knowledge of networking components/devices and various OS/applications in Linux and Windows environments.
- At least one of the following certifications: CISSP, OSCP, CEH, CEPT, GPEN, EnCE, GASF, GSFE.
- Demonstrated experience in three or more specific areas to include: analysis, network engineering, networking security, penetration testing, red teaming, hardware engineering, software reverse engineering, and computer exploitation.
Benefits
- 100% paid Benefits
- 15% Employer Contribution to 401K
- Stock Options
- Flex-Time
- Year End Bonuses
- Overtime
