Penetration Tester

$146,000 - $234,000/Yr

Peraton - Linthicum Heights, MD

posted 5 months ago

Full-time - Mid Level
Linthicum Heights, MD
Computing Infrastructure Providers, Data Processing, Web Hosting, and Related Services

About the position

As a Penetration Tester at Peraton, you will be part of the Department of Defense (DoD) Cyber Crime Center (DC3) team, specifically working within the DoD-Defense Industrial Base (DIB) Collaborative Information Sharing Environment (DCISE). Your primary responsibility will be to conduct Adversary Emulation Tests (AETs) against the external and internal networks of DIB Partners. These tests are crucial for assessing the cybersecurity posture of these partners, particularly in relation to the processing of Covered Defense Information (CDI). You will leverage adversarial tactics, techniques, and procedures (TTPs) in accordance with an established penetration testing framework to identify vulnerabilities within the network infrastructures of DIB Partners. This role requires a deep understanding of cybersecurity assessments and the ability to draft comprehensive reports based on your findings. You will be expected to review and analyze data that supports these assessments, ensuring that you can provide actionable insights to enhance the security measures of the networks you test. Your experience in penetration testing fundamentals, particularly with tools such as Kali Linux, Metasploit, Nessus, and Nmap, will be essential in executing your responsibilities effectively. This position is temporary and is expected to last through February 2025. It offers a mostly remote working environment, allowing for flexibility while you engage in critical cybersecurity tasks that protect our nation and allies.

Responsibilities

  • Conduct Adversary Emulation Tests (AETs) against DIB Partners' external and internal networks.
  • Assess the cybersecurity posture and network configurations of DIB Partners.
  • Identify vulnerabilities on DIB Partners' network infrastructures using adversarial tactics, techniques, and procedures (TTPs).
  • Draft written reports based on cybersecurity assessments.
  • Review and examine data and information that supports cybersecurity assessments.
  • Perform authorized penetration testing on enterprise networks.
  • Gain access to targeted networks and maintain access as necessary.
  • Provide infrastructure analysis and conduct in-depth target and technical analysis.
  • Create exploitation strategies for identified vulnerabilities and monitor target networks.
  • Profile network users or system administrators and their activities.

Requirements

  • Minimum of 8 years of experience with a BS/BA; Minimum of 6 years with an MS/MA; Minimum of 3 years with a PhD (additional experience may be used in lieu of a degree).
  • Secret clearance required (TS/SCI preferred).
  • Experience with assessment methods defined in NIST SP 800-30 and NIST SP 800-53A.
  • Extensive experience in reviewing and examining data for cybersecurity assessments.
  • Experience in penetration testing fundamentals.
  • Proficiency in Kali Linux and its toolsets, including Metasploit.
  • Experience with penetration testing tools such as Nessus and Nmap.
  • A minimum of three years of experience performing authorized penetration testing on enterprise networks.

Nice-to-haves

  • One or more nationally recognized information system auditing certifications such as OSEP, OSCP, GXPN, GPEN, or LPT.

Benefits

  • Paid Time-Off and Holidays
  • Retirement
  • Life & Disability Insurance
  • Career Development
  • Tuition Assistance and Student Loan Financing
  • Paid Parental Leave
  • Medical, Dental, & Vision Care

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service