Penetration Tester
3 weeks ago
Responsibilities Peraton is seeking a Penetration Tester who will have the opportunity to provide support to technical processes and technical management processes in support of comprehensive test and evaluation associated with test support, operational verification of installations and support efforts. What you'll do: The Mid-Senior Penetration Tester is also responsible for the following but not limited to:
* Provide support to the ISSO team through capability enhancement and reporting.
* Perform and report on penetration testing of systems including cloud to satisfy the NIST 800-53 CA-8 security control and using methodologies that may include, NIST SP 800-115, Penetration Testing Execution Standard (PTES), and Information Systems Security Assessment Framework (ISSAF).
* Provide penetration testing services for USAID Business Service systems across all SDLC stages following NIST 800-37 RMF guidelines. * Assess the current state of the customer's system security by identifying all vulnerabilities and security measures to help the customer perform analysis and mitigation of security vulnerabilities.
* Conduct security testing assessments to mimic real-world attacks to identify methods for circumventing the security features of an application, system, or network.
* Collaborate with the government to perform penetration testing or facilitate penetration testing by an independent source and security assessment activities in accordance with FedRAMP requirements.
* Assist in the resolution of POA&Ms as measured by penetration testing and various audits to meet OMB/GAO/DHS compliance standards.
* Conducting penetration test based on results of network mapping, vulnerability scanning, operating systems security, phishing exercise, web, database, and wireless assessments.
* Support and follow National Institute of Standards and Technology (NIST) 800 Series publications on Federal IT Security and Network Infrastructure policy.
* Facilitate meetings with government representatives to identify the parameters of the penetration testing and requirements for daily reports designed to identify progress on discovered issues.
* Incorporate raw data gathered during the penetration test in the Final Assessment Report as the basis for a brief/presentation to executive leadership. *Contingent on Contract Award* Qualifications Required Qualifications: * Bachelor's degree with 5 to 11 years, or master's degree with 3 to 9 years, or PhD with 1 to 6 years of experience is required; four (4) years of experience can be substituted in lieu of a bachelor's degree.
* Basic understanding of networking and security principles.
* Familiar in evaluating system security configurations and familiarity in evaluating findings and performing root cause.
* Experience with penetration testing and program assessment such as SIMS Above-Site.
* U.S. Citizen; eligible for U.S. Secret Security Clearance.
Preferred Qualifications: * Active Secret Security Clearance.
* CompTIA PenTest+Benefits: At Peraton, our benefits are designed to help keep you at your best, beyond the work you do with us daily. We are fully committed to the growth of our employees. From fully comprehensive medical plans to tuition reimbursement, tuition assistance, and fertility treatment, we are there to support you all the way Target Salary Range $112,000 - $179,000. This represents the typical salary range for this position based on experience and other factors. SCA / Union / Intern Rate or Range EEO An Equal Opportunity Employer including Disability/Veteran. Our Values Benefits At Peraton, our benefits are designed to help keep you at your best beyond the work you do with us daily. We're fully committed to the growth of our employees. From fully comprehensive medical plans to tuition reimbursement, tuition assistance, and fertility treatment, we are there to support you all the way. * Paid Time-Off and Holidays
* Retirement
* Life & Disability Insurance
* Career Development
* Tuition Assistance and Student Loan Financing
* Paid Parental Leave
* Additional Benefits
* Medical, Dental, & Vision Care
-
Security RMF Pen Tester
6 days ago
Washington Highlands, Washington, D.C., United States Hummingbirds Innovations Full timeThe ideal candidate has experience performing internal penetration testing, vulnerability assessments and manual exploitation of servers, web applications/services and databases to identify vulnerabilities, misconfigurations, and compliance issues. In addition, the candidate will have extensive experience in performing FISMA technical controls assessments,...
-
QA Tester
1 week ago
Washington, United States TWO95 International Full timeTitle: QA Tester Location: Washington, DC Position: Contract Rate: $/OpenDescription:- • Test web services, web application, API, mobile application for potential vulnerabilities, Wireless penetration testing and POS device security assessments • Run patch / configuration audit scans, create scan report • Periodically run Host Discovery Scans, web...
-
QA Tester
2 days ago
Washington, United States TWO95 International Full timeTitle: QA Tester Location: Washington, DC Position: Contract Rate: $/OpenDescription:- • Test web services, web application, API, mobile application for potential vulnerabilities, Wireless penetration testing and POS device security assessments • Run patch / configuration audit scans, create scan report • Periodically run Host Discovery Scans, web...
-
QA Tester
3 weeks ago
Washington Highlands, Washington, D.C., United States Two95 International Inc. Full timeTitle: QA TesterLocation: Washington, DCPosition: ContractRate: $/Open Description:- • Test web services, web application, API, mobile application for potential vulnerabilities, Wireless penetration testing and POS device security assessments • Run patch / configuration audit scans, create scan report • Periodically run Host Discovery Scans,...