Penetration Testing Technical Lead with Security Clearance
2 weeks ago
Responsibilities Peraton's DSCM program encompasses technical, engineering, data analytics, cyber security, management, operational, logistical and administrative support to aid and advise DoS Cyber & Technology Security (CTS) Directorate. This includes protecting a global cyber infrastructure comprising networks, systems, information, and mobile devices all while identifying and responding to cyber risks and threats. Peraton is currently seeking an experienced Penetration Testing Technical Lead to become part of Peraton's Department of State (DoS) Diplomatic Security Cyber Mission (DSCM) program providing leading cyber and technology security experience to enable innovative, effective and secure business processes. Location: Rosslyn, VA. This is a hybrid role. * Lead and manage a team of penetration testers, providing guidance, mentoring, and technical expertise to ensure the successful execution of penetration testing engagements.
* Plan, coordinate, and execute comprehensive penetration tests on a regular basis across various systems, networks, and applications to identify security vulnerabilities and weaknesses.
* Develop and maintain penetration testing methodologies, tools, and techniques to ensure effectiveness and efficiency in identifying security flaws.
* Collaborate with cross-functional teams including security engineers, developers, and system administrators to prioritize and remediate identified security vulnerabilities.
* Conduct in-depth analysis of penetration test results, preparing detailed reports outlining findings, risks, and recommended remediation actions.
* Stay up-to-date with the latest cybersecurity threats, trends, and technologies, continuously enhancing the penetration testing program to address emerging risks.
* Provide technical expertise and guidance to support incident response efforts, including investigating and responding to security incidents and breaches.
* Participate in security awareness training and educational initiatives to promote a culture of cybersecurity awareness and best practices across the organization.
* Design and implement training programs for SME, Senior and Junior Penetration Test Analysts
* Manage Red Cell Operations and Administrative tasks including Questionnaire and ROE development for both ON and CN assessments.
* Researches and maintains proficiency in tools, techniques, countermeasures, and trends in computer network and cloud vulnerabilities, data hiding and network security and encryption.
* Provide mentoring and guidance to junior, mid, and senior staff members by creating and teaching latest techniques in ethical hacking and vulnerability analysis.#DSCM Qualifications Required: * Minimum of 12 years with BS/BA; Minimum of 10 years with MS/MA; Minimum of 7 years with Ph.D. An additional 4 years of experience in lieu of degree may be considered (16 years). * Experience with Burp Suite Pro or Zap, including identification and usage of relevant plugins preferred.
* Experience with security assessment tools, including Nessus, Metasploit, or Cobalt Strike.
* Well-rounded background in application, network, cloud, and system security.
* Experience with conducting penetration and malicious user testing in Cloud environments, including Amazon Web Services (AWS), Azure, GCP, and, on premise systems.
* Proficient in evaluating cloud system security configurations.
* Has expertise in evaluating findings and performing root cause analysis.
* Understanding of common Web Application vulnerabilities like SQLi, XSS, CSRF, and HTTP Flooding.
* Excellent analytical and problem-solving skills, with the ability to analyze complex systems and identify security risks.
* Strong communication skills, with the ability to effectively convey technical information to both technical and non-technical stakeholders.
* Demonstrated leadership abilities, with experience in mentoring and leading a team of cybersecurity professionals.
* Certifications: Must possess at least ONE of the following certifications:
* CASP+ CE; CCISO; CCNA Cyber Ops; CCNA-Security; CCNP Security; CEH; CFR; CISA; CISM; CISSP (or Associate); CISSP-ISSAP; CISSP-ISSEP; Cloud+; CySA+; GCED; GCIA; GCIH; GICSP; GSLC; SCYBER
* U.S.citizenship and an active Secret security clearance
* Ability to obtain a final Top Secret clearance. Desired: * Industry certifications such as: OSCP, GCPN, CCSP, OSWE, GPEN, GCIH, GWAPT, or GXPN
* Experience with server administration, TCP/IP networking, vulnerability identification and exploitation, vulnerability exploit code development, offensive security operation coordination and communication, vulnerability tracking and remediation, mobile testing.
Target Salary Range SCA / Union / Intern Rate or Range EEO An Equal Opportunity Employer including Disability/Veteran. Our Values Benefits At Peraton, our benefits are designed to help keep you at your best beyond the work you do with us daily. We're fully committed to the growth of our employees. From fully comprehensive medical plans to tuition reimbursement, tuition assistance, and fertility treatment, we are there to support you all the way. * Paid Time-Off and Holidays
* Retirement
* Life & Disability Insurance
* Career Development
* Tuition Assistance and Student Loan Financing
* Paid Parental Leave
* Additional Benefits
* Medical, Dental, & Vision Care
-
Technical Architect
3 weeks ago
Rosslyn, United States Financial Services company Full timeJob DescriptionJob DescriptionTechnical Architect - JAVA We are onsite 5 days per month.Visa Sponsorships are not available at this time. You will be a key member of our Accounting Software Application Development Team, solving complex and unique business challenges with forward-looking architectures in a collaborative Agile environment. As an architect...
-
Technical Business Analyst
3 weeks ago
Rosslyn, United States National FinTech Engineering Full timeJob DescriptionJob DescriptionWe work a HYBRID onsite system of 5 days per month (once a week)We are not able to sponsor visa's at this time.Technical Business Analyst -- Must know SQL and have some exposure to Cloud (AWS) What is the role?You would be a key member of our Product Delivery Team, leading the team’s development efforts to support our...
-
Senior Cyber Threat Engineer
1 week ago
Rosslyn, United States Shift5 Full timeOur Values : Embrace Truth and Integrity: Base decisions on data, foster open dialogue, and uphold unwavering integrity. User-Centric Focus: Prioritize user needs to guide our actions and resource allocation. Collaborative & Adaptable: Collaborate for excellence, learning from failures and driving iterative improvements, recognizing every decision's...
-
Senior Cyber Threat Engineer
2 weeks ago
Rosslyn, Virginia, United States Shift5 Full timeOur Values :Embrace Truth and Integrity: Base decisions on data, foster open dialogue, and uphold unwavering integrity.User-Centric Focus: Prioritize user needs to guide our actions and resource allocation.Collaborative & Adaptable: Collaborate for excellence, learning from failures and driving iterative improvements, recognizing every decision's...
-
Sharepoint Online Content Manager/ Administrator
4 weeks ago
Rosslyn, United States IQUASAR LLC Full time**Benefits**: - 401(k) - 401(k) matching - Competitive salary - Dental insurance - Health insurance - Paid time off **Title: Title**:SharePoint Online Content Manager/ Administrator **Location**: Rosslyn, VA **Clearance**:Secret **Key Responsibilities**: - Manage SharePoint Online, associated team sites, and workflows along with OneDrive (Collaboration...
-
Senior SQL Database Developer
2 weeks ago
Rosslyn, United States Financial Services company Full timeJob DescriptionJob DescriptionWe work on a HYBRID onsite schedule of 5 days onsite per monthWe are not sponsoring Visa's at this timeYou must live in the Washington, DC metro area. You will be a key member of our Application Development Team, solving complex and unique business challenges with forward-looking architectures in a collaborative Agile...
-
Staff Software Engineer
4 weeks ago
Rosslyn, Virginia, United States Shift5 Full timeShift5 is a rapidly growing data and cybersecurity scale-up. We specialize in capturing and analyzing serial bus data in real time, providing anomaly detection and operational intelligence required to act. Our insights provide real-time alerting and historical trends to assure mission readiness and cyber survivability, and our innovative technology enables...
-
Java Software Engineer
1 day ago
Rosslyn, United States Financial Services company Full timeJob DescriptionJob DescriptionThis is a HYBRID role. Requires 5 days per month ONSITE in Arlington, VAWe are unable to sponsor Visa's at this time Software Engineer (Customer-Facing Applications)Your RoleYou would be a key member of our Customer-Facing Application Development Team, solving complex and unique business challenges with forward-looking...
-
Senior Network Engineer
2 weeks ago
Rosslyn, VA, United States ActioNet Full timeDescriptionActioNet is looking for a Sr. Network Engineer (with VOIP) eligible for a SECRET Clearance for a Program located in Rosslyn, VA (on-site). Summary: You would be responsible for deploying a variety of network infrastructure equipment, working with telecommunications carriers, provisioning connectivity into client offices, and...
-
Business Analyst IT
3 weeks ago
Rosslyn, United States National FinTech Engineering Full timeJob DescriptionJob DescriptionWe work a HYBRID onsite system of 5 days per month (once a week)We are not able to sponsor visa's at this time. What is the role?You would be a key member of our Product Delivery Team, leading the team’s development efforts to support our existing customer-facing applications and develop new solutions to meet the diverse...
-
Staff Software Engineer
3 days ago
Rosslyn, United States Shift5 Full timeShift5 is a rapidly growing data and cybersecurity scale-up. We specialize in capturing and analyzing serial bus data in real time, providing anomaly detection and operational intelligence required to act. Our insights provide real-time alerting and historical trends to assure mission readiness and cyber survivability, and our innovative technology enables...
-
ACTIONET, INC. CAREERS
6 days ago
Rosslyn, VA 22209, USA, United States ActioNet, Inc. Full timeDescriptionActioNet is looking for a Server/ Desktop Administrator (Top Secret Clearance) that is passionate about working in a sophisticated technology environment ensuring customer satisfaction in a fast paced and dynamic environment.If you want to join a company that values customer service in IT systems and are open to commuting to Rosslyn, VA we want...
-
Mechanical Commissioning Engineer
4 days ago
Rosslyn, United States System One Full timeMechanical Engineer/Buildings Commissioning Agent - US Hybrid Preferred Locations: - Kansas City, MO - Arlington, VA - Denver, CO - Atlanta, GA - Dallas, TX *US Citizenship is required for this role. Federal division Responsible for the successful execution of commissioning on a Federal government project. Utilizes knowledge and skill set to analyze and...
-
Senior Executive Assistant
2 weeks ago
Rosslyn, United States Optima Global Solutions Full timeOptima Global Solutions Inc.is a valuable IT Services and Solution provider that customers, employees, and stakeholders feel proud to be associated with. Optima's Intelligent Automation Solutions leverage robotic process automation, intelligent data capture, and business process management best practices to streamline operations. Our IT Services practice...