Intermediate Penetration Tester
1 day ago
Intermediate Penetration Tester
Hybrid Schedule: In person, in the Washington, DC office twice per week
Are you ready to enhance your skills and build your career in a rapidly evolving business climate? Are you looking for a career where professional development is embedded in your employer’s core culture? If so, Chenega Military, Intelligence & Operations Support (MIOS) could be the place for you Join our team of professionals who support large-scale government operations by leveraging cutting-edge technology and take your career to the next level
Chenega Systems (CS) provides federal agencies empowered solutions in Cybersecurity and Data Visualization. Our Subject Matter Experts offer decades of experience working in the federal marketplace and the data visualization environment.
The SBA Office of the Chief Information Officer (CIO) Information Security Division (ISD) supports the mission of delivering cybersecurity, privacy, controlled unclassified information programs, and records management services throughout the U.S. Small Business Administration. At a high level, the SBA Information Technology (IT) ecosystem consists of one preponderant 20,000 node Multi-Protocol Label Switched (MPLS) infrastructure, two on-premises data centers, and approximately seventy smaller field offices; and additionally utilizes resources from numerous cloud providers.
The Intermediate Penetration Tester provides services related to penetration, offensive, and similar types of testing, including but not limited to, penetration testing (gray and black box), red team testing, static code analysis, dynamic code analysis, and Application Programming Interface (API) testing.
Responsibilities
Work you’ll do
- Identify vulnerabilities and weaknesses within the systems, determine exposure and complexity of exploit
- Conduct continuous penetration testing of the enterprise IT environment
- Assess the effectiveness of security controls implemented to protect systems in support of the Authorization Process, Security Impact Analysis through Change Management and as required
- Mimic attacks of threat actors defined by the Cyber Threat Intelligence (CTI) Team to assess and improve IT system resilience, SOC monitoring effectiveness, and tuning of security tools
- Perform ad hoc, focused pen tests to validate the effectiveness of corrective actions taken to address identified weaknesses
- Perform Penetration Testing Services for any internal or public websites and associated systems
- Develop and execute plans that include penetration testing of all IT systems
- Validate remediations by re-testing all Critical and High findings identified through penetration testing
- Develop or adapt queries and/or scripts that test all APIs provided by the customer against the Open Web Application Security Project (OWASP) API Top Ten (or alternate criteria as specified)
- Perform network mapping, vulnerability scanning, and support phishing simulations as well as report findings and make remediation recommendations
- Develop Quarterly Penetration Testing Schedule and Annual Internal Penetration Testing Standard Operating Procedures (SOP)
- Other duties as assigned.
Qualifications
- BS degree in Cybersecurity or a related discipline
- 5+ years of experience in penetration testing and/or offensive security
- CompTIA PenTest+, CompTIA CySA+, EC-Council CEH or equivalent certification
- Background check
Knowledge, Skills, and Abilities:
- Experience assessing mobile devices (IOS, Android, Windows) such as iPhone, iPad, and other mobile devices, including mobile applications built to function on a mobile device.
- Experience assessing web applications and websites Application Programming Interfaces (APIs) during the API lifecycle.
- Experience assessing database applications or stored functions, database systems, database servers, and associated network links that validate the database security and verify the adversaries are not able to exploit vulnerabilities in the database to access or modify the data.
- Experience with source code analysis, identifying any vulnerabilities or weaknesses within the software.
How you’ll grow
At Chenega MIOS, our professional development plan focuses on helping our team members at every level of their careers to identify and use their strengths to do their best work every day. From entry-level employees to senior leaders, we believe there’s always room to learn.
We offer opportunities to help sharpen skills in addition to hands-on experience in the global, fast-changing business world. From on-the-job learning experiences to formal development programs, our professionals have a variety of opportunities to continue to grow throughout their careers.
Benefits
At Chenega MIOS, we know that great people make a great organization. We value our team members and offer them a broad range of benefits.
Learn more about what working at Chenega MIOS can mean for you.
Chenega MIOS’s culture
Our positive and supportive culture encourages our team members to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them be healthy, centered, confident, and aware. We offer well-being programs and continuously look for new ways to maintain a culture where we excel and lead healthy, happy lives.
Corporate citizenship
Chenega MIOS is led by a purpose to make an impact that matters. This purpose defines who we are and extends to relationships with our clients, our team members, and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities.
#J-18808-Ljbffr-
Penetration Tester
1 day ago
San Francisco, CA, United States University of California - San Francisco Full timePenetration Tester PPH-Domestic-Core-IZ Full Time 82263BR Job Summary We are seeking an experienced Penetration Tester specializing in web application testing. The incumbent will be responsible for conducting comprehensive assessments of our web applications to identify vulnerabilities and improve security. This position supports the California Immunization...
-
Penetration Tester
1 month ago
Jacksonville Beach, FL, United States Overkill Gaming Full timeWe are looking for a Hacker to come in and hack a custom Gaming PC on site. We are looking for about four individuals. This would be on video for our social networks. Out of the four people who we bring in, if they are able to hack the computer they will get a chance to take it home with them.This is all for media content, so you MUST be ok with being seen...
-
Application Penetration Tester
4 weeks ago
Washington, DC, United States Editech Staffing Full timeApplication Penetration TesterOnsite / Washington, DCJob OverviewOur client is seeking a highly skilled and experienced Application Penetration Tester to join our dynamic team. This role is ideal for someone with a passion for cybersecurity, a deep understanding of application security, and the ability to identify and mitigate vulnerabilities. The successful...
-
Penetration Tester
4 weeks ago
Washington, United States Insight Global Full timeJob DescriptionJob DescriptionMust Haves:4+ years of experience conducting manual Source Code reviewsExperience with automated testing tools for SAST (Static Application security Testing), DAST (dynamic Application security Testing), and SCA (software Composition Analysis)Example tools: Checkmarx, Burp Suite Pro, Plextrac, Veracode, Hashicorp Vault4+ years...
-
Penetration Tester
1 day ago
Honolulu, HI, United States Cymertek Corporation Full timePenetration Tester KEY SUMMARY We are seeking a highly skilled and proactive Penetration Tester to join our cybersecurity team. In this role, you will identify vulnerabilities and test the security of networks, applications, and systems by simulating real-world attacks. You will collaborate with teams to develop actionable recommendations, enhance security...
-
Application Penetration Tester
4 weeks ago
Washington, DC, United States Editech Staffing Full timeOnsite / Washington, DCJob OverviewOur client is seeking a highly skilled and experienced Application Penetration Tester to join our dynamic team. This role is ideal for someone with a passion for cybersecurity, a deep understanding of application security, and the ability to identify and mitigate vulnerabilities. The successful candidate will play a...
-
Penetration Tester
1 month ago
Chandler, AZ, United States ML OUTSOURCING SERVICES PRIVATE LIMITED Full timePlease find details for this position below: Role: Penetration TesterContact: 12+ months W2 contract.Location options: Charlotte, NC; New York, NY; San Francisco, CA; Irving, TX; Chandler, AZ; Minneapolis, MN5 days on-site, an option to go hybrid once up to speed.Penetration testing certifications such as GPEN, GXPEN, GWAPT, or OSCPJD:Conduct Dynamic...
-
Penetration Tester
4 weeks ago
Chandler, AZ, United States ML OUTSOURCING SERVICES PRIVATE LIMITED Full timePlease find details for this position below: Role: Penetration TesterContact: 12+ months W2 contractLocation options: Charlotte, NC; New York, NY; San Francisco, CA; Irving, TX; Chandler, AZ; Minneapolis, MN5 days on-site, an option to go hybrid once up to speed.Penetration testing certifications such as GPEN, GXPEN, GWAPT, or OSCPJD:Conduct Dynamic...
-
Senior Penetration Tester
2 weeks ago
Milwaukee, WI, United States Northwestern Mutual Full timeAt Northwestern Mutual, we are strong, innovative and growing. We invest in our people. We care and make a positive difference. Principal Accountabilities: The principal accountability of a Sr. Penetration Tester is to secure the data and information systems of Northwestern Mutual and its policy owners. While pen testers think like...
-
Cybersecurity Engineer
7 days ago
Washington, Washington, D.C., United States Diverse Lynx Full timeJob Title: Cybersecurity Engineer - Penetration TesterThis role involves applying security testing methodologies to identify vulnerabilities in custom solutions, ERP integrations, and commercial off-the-shelf solutions. Key responsibilities include:• Practical working knowledge of penetration testing tools and frameworks like BurpSuite, Metasploit, and...
-
Application Penetration Tester
1 month ago
Washington, United States Editech Staffing Full timeApplication Penetration TesterOnsite / Washington, DCJob OverviewOur client is seeking a highly skilled and experienced Application Penetration Tester to join our dynamic team. This role is ideal for someone with a passion for cybersecurity, a deep understanding of application security, and the ability to identify and mitigate vulnerabilities. The successful...
-
Senior Cybersecurity Penetration Tester
4 weeks ago
Merrimack, NH, United States Fidelity TalentSource LLC Full timeJob Description:Senior Cybersecurity Penetration TesterThe RoleThe mission of the penetration testing team is to protect Fidelity's assets and our customers livelihoods from the threat of exploitation by malicious adversaries.u00A0The penetration testing team does this by proactively identifying vulnerabilities in our systems and serving as subject matter...
-
Penetration Tester
1 week ago
Washington, United States Editech Staffing Full timeJob OverviewOur client is looking for an experienced Application Penetration Tester to assess the security of a cloud-native, microservices-based architecture. You will focus on web and mobile applications, cloud security testing, adversary emulation, and continuous security improvement.Key responsibilities include static and dynamic source code reviews...
-
Lead Application Penetration Tester
1 week ago
Washington, United States Editech Staffing Full timeLead Application Penetration TesterOnsite / Washington, DCJob Overview Our client is seeking a highly skilled and experienced Lead Application Penetration Tester to join their dynamic team. This role is ideal for someone with a passion for cybersecurity, a deep understanding of application security, and the ability to identify and mitigate vulnerabilities....
-
Penetration Tester
2 months ago
washington, United States Editech Staffing Full timeJob OverviewOur client is looking for an experienced Application Penetration Tester to assess the security of a cloud-native, microservices-based architecture. You will focus on web and mobile applications, cloud security testing, adversary emulation, and continuous security improvement.Key responsibilities include static and dynamic source code reviews...
-
Penetration Tester
2 months ago
Washington, United States Editech Staffing Full timeJob OverviewOur client is looking for an experienced Application Penetration Tester to assess the security of a cloud-native, microservices-based architecture. You will focus on web and mobile applications, cloud security testing, adversary emulation, and continuous security improvement.Key responsibilities include static and dynamic source code reviews...
-
Red Teamer Penetration Tester
1 month ago
Reston, VA, United States Hexaware Technologies Full timeWhat Working at Hexaware offers:Hexaware is a dynamic and innovative IT organization committed to delivering cutting-edge solutions to our clients worldwide. We pride ourselves on fostering a collaborative and inclusive work environment where every team member is valued and empowered to succeed.Hexaware provides access to a vast array of tools that enhance,...
-
Senior Cybersecurity Penetration Tester NH
2 weeks ago
Merrimack, NH, United States Fidelity TalentSource LLC Full timeJob Description:Senior Cybersecurity Penetration TesterThe RoleThe mission of the penetration testing team is to protect Fidelity's assets and our customers livelihoods from the threat of exploitation by malicious adversaries.u00A0The penetration testing team does this by proactively identifying vulnerabilities in our systems and serving as subject matter...
-
Application Penetration Tester
4 weeks ago
washington, United States Editech Staffing Full timeOnsite / Washington, DCJob OverviewOur client is seeking a highly skilled and experienced Application Penetration Tester to join our dynamic team. This role is ideal for someone with a passion for cybersecurity, a deep understanding of application security, and the ability to identify and mitigate vulnerabilities. The successful candidate will play a...
-
Application Penetration Tester
4 weeks ago
washington, United States Editech Staffing Full timeOnsite / Washington, DCJob OverviewOur client is seeking a highly skilled and experienced Application Penetration Tester to join our dynamic team. This role is ideal for someone with a passion for cybersecurity, a deep understanding of application security, and the ability to identify and mitigate vulnerabilities. The successful candidate will play a...
