Cybersecurity Penetration Tester

Job Family :

Cyber Consulting Travel Required :

Up to 10% Clearance Required :

Active Secret The Senior Consultant will be responsible for: Designing and recommending solutions across all cyber areas.

Creating solutions that will protect proprietary and confidential data and systems.

Leveraging indepth knowledge of cyber environment to investigate, mitigate, and implement processes and procedures to correct intrusions.

Conducting proactive cyber risk assessments to identify previously undetected vulnerabilities or intrusions.

Assisting clients to manage tasks associated with network permissions, system permissions, and application permissions.

Implementing processes for monitoring onboarding and terminations, rights to applications, and rights and permissions to file shares across multiple operating systems and platforms. What You Will Do : The Senior Consultant will provide penetration testing services using a variety of tactics, techniques, and procedures to identify exploitable vulnerabilities in networks and systems. They will also measure compliance with organizational security policies, test whether staff are aware of security issues, and ultimately determine the organization's risk to cybersecurity threats. Other responsibilities will include: Performing network mapping and reconnaissance, documenting Rules of Engagement to guide the scope, developing test plan, and assisting with acquiring management approval.

External Testing: Conducting a variety of penetration tests based on system's criticality, test objectives, and organization's requirements to include:

Working with IT personnel to define scope for targeted testing; and

Mimicking an outside attacker to gain access to system and what information can be accessed.

Internal Testing: Mimicking an outside an insider attack to determine risk employees with various access levels pose to the organization.

Red Team Testing: Focusing testing activity towards accessing specific target datasets. Testing methodology should include crafted emails, custom public websites, exploit code, and social engineering.

Analyzing test results, developing a report on discovered vulnerabilities, and providing riskbased recommendations to remediate those vulnerabilities. What You Will Need : A current and active TS clearance OR a current and active Secret clearance with the ability to obtain a TS clearance.

Bachelor's degree and minimum 35 years of prior cybersecurity penetration testing experience.

One of the following certifications: Offensive Security Certified Professional (OSCP) or GIAC Penetration Tester (GPEN) or Certified Ethical Hacker (CEH) Certification.

Previous passing of the CISA AES HVA Assessment or ability to pass the CISA AES HVA Assessment course. What Would Be Nice To Have : Qualified as CISAAES HVA Operator.

Experience supporting US government cybersecurity programs.

CISSP or CISM.

Experience managing direct client engagement team to deliver impactful support to Federal clients.

Experience with managing/supporting and/or knowledge of cybersecurity or high value asset program.

Experience conducting HVA assessment or performing Risk and Vulnerability Assessments.

Knowledge of Cybersecurity Framework, Risk Management, NIST 80083 Rev 5.

Experience developing and maintaining working relationships while serving Federal clients onsite.

Ability to identify obstacles and opportunities that impact the success of plans or initiatives.

Excellent oral and written communication and presentation skills.

Ability to communicate effectively and demonstrate leadership when interacting with clients and fellow team members. What We Offer : Guidehouse offers a comprehensive, total rewards package that includes competitive compensation and a flexible benefits package that reflects our commitment to creating a diverse and supportive workplace. Benefits include: Medical, Rx, Dental & Vision Insurance

Personal and Family Sick Time & Company Paid Holidays

Position may be eligible for a discretionary variable incentive bonus

Parental Leave and Adoption Assistance

401(k) Retirement Plan

Basic Life & Supplemental Life

Health Savings Account, Dental/Vision & Dependent Care Flexible Spending Accounts

ShortTerm & LongTerm Disability

Student Loan PayDown

Tuition Reimbursement, Personal Development & Learning Opportunities

Skills Development & Certifications

Employee Referral Program

Corporate Sponsored Events & Community Outreach

Emergency BackUp Childcare Program

Mobility Stipend About Guidehouse Guidehouse is an Equal Employment Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, national origin, ancestry, citizenship status, military status, protected veteran status, religion, creed, physical or mental disability, medical condition, marital status, sex, sexual orientation, gender, gender identity or expression, age, genetic information, or any other basis protected by law, ordinance, or regulation. Guidehouse will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of applicable law or ordinance including the Fair Chance Ordinance of Los Angeles and San Francisco. If you have visited our website for information about employment opportunities, or to apply for a position, and you require an accommodation, please contact Guidehouse Recruiting at 1 or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodation. Guidehouse does not accept unsolicited resumes through or from search firms or staffing agencies. All unsolicited resumes will be considered the property of Guidehouse and Guidehouse will not be obligated to pay a placement fee.

#J-18808-Ljbffr