Penetration Testing SME

3 weeks ago


Alexandria, United States Agile Defense Full time
At Agile Defense we know that action defines the outcome and new challenges require new solutions. That's why we always look to the future and embrace change with an unmovable spirit and the courage to build for what comes next.
Our vision is to bring adaptive innovation to support our nation's most important missions through the seamless integration of advanced technologies, elite minds, and unparalleled agility-leveraging a foundation of speed, flexibility, and ingenuity to strengthen and protect our nation's vital interests.
Requisition #: 643 Job Title: Penetration Testing SME Location: Remote (Alexandria, VA) Clearance Level: Public Trust Required Certification(s): * PNPT, OSCP, OSCE, GXPN, GPEN, GCIH, GWAPT, GCFA or possess a willingness to pursue certifications after hire

SUMMARY The United States Patent and Trademark Office (USPTO), Cybersecurity Division, has a requirement to enhance existing Pen Test resources with the goal of improving the Pen Test team's capability in assessing external-facing agency systems. A successful candidate will have verifiable experience in offensive security, attack simulation, scripting, and communication skills. Strong technical capabilities, and an understanding of in-scope systems to the organization with respect to operational impact. It is important as a key function of the role is to work closely with production teams of systems assessed.

JOB DUTIES AND RESPONSIBILITIES * Conduct Penetration Testing (application and/or infrastructure) and articulate security issues to both technical and non-technical audiences * Identify, research, validate, and exploit various known and unknown security vulnerabilities * Coordinate with business and technical contacts to assist in the development and delivery of secure solutions * Compose detailed, technical, attack narratives which outline specific attack chains utilized, clear impact of vulnerabilities discovered, and suggested paths to remediation which address root cause of identified weak points in enterprise security architecture
QUALIFICATIONS Required Certifications * PNPT, OSCP, OSCE, GXPN, GPEN, GCIH, GWAPT, GCFA or possess a willingness to pursue certifications after hire Education, Background, and Years of Experience * Bachelor's degree/University degree or equivalent experience
ADDITIONAL SKILLS & QUALIFICATIONS Required Skills * Qualifications (Senior) * 5+ years of relevant experience with the requirements below: * Extensive experience working with Offensive Security Methodologies and Attack Simulation Techniques * Offensive Security testing tools. e.g., Cobalt Strike, Kali Linux, Bloodhound, Red Team Toolkits * Exploitation frameworks, e.g., Metasploit, CANVAS, Core Impact * Deep understanding of OSI model * OS Security. e.g. Unix/Linux, Windows, OSX * Understanding of common protocols. e.g. HTTP, LDAP, SMTP, DNS * Web application infrastructure. e.g. Application Servers, Web Servers, Databases * Demonstrated ability to collaborate with a variety of analytical groups and service delivery organizations * Advanced analytical and problem-solving skills * Consistently demonstrates clear and concise written and verbal communication * Proficient in interpreting and applying policies, standards and procedures * Demonstrated ability to remain unbiased in a diverse working environment Preferred Skills * Experience leveraging the MITRE ATT&CK Framework * Vulnerability Assessment tools. e.g., Nessus, Qualys, Rapid7 * Social Engineering campaigns. e.g. email phishing, phone calls, SET * Security devices, i.e. Firewalls, VPN, AAA systems * Web development and programming languages. e.g. Python, Perl, Ruby, Java, .Net
WORKING CONDITIONS Environmental Conditions * Remote Strength Demands * Sedentary - 10 lbs. Maximum lifting, occasional lift/carry of small articles. Some occasional walking or standing may be required. Jobs are sedentary if walking and standing are required only occasionally, and all other sedentary criteria are met. Physical Requirements * Stand or Sit; Repetitive Motion; Use Hands / Fingers to Handle or Feel; See Employees of Agile Defense are our number one priority, and the importance we place on our culture here is fundamental. Our culture is alive and evolving, but it always stays true to its roots. Here, you are valued as a family member, and we believe that we can accomplish great things together. Agile Defense has been highly successful in the past few years due to our employees and the culture we create together. What makes us Agile? We call it the 6Hs, the values that define our culture and guide everything we do. Together, these values infuse vibrancy, integrity, and a tireless work ethic into advancing the most important national security and critical civilian missions. It's how we show up every day. It's who we are.
Happy - Be Infectious. Happiness multiplies and creates a positive and connected environment where motivation and satisfaction have an outsized effect on everything we do.
Helpful - Be Supportive. Being helpful is the foundation of teamwork, resulting in a supportive atmosphere where collaboration flourishes, and collective success is celebrated.
Honest - Be Trustworthy. Honesty serves as our compass, ensuring transparent communication and ethical conduct, essential to who we are and the complex domains we support.
Humble - Be Grounded. Success is not achieved alone, humility ensures a culture of mutual respect, encouraging open communication, and a willingness to learn from one another and take on any task.
Hungry - Be Eager. Our hunger for excellence drives an insatiable appetite for innovation and continuous improvement, propelling us forward in the face of new and unprecedented challenges.
Hustle - Be Driven. Hustle is reflected in our relentless work ethic, where we are each committed to going above and beyond to advance the mission and achieve success.
Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR 60-1.35(c) Apply for this job

  • Alexandria, Virginia, United States Securicon LLC Full time

    Job ResponsibilitiesAs a Lead Penetration Tester at Securicon LLC, you will be responsible for managing technical contribution of matrix teams of security consultants and engineers toward successful project completion. This includes identifying and assessing customer information technology infrastructure regarding risks and vulnerabilities, as well as...


  • Alexandria, United States Agile Defense Full time

    At Agile Defense we know that action defines the outcome and new challenges require new solutions. That's why we always look to the future and embrace change with an unmovable spirit and the courage to build for what comes next. Our vision is to bring adaptive innovation to support our nation's most important missions through the seamless integration of...


  • Alexandria, United States Navstar Full time

    Would you like to perform rewarding work while contributing to the success of an established, growing company? Navstar is an award-winning organization that has a proven track record of successfully providing IT services and solutions both as a prime and sub-contractor on mission focused IT programs. Our employees are integral players in support of...


  • Alexandria, United States Modern Technology Solutions Inc Full time

    Overview Own Your Future. Modern Technology Solutions, Inc. (MTSI) is seeking a Senior Cybersecurity Systems Engineer SME to join our team. You will provide security engineering, assessment, and weapon systems security oversight activities that support complex weapon systems. Why is MTSI known as a Great Place to Work? Interesting Work: Our co-workers...


  • Alexandria, United States Agile Defense Full time

    At Agile Defense we know that action defines the outcome and new challenges require new solutions. That's why we always look to the future and embrace change with an unmovable spirit and the courage to build for what comes next. Our vision is to bring adaptive innovation to support our nation's most important missions through the seamless integration of...


  • Alexandria, United States Agile Defense Full time

    At Agile Defense we know that action defines the outcome and new challenges require new solutions. That's why we always look to the future and embrace change with an unmovable spirit and the courage to build for what comes next. Our vision is to bring adaptive innovation to support our nation's most important missions through the seamless integration of...


  • Alexandria, Virginia, United States KPMG Full time

    About the RoleKPMG, a leading advisory firm, seeks a skilled Senior Specialist, Application Penetration Tester to join our KPMG Spectrum practice.This challenging position involves performing manual application penetration tests, threat modeling, and application architecture reviews to discover and exploit vulnerabilities in web applications, internal...


  • Alexandria, Virginia, United States Invictus International Consulting, LLC Full time

    Job Title: Chief Network Security Architect ~ Hybrid Cloud SolutionsWe are seeking a highly skilled Cybersecurity Engineer to join our team at Invictus International Consulting, LLC.Estimated Salary: $150,000 - $200,000 per year.About the Role:The ideal candidate will have extensive experience in designing and developing security architecture artifacts,...


  • Alexandria, United States Cubicle Logic LLC Full time

    Job DescriptionJob DescriptionSenior Cloudera Administrator/Infrastructure SME with Cloudera Data Platform Experience (SDX and CDP – On-Prem, Public Cloud and Private Cloud)Role & Responsibilities: Will be responsible for the administration of Cloudera CDP on-prem and cloud infrastructure.Leverage the CDP features to build the cloud-hybrid infrastructure...


  • Alexandria, Virginia, United States Invictus International Consulting, LLC Full time

    Cybersecurity Engineer Job DescriptionJob Title: Cybersecurity EngineerLocation: Alexandria, VAClearance: TS/SCI with the ability to obtain and maintain a CI polygraphThe Cybersecurity Engineer will provide technical security engineering delivery leadership in several network areas of expertise, such as SD-WAN, SATCOM, and 5G. The candidate will be...


  • Alexandria, United States Invictus International Consulting, LLC Full time

    Title: Cybersecurity Engineer ~ Software Defined Perimeter Location: Alexandria, VA Clearance: TS/SCI with the ability to obtain and maintain a CI polygraphOverview: The Cybersecurity Engineer with specialty focus on network packet broker provides technical security engineering delivery leadership in several network areas of expertise, such as SD-WAN,...


  • Alexandria, United States Invictus International Full time

    Title: Cybersecurity Engineer ~ Software Defined Perimeter Location: Alexandria, VA Clearance: TS/SCI with the ability to obtain and maintain a CI polygraph Overview: The Cybersecurity Engineer with specialty focus on network packet broker provides technical security engineering delivery leadership in several network areas of expertise, such as SD-WAN,...


  • Alexandria, Virginia, United States MANAGEMENT APPLICATIONS, INC. Full time

    About the JobAt MANAGEMENT APPLICATIONS, INC., we are seeking an experienced IT Security Specialist to join our team in Annapolis, MD. The ideal candidate will have a strong background in performing credentialed scans of enterprise networks and analyzing results using COBIT 5 standards.Key ResponsibilitiesConduct thorough vulnerability assessments of up to...

  • Systems Engineer II

    4 days ago


    Alexandria, United States CV Library Full time

    Job DescriptionBryceTech is looking for a candidate who will be supporting a DoD client with a variety of needs including acquisition, program management, technology assessment, demonstration support, testing and evaluation, as well as software development/coding.Performance Based Tasks Required:Capable of working independently, able to perform as a...


  • Alexandria, Virginia, United States Agile Defense Full time

    About Agile Defense:We are a leading provider of cybersecurity solutions, dedicated to protecting our nation's vital interests. Our team of experts is committed to delivering cutting-edge solutions that meet the evolving needs of our clients.Job Summary: We are seeking an experienced Offensive Security Consultant to join our team of experts. The successful...


  • Alexandria, Virginia, United States Next Generation Full time

    Job SummaryNext Generation is seeking an experienced Oracle ERP Senior Functional Consultant with expertise in general ledger (GL) and budgetary control to lead functional design efforts and drive the successful implementation of Oracle cloud ERP solutions. Key responsibilities include configuring cloud ERP modules, workflows, and processes to support...


  • Alexandria, United States Next Generation Full time

    Job Title: Senior Oracle Functional role - GL and Budgetary Control (hybrid) Job Summary: NGI is seeking an experienced Oracle ERP Senior Functional Consultant with expertise in general ledger (GL) and budgetary control to join our dynamic team. The ideal candidate will have a strong background in implementing Oracle cloud ERP solutions, particularly in the...


  • Alexandria, Virginia, United States Alexandria Renew Enterprises Full time

    **Job Title:** Cybersecurity Risk ManagerWe are seeking a highly skilled Cybersecurity Risk Manager to join our team at Alexandria Renew Enterprises. As a key member of our Information Technology department, you will play a critical role in protecting our computer networks from cyber threats and unauthorized access.About the Role:Monitor network traffic for...


  • Alexandria, United States Next Generation Full time

    Job title: Senior Oracle Functional Consultant- Purchasing/Contracts (hybrid) Job summary: NGI is seeking a talented and experienced Oracle ERP Senior Functional Consultant with expertise in public sector procurement and contracts to join our dynamic team. The ideal candidate will have a strong background in implementing cloud ERP solutions, particularly in...


  • Alexandria, United States Next Generation Full time

    Job title: Senior Oracle Functional consultant - PPM and Grants (hybrid) Job Summary: Next Generation, Inc, an Equal-Opportunity Employer, is seeking a talented and experienced Oracle ERP Senior Functional Consultant with expertise in public sector project portfolio management (PPM) and grants management to join our dynamic team. The ideal candidate will...