Penetration Tester- Expert with Security Clearance - Dexian Signature Federal
McLean, VA 22107
About the Job
Penetration Tester- Expert
Core Hours: 9:00 am – 3:00 pm
Location: Tysons, VA
Clearance: FSP
Required Skills:
• Conduct internal penetration testing and vulnerability assessment of servers, web applications, web services, and databases
• Manually exploit and compromise operating systems, web applications, and databases
• Examine results of web/OS scanners, scans and static source code analysis
• Identify vulnerabilities, misconfigurations, and compliance issues
• Write final reports, defend all findings to include the risk or vulnerability, mitigation strategies, and references
• Ability to meet and coordinate with various audiences to include developers, system administrators, project managers, and senior government stakeholders
• Provide security recommendations for developers, system administrators, project managers, and senior government stakeholders
• Report vulnerabilities identified during security assessments
• Write penetration testing Rules of Engagements (RoE), Test Plans, and Standard Operating Procedures (SOP)
• Conduct security reviews, technical research, and provided reporting to increase security defense mechanisms
• Experience with NIST 800-53 and Risk Management Framework
Desired Skills:
• Certifications: CEH – Certified Ethical Hacker Certification, CPT – Certified Penetration Tester
• Strong writing skills
• Experience with AWS Cloud Security
Core Hours: 9:00 am – 3:00 pm
Location: Tysons, VA
Clearance: FSP
Required Skills:
• Conduct internal penetration testing and vulnerability assessment of servers, web applications, web services, and databases
• Manually exploit and compromise operating systems, web applications, and databases
• Examine results of web/OS scanners, scans and static source code analysis
• Identify vulnerabilities, misconfigurations, and compliance issues
• Write final reports, defend all findings to include the risk or vulnerability, mitigation strategies, and references
• Ability to meet and coordinate with various audiences to include developers, system administrators, project managers, and senior government stakeholders
• Provide security recommendations for developers, system administrators, project managers, and senior government stakeholders
• Report vulnerabilities identified during security assessments
• Write penetration testing Rules of Engagements (RoE), Test Plans, and Standard Operating Procedures (SOP)
• Conduct security reviews, technical research, and provided reporting to increase security defense mechanisms
• Experience with NIST 800-53 and Risk Management Framework
Desired Skills:
• Certifications: CEH – Certified Ethical Hacker Certification, CPT – Certified Penetration Tester
• Strong writing skills
• Experience with AWS Cloud Security
Source : Dexian Signature Federal