Talent.com
Penetration Tester- Top Secret Clearance

Penetration Tester- Top Secret Clearance

Vets, IncArlington, VA, US
job_description.job_card.variable_hours_ago
serp_jobs.job_preview.job_type
  • serp_jobs.job_card.full_time
  • serp_jobs.filters_job_card.quick_apply
job_description.job_card.job_description

Staffing Pros, a division of VETS Inc., is recruiting for a full-time Penetration Tester onsite in Arlington, VA. This position requires an Active Top Secret Clearance.

This position is located in Arlington, VA and will be onsite 5 days a week. No hybrid / telework allowed.

Responsibilities :

  • Support the Red Cell Team by performing and leading penetration tests to assess the security of customer systems.
  • Identify vulnerabilities and develop recommended remediations to satisfy mandated NIST 800-53 security controls.
  • Report and demonstrate findings to system owners and engineers.
  • Maintain Red Cell infrastructure.
  • Develop or modify tools to automate discovery or exploitation.

Qualifications :

Required Qualifications :

  • Bachelor of Science and 5 years of relevant experience in Cyber / IT, or a Master's of Science and 3 years of relevant experience in Cyber / IT. In lieu of a degree, 4 years of additional IT security or penetration testing experience may be considered.
  • Minimum of 2 years with penetration testing experience.
  • Possess one of the following certifications, OR be able to obtain before start date :
  • CCNA Cyber Ops, CCNA-Security, CEH, CFR, Cloud+, CySA+, GCIA, GCIH, GICSP, SCYBER, Security+ CE, SSCP
  • Demonstrated experience with Kali Linux.
  • Demonstrated penetration testing tools experience with Nmap, Burp Suite, Metasploit, etc.
  • Demonstrated ability in evaluating vulnerabilities, performing root cause analysis, and reporting findings utilizing assessment methodologies such as NIST SP 800-115, Penetration Testing Execution Standard (PTES), Information Systems Security Assessment Framework (ISSAF), OWASP Web Security Testing Guide (WTG), etc.
  • Demonstrated ability to lead a penetration test and guide Senior / Junior Penetration Testers.
  • Must be a U.S. citizen with an active Secret security clearance.
  • Must have the ability to obtain a final Top Secret security clearance.

    • Preferred Qualifications :

  • Active Top Secret or TS / SCI clearance.
  • One of the following certifications or an alternate, verifiable certification demonstrating IT security competence :
  • CompTIA CASP+
  • ISC2 Certified Information Security Professional (CISSP)
  • ISC2 Certified Cloud Security Professional (CCSP)
  • ISC2 Information Systems Security Engineering Professional (ISSEP)
  • One of the following certifications or an alternate, verifiable certification demonstrating practical penetration testing competence :
  • Offensive Security Certified Professional (OSCP)
  • Offensive Security Certified Professional (OSCP)
  • Hack the Box Certified Penetration Testing Specialist (CPTS)
  • TCM Security Practical Network Penetration Tester (PNPT)
  • GIAC Exploit Researcher and Advanced Penetration Tester (GXPN)
  • Zero Point Security Red Team Ops II
  • Advanced understanding of the following :
  • NIST Risk Management Framework (RMF) and the Assessment and Authorization (A&A) process.
  • Security principles such as CIA, IAAAA, access control models, risk management, etc.
  • Networking principles and technologies such as IP routing, TCP / UDP, VPNs, firewalls, NAT, etc.
  • Common network protocols such as SSH, FTP, SMTP, SMB, HTTP, etc.
  • Operating system principles such as process management, device management, user management, file systems, etc.
  • Data processing principles such as encoding, hashing, encryption, etc.
  • Scripting and programming languages such as Bash, Python, PowerShell, JavaScript, etc.
  • Common application vulnerabilities and exploits such as outdated components,
  • permissions misconfigurations, lack of input validation, logging / monitoring failures, etc.
  • Common web application vulnerabilities and exploits such as XSS, SQLi, LFI, file uploads, broken authentication mechanisms, etc.
  • Active Directory (AD) enumeration and attacks such as kerberoasting, AS-REP roasting, abusing misconfigured privileges, crafting golden tickets, etc.
  • Public Key Infrastructure (PKI) and navigating IT environments implementing multifactor authentication.
  • Cloud technologies and platforms such as Amazon Web Services (AWS), Microsoft Azure, Google Cloud Platform (GCP), etc.

    • EEO Statement

    Staffing Pros a division of VETS-inc is an Equal Opportunity Employer / Protected Veterans / Individuals with Disabilities.

    The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor’s legal duty to furnish information.

    serp_jobs.job_alerts.create_a_job

    Top Secret Clearance • Arlington, VA, US

    Job_description.internal_linking.related_jobs
    • serp_jobs.job_card.promoted
    Surveillance Investigator

    Surveillance Investigator

    Allied UniversalManassas, VA, United States
    serp_jobs.job_card.full_time
    Advance Your Career in Insurance Claims with Allied Universal Compliance and Investigation Services.Allied Universal Compliance and Investigation Services is the premier destination for a career in...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Physical Security Advisor

    Physical Security Advisor

    Oceaneering International, Inc.Hanover, MD, United States
    serp_jobs.job_card.full_time
    Oceaneering Technologies (OTECH) develops, manufactures, and operates customized marine systems, shipboard equipment, subsea vehicles, and engineered solutions for commercial and U.Oceaneering Aero...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    Security Professional - Unarmed Patrol PT

    Security Professional - Unarmed Patrol PT

    Allied UniversalBrooklyn Park, MD, United States
    serp_jobs.job_card.full_time +1
    Security Professional - Unarmed Patrol PT.Allied Universal, North America's leading security and facility services company, offers rewarding careers that provide you a sense of purpose.While workin...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_1_day
    • serp_jobs.job_card.promoted
    Senior IT Security Engineer

    Senior IT Security Engineer

    VirtualVocationsBaltimore, Maryland, United States
    serp_jobs.job_card.full_time
    A company is looking for a Senior IT Security Operations Engineer.Key Responsibilities Monitor, detect, analyze, and respond to security events and incidents using various security tools Conduct...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_1_day
    • serp_jobs.job_card.promoted
    Senior Cloud Security Architect

    Senior Cloud Security Architect

    VirtualVocationsBaltimore, Maryland, United States
    serp_jobs.job_card.full_time
    A company is looking for a Senior Information Security Architect (Remote).Key Responsibilities Develop and implement a comprehensive cloud security strategy aligned with organizational goals and ...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Cybersecurity Engineer (DHS)

    Cybersecurity Engineer (DHS)

    LMI Consulting, LLCTysons, VA, United States
    serp_jobs.job_card.full_time
    Salaried High Fringe / Full-Time.Department of Homeland Security (DHS) market.LMI is a new breed of digital solutions provider dedicated to accelerating government impact with innovation and speed.In...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    SPECIAL SECURITY TECHNICIAN

    SPECIAL SECURITY TECHNICIAN

    Clearance JobsFort George G Meade, MD, US
    serp_jobs.job_card.full_time
    Job Title : Special Security Technician.Welcome to Universal Strategy Group Inc (USGI)! USGI is a Service-Disabled Veteran Owned Small Business. USGI was founded in 2007 with the single focus of pres...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Security Lead

    Security Lead

    VirtualVocationsArlington, Virginia, United States
    serp_jobs.job_card.full_time
    A company is looking for a Security Lead to build and manage its security function across governance, engineering, and operations. Key Responsibilities Own the company's security posture from code...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    Internal Investigations Specialist

    Internal Investigations Specialist

    VirtualVocationsBaltimore, Maryland, United States
    serp_jobs.job_card.full_time
    A company is looking for a Specialty Investigator - Internal Investigations.Key Responsibilities Investigate suspected internal fraud and financial crimes, documenting findings in a case manageme...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_1_day
    • serp_jobs.job_card.promoted
    • serp_jobs.job_card.new
    Workday Security Architect

    Workday Security Architect

    VirtualVocationsBaltimore, Maryland, United States
    serp_jobs.job_card.full_time
    A company is looking for a Workday Security Architect to lead the redesign and optimization of a large enterprise Workday security environment. Key Responsibilities Lead design sessions with stake...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_hours
    • serp_jobs.job_card.promoted
    Security Analyst

    Security Analyst

    Leidos IncOdenton, MD, United States
    serp_jobs.job_card.full_time
    Leidos is seeking a Security Engineer to support the execution of strategic, operational, and organizational PPSM objectives. This position can be based out of any of our three locations - Alexandri...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    FIPS Security Engineer

    FIPS Security Engineer

    Leidos IncColumbia, MD, United States
    serp_jobs.job_card.full_time
    A FIPS Security Engineer is a technical position within Leidos' Cryptographic and Security Testing Lab (CSTL) which is part of the Leidos' Accredited Testing & Evaluation (AT&E) Lab providing valid...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Security Cooperat Analyst

    Security Cooperat Analyst

    Clearance JobsWashington, DC, US
    serp_jobs.job_card.full_time +1
    Are you searching for a position where you can use your program analysis skills to make a difference? A program requires a significant investment of limited resources across multiple projects.With ...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Protective Security Operations Chief (PSOC) - WPS III (Iraq)

    Protective Security Operations Chief (PSOC) - WPS III (Iraq)

    Acuity InternationalReston, VA, US
    serp_jobs.job_card.full_time
    Our vision aims to empower our clients by actively leveraging our broad range of services.With our global presence, we have career opportunities all across the world which can lead to a unique, exc...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Security Specialist (Part-Time)

    Security Specialist (Part-Time)

    Alexandria City Public SchoolsAlexandria, VA, United States
    serp_jobs.job_card.part_time
    The Security Specialist provides for the safety and welfare of facilities and occupants during non-classroom activities; minimizes the frequency and / or severity of harmful incidents; and communicat...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Cyber Security Specialist

    Cyber Security Specialist

    VirtualVocationsBaltimore, Maryland, United States
    serp_jobs.job_card.full_time
    A company is looking for a Cyber Security Logistics Specialist SME II.Key Responsibilities Reviews and updates system artifacts and develops baseline impact values for medical devices Documents ...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_1_day
    • serp_jobs.job_card.promoted
    Security Specialist

    Security Specialist

    Leidos IncBethesda, MD, United States
    serp_jobs.job_card.full_time
    National Security Sector's (NSS) Cyber & Analytics Business Area (CABA).Our talented team is at the forefront in Security Engineering, Computer Network Operations (CNO), Mission Software, Analytica...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    Crypotologic Cyber Planner- 4

    Crypotologic Cyber Planner- 4

    Leidos IncOdenton, MD, United States
    serp_jobs.job_card.full_time
    National Security Sector's (NSS) Cyber & Analytics Business Area (CABA).Our talented team is at the forefront in Security Engineering, Computer Network Operations (CNO), Mission Software, Analytica...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Alert Analyst

    Alert Analyst

    TEKsystemsBaltimore, Maryland, United States
    serp_jobs.job_card.full_time
    Manage Alerts, Investigations, trade and transaction analysis / research, screening, and regulatory filings in compliance with the Firm's procedures. Conduct investigations from a variety of escalatio...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    • serp_jobs.job_card.new
    Workday Security Analyst

    Workday Security Analyst

    VirtualVocationsBaltimore, Maryland, United States
    serp_jobs.job_card.full_time
    A company is looking for a Workday Security Analyst to configure, maintain, and advise on security within the Workday application ecosystem. Key Responsibilities Manage Workday security configurat...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_hours