Penetration Tester – Intermediate                 Job #: JHSDL0110

Location: Telework

Clearance: Top Secret

Type: Part-time, 1099

Demonstrated ability to independently perform penetration testing of applications, systems and enclaves belonging to or managed by DLA. Identifies security flaws in computing platforms and applications and devise strategies and techniques to mitigate identified cybersecurity risks. Perform application and network penetration testing and wireless security assessments. Apply offensive cybersecurity testing techniques, coordinate testing projects with internal and external system owners. Reports the nature of identified cyber security risks and recommends risk mitigation measures to improve the cyber security posture of the enterprise.

 

Qualifications

  • 6 years proven proficiency in performing extensive vulnerability assessment and penetration testing.

  • Possess a certification meeting the DOD 8570.01 IAM level III, IAT level III

  • Required to possess a DOD TOP SECRET Clearance and be eligible for an IT-I upon assignment.

  • 3 years of experience with testing tools, including NESSUS, METASPLOIT, CANVAS, NMAP, Burp Suite, and Kismet

  • 3 years of experience with network vulnerability assessments and penetration testing methods

  • 3 years of experience with writing testing assessment reports

  • 2 years of experience with using, administering, and troubleshooting a WINDOWS Server, IIS

  • Knowledge of TCP/IP protocols and networking architectures

  • 2 years of experience with using, administering, and troubleshooting a major version of Linux

  • 2 years of experience PCI DSS testing

  • Possess a certification in penetration testing, such as:

    • Licensed Penetration Tester (LPT)

    • Certified Expert Penetration Tester (CEPT)

    • Certified Ethical Hacker (CEH)

    • Global Information Assurance Certification Penetration Tester (GPEN)

  • Excellent written documentation and oral presentation skills

  • Knowledge of open security testing standards and projects, including OWASP

  • Knowledge of database, applications, and Web server design and implementation

  • Experience scripting in Perl, Python, Ruby, Bash, or Java

  • Experience with wireless LAN security testing

  • Possess oral and written communication skills

To apply send resume to Norris@FlexSR.com
Attn Pen Test (JHCDL0110)


www.CyberSecSource.com