Senior Penetration Test Engineer
Washington, District of Columbia, United States
Applications have closed
eTelligent Group
We connect thought leaders together with experts to assist our customers to address challenges and solve problems.Company Overview:
For the past 15+ years, eTelligent Group has consistently delivered excellent services that are demonstrated through our exceptional past performances. As a WOSB, and small business, we have distinguished our company as effective problem solvers with innovative, scalable solutions. We integrate CMMI Dev Level 3 processes, tools, and techniques with innovative, cost-efficient, and secure solutions to address complex challenges. We also hold ISO 9001:2015, ISO/IEC 27001:2013, and ISO/IEC 20000-1:2018 certifications.
Roles & Responsibilities:
- Support the creation and collaborative update of the program IT Security and Penetration Test Strategy and Test Plan.
- Assess program test integration processes and document findings for improvement.
- Conduct a comprehensive review of MITRE Attack Tactics, Techniques, and Common Knowledge (ATT&CK), ATT&CK for Left of Exploit (PRE-ATT&CK) and Qualys Vulnerability Management, Detection, and Response (VMDR) for accuracy and conformity with cross-project test execution.
- Conduct focused technical analyses (Network Mapping, Vulnerability Scanning, & Penetration Testing) in support of the program, releases, and projects including architecture and engineering tasks.
- Conduct platform, data, performance and software engineering analyses and feasibility studies in accordance with the Common Vulnerability Scoring System (CVSS).
- The contractor shall be required to assist the agency with:
- Developing custom vulnerability detection plugins and scripts.
- Knowledge of threat actors, tools, tactics and techniques.
- Performing penetration testing and threat simulations.
- Knowledge of defensive capabilities and rapid mitigation strategies.
- Knowledge of the Common Vulnerability Scoring System (CVSS).
Required Skills:
- Good understanding and atleast 8+ years of hands-on experience in performing Penetration Testing.
- The candidate is expected to have Exploit development background who can discover new vulnerabilities in the systems they are assigned to work on.
- The individual should be fluent in Exploit frameworks such as Metasploit, Canvas, Core Impact or Cobalt Strike.
- Experience with debuggers such as IDA Pro, WinDBG, GDB.
- Should have exposure to multiple programming languages and be able to seamlessly transition between them.
- OSCP certification or similar is desirable.
Qualifications:
- Bachelor’s or master’s degree in Computer Science, Information Systems, Engineering, or related field.
- Candidates must meet requirements to obtain and maintain an IRS Minimum Background Investigation (MBI) clearance (active IRS Moderate Risk MBI clearance is a plus).
- Candidates must be a US Citizen or a Legal Permanent Resident (Green Card status) for at least three (3) years, and Federal Tax compliant.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Clearance Cobalt Strike Computer Science Core Impact CVSS Exploit Metasploit OSCP Pentesting Qualys Strategy Vulnerabilities Vulnerability management WinDbg
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Product Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open IT Security Engineer jobs
- Open Sr. Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs