Penetration Tester

Job Locations US-MD-Government Site
Requisition ID
2023-130274
Position Category
Cyber Security
Clearance
Top Secret/SCI
Sector
Space & Intelligence

Responsibilities

This Attack Emulation Team (AET) Team Operator position supports the Defense Cyber Crime Center (DC3) and participates as a team member to deliver AET services and to address stakeholder needs in the context of AET services.  The AET Assessment team Operator Role leads the penetration test part of the assessment. They are responsible for developing the testing results appendix of the report. They may also contribute to other portions of the assessment report. As needed, the OP supports the Technical Exchange Meeting or other meetings.

The AET Operator will participate with the AL, TL in the planning phase of the AET Assessment activities.  They will apply technical and professional skillsets to lead the Technical Exchange Meeting (TEM) and support the scoping section of the Technical Exchange Meeting (TEM) which consists of interviews with individual or group SMEs to complete the Rules of Engagement (ROE) activities, achieve clarification, or lead to the location of evidence.  They communicate and share information gained during the TEM with the entire assessment team.  They work directly with the AL, TL and organization POC to successfully plan and execute the assessment, as well as notify and support the assessment services.  They participate in assessment activities and perform the adversarial emulation testing tasks assigned by the AL, TL.  Participate in the post-execution out brief to the POC and SMEs, to present preliminary observations as a result of the TEM.  Contribute to the draft of the AET Assessment reports.  Identify potential improvements to the target organization security posture that are related to organizational system(s) use and interconnections, as well as identifying strengths and weaknesses in incident management capabilities that are applicable to protecting and sustaining the organizational system(s).

Qualifications

BS 10-12, MS 8-10, Phd 5-7

  • Experience and familiarity with the assessment methods defined in NIST SP 800-30 Rev. 1 and NIST SP 800-53A Rev. 4 (interview, examine, and test)
  • Experience in drafting written reports
  • Extensive experience in reviewing and examining data and information that supports cybersecurity assessments
  • Experience in pen testing fundamentals
  • Experience in Kali Linux and its toolsets, including Metasploit
  • Experience in pen testing tools including scanners like Nessus and Nmap

A minimum of three years of the following experience:

  • performing authorized pen testing on enterprise networks;
  • gaining access to targeted networks;
  • applying expertise to enable new exploitation and maintaining access;
  • obeying appropriate laws and regulations;
  • providing infrastructure analysis;
  • performing analysis of physical and logical digital technologies;
  • conducting in-depth target and technical analysis;
  • creating exploitation strategies for identified vulnerabilities;
  • monitoring target networks; and
  • profiling network users or system administrators and their activities

Preferred: One or more nationally recognized information system auditing certifications, for example

  • OSEP (Offensive Security Experienced Penetration Tester)
  • OSCP (Offensive Security Certified Professional)
  • GXPN (GIAC Exploit Researcher and Advanced Penetration Tester)
  • GPEN (GIAC Certified Penetration Tester)
  • LPT (Licensed Penetration Tester)

Peraton Overview

Peraton drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world’s leading mission capability integrator and transformative enterprise IT provider, we deliver trusted and highly differentiated national security solutions and technologies that keep people safe and secure. Peraton serves as a valued partner to essential government agencies across the intelligence, space, cyber, defense, civilian, health, and state and local markets. Every day, our employees do the can’t be done, solving the most daunting challenges facing our customers.

Salary Range

Salary Minimum: $72,500
Salary Mid: $145,000
Salary Maximum: $181,300

The estimate displayed represents the typical salary range for this position, and is just one component of Peraton's total compensation package for employees. Other rewards may include annual bonuses, short- and long-term incentives, and program-specific awards. In addition, Peraton provides a variety of benefits to employees.

An Equal Opportunity Employer including Disability/Veteran.

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed