4,424 Penetration Tester jobs in the United States

• Serve as a Subject Matter Expert providing testing expertise of the Risk Management Framework.
• Direct and/or participate in the testing phase of security controls assessments using specialized knowledge of network protocols, operating systems, architectures, equipment, services, and standards.
• Perform vulnerability and penetration testing using a wide variety of tools
• Research and evaluate emerging technologies relevant to information systems security; interpret agency specific and federal security regulations
• Perform both network and application-level testing using established testing protocols and methods

• Eight (8) experience of related work experience as a Penetration Tester performing both network and application-level testing using established test protocols and methods.

• A Bachelor's degree in Computer Science or related technical discipline from an accredited college or university
  • Four (4) years of additional experience on projects with similar software processes may be substituted for a bachelor's degree

Title: Penetration Tester

Location: Atlantic City, NJ

US Citizenship: Required

Clearance: None required; must be able to pass a Public Trust background investigation

Responsibilities:

• Perform penetration testing to assess security posture
• Provide a detailed analysis and identification of application, system, and network vulnerabilities, gaps in IT security guidance, and assessment of patching/mitigation methodologies
• Act as an ethical white hat attacker (red team) to simulate cyberattacks from a malicious actor, and/or defensive cybersecurity personnel (blue team) to harden against simulated attacks
• Develop and coordinate penetration testing Rules of Engagement, System Test Plans, and Test Reports
• Provide recommended remediation actions to lower overall risk exposure as required
• Offer technical expertise on penetration testing tools and simulation environment
• Provide technical expertise supporting cybersecurity exercise development and execution, as well as tool development and deployment

Requirements:

• Bachelor's degree in cybersecurity, computer science, information technology, engineering, math or related field
• A minimum of 8 years of directly related experience; 2 years of the relevant experience must be within the last 3 years
• At least one of the red or blue team certifications listed below:

• Red team: OSCP, OSCE, OSWP, OSWE, CEH practical, ECSA practical, LPT Master, GCIH, GPEN, GWAPT, GXPN, GAWN
• Blue team: CND, CNDA, GCIH, GCIA, GDAT, GDSA, GCED, GIAC Certified Forensic Analyst

• US citizenship required
• Must be able to pass a Public Trust background investigation prior to start

Our client, a leader in cybersecurity solutions, is seeking a Penetration Tester to join their team. As a Penetration Tester, you will be part of the Security Department supporting various development teams. The ideal candidate will have strong analytical skills, excellent communication abilities, and a collaborative mindset which will align successfully in the organization.

Job Title: Penetration Tester

Location: Charlotte, NC - Onsite

Pay Range: Competitive

What's the Job?

• Conduct application penetration testing for web applications and APIs to identify security defects and weaknesses using manual penetration testing skills and automated tools.
• Configure automated tools to complete successful scanning of applications.
• Perform defect analysis, including reviewing and validating automated scan results, and triage and disposition false positives.
• Generate accurate and detailed technical reports with identified defects for stakeholders.
• Collaborate with development and security teams to ensure a clear understanding of defects and remediation paths.

• Experience in application penetration testing and dynamic application security testing.
• Proficiency in using automated security testing tools.
• Strong understanding of web application architecture and security vulnerabilities.
• Ability to analyze and interpret complex technical information.
• Excellent communication skills to convey technical findings to non-technical stakeholders.

• Opportunity to work with a dynamic and innovative team in the cybersecurity field.
• Engage in challenging projects that enhance your skills and career growth.
• Flexible work environment that promotes work-life balance.
• Access to ongoing training and professional development resources.
• Be part of a company culture that values diversity and inclusion.

Key Role:

Conduct testing and analysis to identify vulnerabilities and potential threat vectors into systems and networks, develop exploits, and engineer attack methodologies.Apply advanced advising skills, extensive technical expertise, and full industry knowledge. Develop innovative solutions to complex problems. Work without considerable direction, and mentor and supervise team members, as needed.

Basic Qualifications:

• 5+ years of experience with cyber penetration testing or developing risk and threat mitigation plans
• 5+ years of experience operating in Linux, Windows, and virtual platforms
• 5+ years of experience with computer attack methods and system exploitation techniques
• 5+ years of experience leveraging adversarial tactics to conduct hands-on security testing
• 5+ years of experience performing network security analysis, including software or traffic analysis
• Knowledge of tools, tactics, and techniques targeting Artificial Intelligence (AI) systems and their ecosystems
• TS/SCI clearance with a polygraph
• HS diploma or GED

Additional Qualifications:

• Experience with manually auditing source code, including Java, Ruby, Python, JavaScript, Rust, or C, to find security issues
• Bachelor's degree in CS, Information Systems, Engineering, or a relatedfield
• Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP), HTB Certified Penetration Tester Specialist (CPTS), eLearnSecurity Junior Penetration Tester (EJPT), GIAC Global Information Assurance Penetration Tester (GPEN), or GIAC Cloud Penetration Tester Certification

Clearance:

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; TS/SCI clearance with polygraph is required.

Compensation

At Booz Allen, we celebrate your contributions, provide you with opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care. Our recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen's benefit programs. Individuals that do not meet the threshold are only eligible for select offerings, not inclusive of health benefits. We encourage you to learn more about our total benefits by visiting the Resource page on our Careers site and reviewing Our Employee Benefits page.

Identity Statement

As part of the application process, you are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud.

Work Model
Our people-first culture prioritizes the benefits of flexibility and collaboration, whether that happens in person or remotely.

• If this position is listed as remote or hybrid, you'll periodically work from a Booz Allen or client site facility.
• If this position is listed as onsite, you'll work with colleagues and clients in person, as needed for the specific role.

Commitment to Non-Discrimination

All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, local, or international law.

Secure Division Support. The GCC provides CSSP responsibilities and conducts DODIN Operations and DCO - Internal Defensive Measures (IDM) to protect the DODIN IAW the DoDM 8530.01 and the DoD Cybersecurity Services Evaluator Scoring Metrics (ESM). These responsibilities are broken into five (5) CSSP functions; Identify, Protect, Detect, Respond, and Recover. GCC is responsible to conduct these functions for its assigned portion of the DODIN for both unclassified and classified networks/ systems. The division provides support services for the protection, monitoring, analysis, detection, and response to unauthorized activity within the DoD Information Systems and Networks. DCO-IDM services are required to defend against unauthorized activity on all Army assets residing on the NIPRNet and SIPRNet. The division provides defensive measures to protect and defend information, computers, and networks from disruption, denial, degradation, or destruction. The division provides sensor management and event analysis and response for network and host-based events. For sensor management, the division provides management of in-line Network Intrusion Protection System/Network Intrusion Detection System (NIPS/NIDS) sensors monitoring all CONUS DoDIN-A NIPRNet and SIPRNet Enterprise traffic to detect sensor outages and activities that attempt to compromise the confidentiality, integrity, or availability of the network. In coordination with GCC Operations, DCO initiates defensive security procedures upon detection of these attacks. Event analysis and response includes the processes involved with reducing multiple cyber incidents to actual malicious threat determinations and mitigating those threats IAW guidance received from GCC Government leadership. Support the Government in providing services for CSSP services on both the NIPRNet and SIPRNet IAW Appendix E: Secure Division Workload Assessment in support of the CONUS portion of the DoDIN-A. Develop reports and products, both current and long-term, in support of CSSP and course of action development. Prepare Tactics, Techniques, and Procedures (TTP), SOPs, Executive Summary (EXSUMS), trip reports, and information/point papers. Contribute during the preparation of agreements, policy, and guidance documentation such as Memorandums of Understanding / Agreement (MOU/A), Service Level Agreements (SLA).
* Defensive Cyber Assessment (DCA) Support. The DCA Branch within the CSSP-D is responsible for conducting both local and remote penetration testing designed to emulate current threat models to the Army network to execute an assessment of the defensive security posture. Evaluate for acceptance new penetration testing TTPs (new tool usage or adversary TTP) as required for inclusion on approved penetration tools list. Maintain documentation and how-to-use guides, for all vetted penetration testing (PT) tools.
* CDAP Support. CDAP missions are conducted IAW AR 380-53, Communications Security Monitoring. The CDAP consists of three (3) mission areas: NAVs, NDAs, and Persistent Penetration Testing (PPT).
* NAV Support. Support the Government in assessing a BPCS and/or an organization's security enclave, by means of trends and analysis to prioritize NAVs. Conduct one (1) NAV per month (on average) IAW established BBP, regulations, policies, and procedures, and as requested. NAVs require travel to a remote site to execute on-site penetration testing over a one (1) week period, or longer depending on the requirements of the mission. Per AR 380-53, a NAV consists of four (4) phases:
* Phase 1: Provide/authorization (conducted from home station). * Assist in providing authorization and information about the target IS network to establish the "operating and mission parameters" or Rules of Engagement (ROE). * Execute coordination between the CDAP team and the requesting unit to identify requirements for the NAV. The CDAP team will provide a pre-brief to unit commander and support staff on details of each phase, expected outcomes, schedule, and limitations. * Provide three (3) recommended dates based off the requesting unit's proposed dates based off operations. * Identify potential team members to participate in the NAV mission.
* Phase 2: Network survey (conducted from home station). * Obtain information regarding the design and implementation of the target network and discover (scans for) information about devices on the network and its possible weaknesses. * Compare differences between design and implementation and then evaluate the network's susceptibility to intrusion/exploitation. * Retrieve results from a recent vulnerability assessment scan of the site to execute an analysis of this data to identify potential targets (systems and/or vulnerabilities) prior to arriving on site. * Develop an in-brief to be provided to the requesting unit upon arrival to go over what will be executed during the duration of the mission and validate the rules of engagement agreed upon. CDAP team members shall also prepare mission equipment, shipping containers and coordinate with logistics personnel in securing the shipping of equipment to the remote site.
* Phase 3: Network penetration testing (conducted from both home station and at remote site). This phase examines the degree and depth of information compromise obtained by potential intruders; evaluates the ability of the targeted network to detect the presence of an intruder; and acts as threat "actors" attempting to circumvent the targeted networks defenses by several means. * Utilize approved tools to execute penetration testing of the remote site by utilizing established TTPs. Penetration testing will be conducted against systems and/or devices identified within the mission planning documentation and the ROE. There may be reason to execute phishing campaigns in conjunction with the penetration testing to gain a foothold into the network. * Develop and present a final out-brief upon completion of the mission to discuss the findings of the mission, trends observed, and any recommendations/mitigation actions which need to be executed. * Secure all equipment and coordinate with shipping personnel to ensure equipment returns to home station.
* Phase 4: Final Report (conducted from home station). * Provide the requesting unit or activity an executive summary outlining impacts and recommendations for securing the target network, including detailed information on impacts, risk assessments, and recommended fixes to secure the target network or subnet. The report will also include any findings that indicate the current presence of an adversary must be reported to the GCC Government leadership immediately, with a formal write-up within two (2) hours. * Document and report any findings that could lead to a potential Category (CAT) I/CAT II IAW CJCSM 6510.01B and a Cyber Operations Readiness Assessment (CORA). * Provide final report within 30 days of the completion of the NAV as identified in Table 1: "Deliverables". Due to the sensitive dissemination control of this report, information is managed by the GCC.
* NDA Support. Although Theater Cyber Protection Teams (CPTs) execute most NDA mission, the Contractor shall provide support the Government in the execution of an NDA event. In support of NDA execution.
* Validate suspected compromises and identify the depth of intrusions to gain knowledge for use in mitigation, recovery, and future prevention of possible compromises.
* Use the results of each assessment (on going) to determine the best method of mitigation and/or continued monitoring.
* Report findings, which indicate the current presence of an adversary to Government leadership immediately, with formal, write up within two (2) hours.
* Document and report any findings that could lead to a potential CAT I/CAT II IAWCJCSM 6510.01B and a CORA.
* Provide verbal updates to the Government lead every two (2) hours that covers progress, immediate findings, and/or issues.
* Provide a formal report to the network/systems owner or the AO and the Information Systems Security Manager (ISSM) within five (5) business days of the completion of the NDA as identified in Table 1: "Deliverables". The assessment shall consist of: * Gathering host logs from compromised system(s) * Conducting on-site scans with an anomaly detection tool to determine width of cyber incident AO. * Cyber incident handling on-site for newly identified compromised systems. * Assisting on-site administrators with securing affected network(s) * Assisting cleanup * Providing daily updates on situational awareness to leadership/pertinent agencies * Preparing final NDA report * Publishing and maintaining NDA TTPs * Coordinating NDA efforts with ARCYBER and affected organizations.
* PPT Support (conducted from home station). Support the Government in the execution of approximately two (2) PPT missions per month (historically), or as required, on all supported networks, to identify potential weaknesses and network deficiencies by circumventing the defensive posture to gain access onto the network. PPT missions include high-risk web vulnerability assessments, non/limited notice penetration testing of assets, phishing assessments/campaigns, and other activity designed to identify vulnerabilities on the CONUS networks. PPTs also include open-source research of vulnerabilities, exploits, and other related activity. Prepare and provide a final report detailing the activity executed, vulnerabilities, and/or weaknesses identified during the assessment, and recommended mitigation actions to improve the defensive posture of the targeted network IAW Table 1: "Deliverables". * Execute high-risk web assessments, non-notice penetration testing of assets, on-demand testing of network devices, and other activity required to assess the defensive posture of the targeted network. * Utilize approved CDAP tools to execute these assessments and to emulate threat actors and their TTPs in gaining a foothold into the Army networks. * Review internally developed threat documents (by GCC); externally released products by higher headquarters, to include portals, tippers, tasking orders, etc.; and commercial vendor sites identifying new vulnerabilities or exploits in the wild to identify target for PPT missions. These missions result in recommendations of mitigation actions required to resolve these weaknesses and/or deficiencies.
* PPTs shall also include execution of phishing assessments/campaigns with CONUS Theater stakeholders and their subordinate commands. * Execute a phishing assessment designed to reinforce phishing awareness by emulating APT actions used by Nation-state or other adversaries to gather information or gain a foothold in the Army networks. Phishing exercises both user awareness, as well as unit/organization incident response plans to this type of threat. * Utilize authorized CDAP tools to develop phishing scenarios, malicious/non-malicious payloads for the purpose of gaining access to the remote system, and email content to lure users to click on the phishing URLs or payloads. * Ensure utilized tools collect required information needed to produce reports based on user metadata identifying who clicked on the phishing, the category of user (i.e., Department of Army Civilian, military, or Contractor), and appropriate screenshots to demonstrate successful access to remote systems. * Conduct both scheduled and limited notice phishing campaigns, as required. Phishing campaigns are normally conducted from home station; however, in some cases, may be executed at a remote site during a NAV.

Qualifications:

2 years with BS/BA; 0 years with MS/MA; 6 years with no degree
• Certifications: DCWF code 541 Intermediate: CompTIA Cloud+ or CompTIA PenTest+ or CompTIA Security+ or GIAC Certified Enterprise Defender (GCED) or GIAC Global Industrial Cyber Security Professional (GICSP)
• Top Secret w/SCI security clearance
• Experience in drafting written reports
• Extensive experience in reviewing and examining data and information that supports cybersecurity assessments
• Experience in pen testing fundamentals

Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world's leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees do the can't be done by solving the most daunting challenges facing our customers. Visit peraton.com to learn how we're keeping people around the world safe and secure.

Our client, a leader in cybersecurity solutions, is seeking a Penetration Tester to join their team. As a Penetration Tester, you will be part of the Security Department supporting various development teams. The ideal candidate will have strong analytical skills, excellent communication abilities, and a collaborative mindset which will align successfully in the organization.

Job Title: Penetration Tester

Location: Charlotte, NC - Onsite

Pay Range: Competitive

What's the Job?

• Conduct application penetration testing for web applications and APIs to identify security defects and weaknesses using manual penetration testing skills and automated tools.

• Configure automated tools to complete successful scanning of applications.

• Perform defect analysis, including reviewing and validating automated scan results, and triage and disposition false positives.

• Generate accurate and detailed technical reports with identified defects for stakeholders.

• Collaborate with development and security teams to ensure a clear understanding of defects and remediation paths.

What's Needed?

• Experience in application penetration testing and dynamic application security testing.

• Proficiency in using automated security testing tools.

• Strong understanding of web application architecture and security vulnerabilities.

• Ability to analyze and interpret complex technical information.

• Excellent communication skills to convey technical findings to non-technical stakeholders.

What's in it for me?

• Opportunity to work with a dynamic and innovative team in the cybersecurity field.

• Engage in challenging projects that enhance your skills and career growth.

• Flexible work environment that promotes work-life balance.

• Access to ongoing training and professional development resources.

• Be part of a company culture that values diversity and inclusion.

If this is a role that interests you and you'd like to learn more, click apply now and a recruiter will be in touch with you to discuss this great opportunity. We look forward to speaking with you!

About ManpowerGroup, Parent Company of: Manpower, Experis, Talent Solutions, and Jefferson Wells

ManpowerGroup® (NYSE: MAN), the leading global workforce solutions company, helps organizations transform in a fast-changing world of work by sourcing, assessing, developing, and managing the talent that enables them to win. We develop innovative solutions for hundreds of thousands of organizations every year, providing them with skilled talent while finding meaningful, sustainable employment for millions of people across a wide range of industries and skills. Our expert family of brands - Manpower, Experis, Talent Solutions, and Jefferson Wells - creates substantial value for candidates and clients across more than 75 countries and territories and has done so for over 70 years. We are recognized consistently for our diversity - as a best place to work for Women, Inclusion, Equality and Disability and in 2023 ManpowerGroup was named one of the World's Most Ethical Companies for the 14th year - all confirming our position as the brand of choice for in-demand talent.

ManpowerGroup is committed to providing equal employment opportunities in a professional, high quality work environment. It is the policy of ManpowerGroup and all of its subsidiaries to recruit, train, promote, transfer, pay and take all employment actions without regard to an employee's race, color, national origin, ancestry, sex, sexual orientation, gender identity, genetic information, religion, age, disability, protected veteran status, or any other basis protected by applicable law.

VTG is looking for multiple levels (Level 2, 3 & 4) of a Penetration Tester in Chantilly VA. (Note: position is contingent upon program award)

Level 3 Penetration Tester: 

Level 4 Penetration Tester:

All Level Certifification Requirement: Minimum Security+
Desired: DoD 8140 - CSSP Incident Responder certification:
• CyberSec First Responder (CFR)
• Cisco Cert. Network Assoc. CyberOps (CCNA CyberOps)
• CompTIA Pen Test+
• CompTIA Cybersecurity Analyst (CySA+)
• Certified Hacking Forensic Investigator (CHFI)
• CCNA Security
• GIAC Forensic Analyst (GCFA)
• GIAC Certified Incident Handler (GCIH)
• SCYBER
Level 2 Penetration Tester:
Education: Bachelor's Degree or Higher, AND
Pen Tester Experience: 3 years
OR
High School GED + 5 Years Relevant Experience
Associates Degree + 4 Years Relevant Experience
Masters or Higher + 2 Years Relevant Experience

Level 3 Penetration Tester: 
Education: Bachelor's Degree or Higher, AND
Pen Tester Experience: 4 years
OR
High School GED + 9 Years Relevant Experience
Associates Degree + 7 Years Relevant Experience
Masters or Higher + 5 Years Relevant Experience

Level 4 Penetration Tester:
Education: Bachelor's Degree or Higher, AND
Pen Tester Experience: 7 years
OR
Masters or Higher + 6 Year Relevant Experience

VTG is looking for multiple levels (Level 2, 3 & 4) of a Penetration Tester in Chantilly VA. (Note: position is contingent upon program award)

Level 3 Penetration Tester:

Level 4 Penetration Tester:

All Level Certifification Requirement: Minimum Security+
Desired: DoD 8140 - CSSP Incident Responder certification:
* CyberSec First Responder (CFR)
* Cisco Cert. Network Assoc. CyberOps (CCNA CyberOps)
* CompTIA Pen Test+
* CompTIA Cybersecurity Analyst (CySA+)
* Certified Hacking Forensic Investigator (CHFI)
* CCNA Security
* GIAC Forensic Analyst (GCFA)
* GIAC Certified Incident Handler (GCIH)
* SCYBER
Level 2 Penetration Tester:
Education: Bachelor's Degree or Higher, AND
Pen Tester Experience: 3 years
OR
High School GED + 5 Years Relevant Experience
Associates Degree + 4 Years Relevant Experience
Masters or Higher + 2 Years Relevant Experience

Level 3 Penetration Tester:
Education: Bachelor's Degree or Higher, AND
Pen Tester Experience: 4 years
OR
High School GED + 9 Years Relevant Experience
Associates Degree + 7 Years Relevant Experience
Masters or Higher + 5 Years Relevant Experience

Level 4 Penetration Tester:
Education: Bachelor's Degree or Higher, AND
Pen Tester Experience: 7 years
OR
Masters or Higher + 6 Year Relevant Experience

• Seeking a penetration tester for a customer mission system. The successful candidate will perform vulnerability assessments and penetration testing following the customers prescribed scope statement with authorities derived from the customers Enterprise cyber security organization. The ideal candidate must display familiarity with Windows and Linux Mobile operating systems and be able to conduct network and security vulnerability analysis.
• Specifically, the candidate will analyze mission systems to help assess vulnerability to compromise from adversaries. The successful candidate must have prior experience with scope defined penetration testing using mainly open source tools.
  Penetrate desktops, servers, applications, operating systems, and security systems to gain root/admin access
• Provide black-box penetration testing utilizing tools and techniques to conduct cybersecurity evaluations for highly specialized network communication systems
• Modify open source exploits to bypass/evade antivirus, firewalls, hardened systems, and IDS/IPS systems
• Modify computer/system/network attacks, exploits, and Metasploit modules to create variations that evade detection
• Perform reconnaissance, privilege escalation persistence, lateral movement, and payload generation for multiple targets
• Hide digital artifacts and communications to evade antivirus, firewalls, IDS/IPS systems, Wireshark, and TCPDump

• 3-5 years of exploit development, computer/network security, or network traffic analysis using analytical tools
• Experience with Kali Linux and Metasploit tools
• Experience with programming/scripting: Python, PowerShell , Ruby, C, JavaScript, etc.
• DESIRED SKILLS AND QUALIFICATIONS:

• Degree in Computer Science, Engineering, Computer Forensics, Network Security, or equivalent technical experience
• Expert knowledge of networking components/devices and various OS/applications in Linux and Windows environments
• At least one of the following certifications: CISSP, OSCP, CEH, CEPT, GPEN, EnCE, GASF, GSFE
• Demonstrated experience in three or more specific areas to include: analysis, network engineering, networking security, penetration testing, red teaming, hardware engineering, software reverse engineering, and computer exploitation.

• Bachelor's degree (or equivalent) in Cybersecurity, Information Security, IT, EE, Network Engineering, Computer Science, or related field