Loading some great jobs for you...
IOMAXIS is a technology engineering company that is recognized for our innovative solutions and unparalleled engineering expertise across a wide variety of technologies. Apply innovative thinking to projects that are difficult to solve. We are seeking experienced Penetration Testers / Red Team Operators who thrive in a challenging environment to join our Ingressive division in a full-time capacity supporting operations out of Arlington, VA. The positions become available upon award on or about mid October 2019.
What you'll be doing in this role:
-Supporting remote and onsite operations by employing simulated adversarial threat-based approaches to expose and exploit vulnerabilities as a means to identify weaknesses and to improve the security posture and operational procedures in support of a DHS cybersecurity program
-Performing Penetration Testing and Red Team techniques to discover and exploit vulnerabilities in support our client's security requirementsto test and validate the effectiveness of customers IT security posture
-Using various testing, social engineering, and penetration testing approaches for vulnerability identification, enumeration, and purposeful exploitation to determine the value and effectiveness of a network, system, or application's security configuration
-Participating in and/or present project kick-off and close-out presentations and findings
-Participating in mission meetingsand generate a mission Rules of Engagement (ROE) Plan
-Generate Security Assessment Plan (SAP) in preparation of upcoming assessments
-Conducting mission review meetings and maintain activity log
-Develops Security Assessment Reports (SARs) that summarize missions, findings, and results
-Evaluates information system security readiness and supports cybersecurity functions
-Employs test plans and procedures tailored to the security controls of the system under test
-Performs manual test procedures for analysis, web assessment software, vulnerability scanning, and penetration testing, and develops/deploys custom scripts
-Performs onsite and remote testing of FISMA requirements
-Performs manual testing, vulnerability scans, and penetration testing
-Prepares detailed weekly status of activities
-Performs continuous monitoring activities for systems
-Develops Plan of Action & Milestones (POA&Ms)
-Performs annual assessments that support the continuous monitoring strategy for all systems with ATO
At least 5-years of penetration testing and vulnerability assessment experience
Required Technical Experience/Qualifications/Skills:
-Demonstrated experience in a simulated environment
-Possess at least one of the following certifications such as Offensive Security Certified Expert (OSCE), Offensive Security Certified Professional (OSCP), Offensive Security Web Expert (OSWE), Offensive Security Wireless Professional (OSWP), GIAC Penetration Tester (GPEN), GIAC Exploit Researcher and Advanced Penetration Tester (GXPN), Licensed Penetration Tester (LPT), Certified Ethical Hacker (C|EH)
-Ability to support technical analysis and documenting and presenting reports
-Must be able to support travel requirements within the National Capital Region (NCR) and Continental United States (CONUS) (upwards to 25%)
Strongly Desired Skills:
-Prior DoD or DHS Red Team experience
-Offensive Security Professional Certification (OSCP)
-In-depth knowledge of at least one or more of the following: server operating systems, workstation operating systems, or switching and routing equipment
-Positions require an active Top Secret Clearance w/ SCI eligibility and DHS Suitability* The salary listed in the header is an estimate based on salary data for similar jobs in the same area. Salary or compensation data found in the job description is accurate.
Launch your career - Create your profile now!Create your Profile
Loading some great jobs for you...