Cyber Security Engineer (Penetration Tester)

About the position Responsibilities • Conducting comprehensive security assessments to uncover vulnerabilities and recommend effective mitigations across a wide range of technologies. • Utilizing the full penetration testing lifecycle to assess web applications, networked devices, standalone software, and more. • Applying proven methodologies and adaptive techniques to stay ahead of the curve. • Continuously evaluating and integrating new tools and tactics to ensure testing remains effective and impactful. • Contributing to ongoing research and development efforts, exploring current and emerging technologies to expand the team's capabilities. • Occasional travel (up to 10%) to apply your skills in diverse environments. Requirements • An active DoD Secret clearance. • The ability to obtain and maintain a TS/SCI clearance. • All work is performed on site at APG, MD. Telework is not available. • Requires a minimum of 5 years of experience in technical cybersecurity assessments and/or penetration testing, with proficiency in utilizing tools and methodologies to evaluate network and application-level technologies for vulnerabilities and exploits. • Intermediate knowledge of Linux and Windows internals. • Thorough technical understanding of networking protocols, hardware, and software. • Ability to interpret network traffic to understand communications and identify security vulnerabilities using Wireshark, Burp Suite, etc. • Familiarity with hypervisor virtualization (VMware, VirtualBox, ESXi). • Ability to effectively communicate through written and verbal means, to include conveying technical information to team members, leadership, and clients. • Must be able to work in a secure SCIF lab setting (no phones, wireless or Bluetooth devices, outside technology permitted). • Work efficiently both individually and as a team. Nice-to-haves • An active DoD TS/SCI clearance. • DoD 8570 IAT Level II certification (Security+ or equivalent). • OSCP or equivalent certification. • Basic cryptography knowledge. • Basic programming / scripting experience (Python, Java, C/C++, bash). • Code analysis and reverse engineering experience. • Chip-off / Fault-injection / and similar hardware hacking knowledge. • Familiarity with COTS/GOTS radios, SDRs, and RF concepts. Benefits • Healthcare benefits • Wellness programs • Financial benefits • Retirement plans • Family support • Continuing education opportunities • Time off benefits Apply tot his job