FTI Penetration Tester

SkillBridge

Chesapeake, VA

91 - 120 days

No Cost

Role ResponsibilitiesCapable of conducting penetration tests on applications, systems, and network utilizing proven/formal processes and industry standardsWork with the Cyber Test Engineers and SMEs to generate specific test objectives for incorporation into the overall test planConduct cooperative vulnerability penetration assessments and adversarial assessments in accordance with DoD guidanceAttend site visits and conduct manual examination of system and network configurations, system logs, and devicesObserve, collect, and analyze Cyber OT&E test dataGenerate Cyber OT&E deficiency sheets and final report with established timeline including specified report artifacts in accordance with COMOPTEVFOR Cyber OT&E policies, processes and procedures using established templatesEmployee ethical hacking expertise to exploit discovered vulnerabilities and misconfigurations associated with but not limited to operating systems (Windows, Linux, etc.), protocols (HTTP, FTP, etc.), and network security services (PKI, HTTPS, etc) to accomplish test objectivesDevelop and utilize program specific testing methodology for threat emulation and vulnerability validationSupport cyber toolset development, improvement and validationSupport development and execution of TTPs for penetration testing/Red Teaming

ABOUT THE JOB

Skills & ExperienceBachelor’s degree in Computer Science, Mathematics, Engineering or related fields or relevant years of experience.Penetration testing experience.Certified Ethical Hacker (CEH) certification.OSCP Certification (It can be acquired within 6 months of being hired).Proficient in at least one Operating Systems to include: Windows, Linux and Unix variants, embedded and Real-Time Operating Systems.Proficient in at least one of the following scripting languages: PowerShell, Bash, Python, Ruby.Proficient in multiple offensive tools/technologies to include: Metasploit, Cobalt Strike, Core Impact, Burp Suite, SDR, Wireless, Intercepting Proxies, etc.

RESPONSIBILITIES

Conducting penetration tests on applications, systems, and network utilizing proven/formal processes and industry standards
Work with the Cyber Test Engineers and SMEs to generate specific test objectives for incorporation into the overall test plan
Conduct cooperative vulnerability penetration assessments and adversarial assessments in accordance with DoD guidance
Attend site visits and conduct manual examination of system and network configurations, system logs, and devices
Observe, collect, and analyze Cyber OT&E test data
Generate Cyber OT&E deficiency sheets and final report with established timeline including specified report artifacts in accordance with COMOPTEVFOR Cyber OT&E policies, processes and procedures using established templates
Utilize ethical hacking expertise to exploit discovered vulnerabilities and misconfigurations
Develop and utilize program specific testing methodology for threat emulation and vulnerability validation
Support cyber toolset development, improvement and validation
Support development and execution of TTPs for penetration testing/Red Teaming

QUALIFICATIONS

Bachelor’s degree in Computer Science, Mathematics, Engineering or related fields or relevant years of experience
Penetration testing experience
Certified Ethical Hacker (CEH) certification
OSCP Certification (It can be acquired within 6 months of being hired)
Proficient in at least one Operating Systems: Windows, Linux and Unix variants, embedded and Real-Time Operating Systems
Proficient in at least one of the following scripting languages: PowerShell, Bash, Python, Ruby
Proficient in multiple offensive tools/technologies: Metasploit, Cobalt Strike, Core Impact, Burp Suite, SDR, Wireless, Intercepting Proxies, etc.

ADDITIONAL ELIGIBILITY

We tailor our programs duration to meet the time you have been allotted, whether it's 60 or 180 days. If you're interested, please complete an application, and a member of our team will reach out to you.

TARGET MOCS

All MOCs

ELIGIBLE SERVICE BRANCHES

All Services

PROGRAM COST

$0.00

OTHER

None

POINT OF CONTACT

Steph Spain

COMPANY REVIEWS

No reviews yet. Be the first to review this organization!

Cybersecurity

Penetration Testing

Ethical Hacking

DoD Compliance

Vulnerability Assessment

Red Teaming

Threat Emulation

Similar Jobs

ABOUT THE JOB

RESPONSIBILITIES

Conducting penetration tests on applications, systems, and network utilizing proven/formal processes and industry standards

Work with the Cyber Test Engineers and SMEs to generate specific test objectives for incorporation into the overall test plan

Conduct cooperative vulnerability penetration assessments and adversarial assessments in accordance with DoD guidance

Attend site visits and conduct manual examination of system and network configurations, system logs, and devices

Observe, collect, and analyze Cyber OT&E test data

Generate Cyber OT&E deficiency sheets and final report with established timeline including specified report artifacts in accordance with COMOPTEVFOR Cyber OT&E policies, processes and procedures using established templates

Utilize ethical hacking expertise to exploit discovered vulnerabilities and misconfigurations

Develop and utilize program specific testing methodology for threat emulation and vulnerability validation

Support cyber toolset development, improvement and validation

Support development and execution of TTPs for penetration testing/Red Teaming

QUALIFICATIONS

Bachelor’s degree in Computer Science, Mathematics, Engineering or related fields or relevant years of experience

Penetration testing experience

Certified Ethical Hacker (CEH) certification

OSCP Certification (It can be acquired within 6 months of being hired)

Proficient in at least one Operating Systems: Windows, Linux and Unix variants, embedded and Real-Time Operating Systems

Proficient in at least one of the following scripting languages: PowerShell, Bash, Python, Ruby

Proficient in multiple offensive tools/technologies: Metasploit, Cobalt Strike, Core Impact, Burp Suite, SDR, Wireless, Intercepting Proxies, etc.