Get more qualified candidates and reduce your costs with our guaranteed recruiting solutions

Talk to an expert today

CLOSED - 2206 - Penetration Tester

Sterling, Virginia / Rockville, Maryland
US Citizenship


This program supports our federal customer who plays a key role in providing direct cybersecurity engineering support. This program provides systems and security engineering and integration support to specific Government-sponsored projects, pilots, and prototypes. This includes solution planning and engineering, defining security requirements, target architecture, interoperability and integration, system testing, Verification and Validation, Modeling and Simulation, studies and analysis, post-deployment security validation (PDSV), and project risk management. As part of this team, you will contribute to the engineering of current and emerging cybersecurity systems, policies, and processes to enforce standards and identify vulnerabilities and capability gaps, and reduce cybersecurity risk of our customer networks.

The ST&E team is expected to have knowledge and extensive experience in networking, systems management, programming and tool development, the UNIX (different variants) operating system, the Microsoft Windows (different variants) operating system, security analyst tools and techniques, and system design and architecture is necessary to identify required modifications, determine innovative solutions, and to recommend sound security measures.


  • 2 years experience with HP Fortify and/or Checkmarx
  • 2 years experience performing source code analysis
  • Experience in Red Team (preferable) or Blue Team penetration testing a MUST HAVE. At least three years within LINUX environment a MUST. Incumbent should have engineering management experience and be willing to manage.
  • Kali Linux + custom made tools/fuzzing(must have)
  • Metasploit
  • Burpsuite;
  • Nmap;
  • Wireshark;
  • Jenkins/CloudBees
  • GitHub
  • Artifactory
  • JIRA
  • Burp Suite Pro
  • Tenable Security Center
  • Nessus
  • Twistlock
  • Acunetix
  • Visual Studio
  • Eclipse
  • PyCharm
  • Core Impact


  • Deep understanding of the methodology associated with penetration testing, such as creating Rules of Behavior, selection of pen testing team, and have a developed tool kit.
  • Cloud experience a plus! (AWS or Azure)
  • Licensed Penetration Tester (LPT) Master
  • Offensive Security Certified Professional (OSCP)
  • Certified Ethical Hacker (CEH)
  • IACRB Certified Expert Penetration Tester (CEPT)
  • IACRB Certified Expert Penetration Tester (CPT)
  • Certified Red Team Operations Professional (CRTOP)
  • CompTIA’s PenTest+
  • GIAC Exploit Researcher and Advanced Penetration Tester (GXPN); and/or GIAC Penetration Tester (GPEN)


  • US Citizenship required