Penetration Tester

Overview: CDT is looking for a Penetration Tester to support a government customer onsite in Chantilly, VA. Candidates with OSCP certification are highly recommended to apply.

Clearance: An active Top Secret/SCI with CI poly is required. Candidates who do not meet these requirements will not be considered.

Responsibilities:

• Configuring and supporting Windows, Linux, Unix, Mac OS, and other operating systems, VMware, Xen, Hyper V and other virtualization platforms.
• Software engineering, program design and implementation, configuration management, system maintenance, integration testing, information system engineering, penetration testing and analysis.
• Research, development, integration, and distribution of information systems security tools and associated documentation.
• Security procedures for systems and software within area of expertise to ensure consistent security policy implementation.
• Education relevant to computer engineering, information security, information management, cyber security, and/or computer science.

Qualifications:

• High School Diploma/GED, Associates Degree and 5 years of relevant work experience.
• Bachelor's Degree and 3 years of Pen Tester experience.
• Experience in cyber security with a focus on red teaming, penetration testing, or threat hunting.
• Strong understanding of network protocols and troubleshooting, server, and workstation operating systems, exploits and vulnerabilities, penetration testing and/or red teaming (MITRE ATT&CK, OWASP), common penetration tools, tactics, techniques, and procedures.
• Experience with cloud environments.
• Ability to research, develop, and maintain knowledge of penetration testing tools, tactics, techniques, and procedures.
• Ability to incorporate threat intelligence data into attached or penetration testing scenarios.
• Excellent problem solving and troubleshooting skills with a strong attention to detail.
• Read/write code using interpreted languages (Python, PHP, Ruby, etc.).
• Experience with simulated/emulated environments and/or virtualization technologies; Experience with orchestration tools and virtualization environments (Docker, Kubernetes, etc.).
• Experience with industrial control systems deployment, security best practices, vulnerabilities, and penetration testing.
• ICD 503 and the Government's certification and accreditation process.
• Networks, computer components, system protocols, and COTS technology.
• System methodologies including client/server, web hosting, web content servers, policy servers, directory servers, firewalls, WAN, MAN, LAN, switches, and routers.
• Software integration of COTS and Government Off-the-Shelf (GOTS) products.
• Windows, Linux, Unix, and Mac OS X administration, VMware, Xen, Hyper V and other virtualization platforms.

CDT is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class.