Penetration Tester / Information Security Engineer

Salary depends on experience
Posted on 10/15/17
5 - 7 years experience
Aerospace / Defense
Salary depends on experience
Posted on 10/15/17

You are expected to quickly assimilate new information, understand and address threat vectors that may adversely affect Vulcan’s mission.

ESSENTIAL DUTIES AND RESPONSIBILITIES

  • Perform network penetration, web and mobile application testing, threat modelling and analysis, and wireless network assessments
  • Remain abreast of developments within the field of penetration testing, continually assess the Vulcan environment, validate findings and work with stakeholders to drive remediation to completion
  • Administer, Configure, Deploy, Install, Operate, Troubleshoot and otherwise Maintain various on premise and third party hosted information security systems, tools and services

QUALIFICATIONS

To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Knowledge, experience, skill, and/or ability

Required

  • Establish and maintain positive relationships with all stakeholders
  • Communicate effectively through verbal and written means to technical and business stakeholders with the right context to drive remediation
  • Deliver high quality services, documentation, presentations and other related artifacts in a timely manner.
  • At least 5 years of recent hands-on-keyboard experience performing penetration testing activities such as:
  • Reconnaissance and Information Gathering
  • Vulnerability Analysis
  • Wired and Wireless Attacks
  • Web Applications Attacks
  • Exploiting Vulnerabilities
  • Forensic Workflows
  • Stress Testing
  • Sniffing Network Traffic
  • Advanced Password Attacks
  • Maintaining and Detecting Covert Backdoors
  • Threat Hunting
  • Lateral Movement Detection
  • Expert knowledge of Linux, OS X, Windows Server/Client, iOS and Android operating systems
  • Hardening Active Directory and using Group Policy for Security Controls
  • Advise stakeholders on Secure Coding Principles

 Preferred

  • Security Information Event Management
  • Incident Response
  • Privilege Access Management
  • Mobile Device Management
  • Scripting (PowerShell, Python, Perl, PHP, Ruby, Java,)
  • Routers, ACLs, Firewalls, IDS/IPS
  • Web Proxies
  • Network Segmentation
  • Data Loss Prevention.
  • Forensic Analysis

Required computer skills

  • Kali Linux
  • Metasploit
  • Linux, OS X, Windows Server/Clients, Android, iOS
  • 802.1X, 802.11X, RADIUS, Kerberos, LDAP, Active Directory

Education/experience/certifications

  • Bachelor’s degree (B.A. or B.S.) from accredited institution and at least 5 plus years relevant experience, OR equivalent combination of education and experience.
  • Offensive Security Certified Professional(OSCP)or GIAC GPEN
  • CISSP.
Not the right job?
Join Ladders to find it.
With a free Ladders account, you can find the best jobs for you and be found by over 20,0000 recruiters.