Job Number: R0020279
Booz Allen Hamilton has been at the forefront of strategy and technology for more than 100 years. Today, the firm provides management and technology consulting and engineering services to leading Fortune 500 corporations, governments, and not-for-profits across the globe. Booz Allen partners with public and private sector clients to solve their most difficult challenges through a combination of consulting, analytics, mission operations, technology, systems delivery, cybersecurity, engineering and innovation expertise.
Penetration Tester, Senior
Use Red Team or adversarial processes and capabilities to conduct overt–focused target penetration testing, including Cooperative Vulnerability and Penetration Assessment (CVPA) of Air Force operational platforms through focused threat–based methodologies as a simulated adversary to expose and exploit vulnerabilities to improve the Cyber readiness of these platforms. Develop attack vectors, conduct reconnaissance, collect open–source intelligence, enumeration, and foot–printing of target platforms, networks, and services, and develop exploit payloads and system backdoors. Provide support with knowledge of military avionics systems, including control bus, such as MIL–STD–1553 and messaging protocols, such as ARINC 429, real–time operating systems, such as Green Hills Integrity and Lynx OS, and air platform communication physical or networking interfaces and use reach–back support within Booz Allen to personnel with working knowledge of these technologies. Provide penetration testing using tools and techniques to conduct Cyber vulnerability and penetration testing, participate in event planning stages to develop Cyber assessment plans, and conduct no–notice penetration tests against DoD installations. This position is located in Edwards Air Force Base, CA.
-5+ years of experience with technical Cybersecurity
-3years of experience with Red Team or penetration testing or offensive Cyber testing
-Experience with Bash scripting, basic Perl, Java, or Python, and malware analysis tools
-Knowledge of DoD networks and communications, Windows and UNIX, TCP/IP, networking, and Kali Linux
-Knowledge of military avionics systems, including control bus, such as MIL–STD–1553 and messaging protocols, such as ARINC 429, real–time operating systems, such as Green Hills Integrity and Lynx OS, and air platform communication physical or networking interfaces
-Knowledge of the functionality and capabilities of computer network defense technologies, including Router ACLs, firewalls, IDS/IPS, antivirus, and Web content filtering
-Ability to perform in a military environment
-Ability to travel for approximately 25% of the time to stateside and international locations
-Top Secret clearance
-Ability to achieve a passing grade on a client qualification exam within 3months of hire
-Experience with multi–vector penetration testing using Core Impact preferred
-Ability to work in a fast–paced environment
-TS/SCI clearance preferred
-BA or BS degree
-8570 IAT Level II Certification preferred
-CEH and Offensive Security Certification, including OSCP, GPEN, or GWAPT
Applicants selected will be subject to a securityinvestigation and may need to meet eligibility requirements for access to classified information; Top Secret clearance is required.
Integrating a full range of consulting capabilities, Booz Allen is the one firm that helps clients solve their toughest problems by their side to help them achieve their missions. Booz Allen is committed to delivering results that endure.
We are proud of our diverse environment, EOE, M/F/Disability/Vet.