Our Client is seeking Penetration Tester to help ensure the continued operation of the systems that protect a client's network against unauthorized access, modification of data, and malicious activity. These systems require continuous management and monitoring to ensure they are functioning as expected and to analyze and respond to alerts as they occur.
Responsibilities- Lead enterprise and system-focused network and application penetration assessments to identify security risks and vulnerabilities.
- Perform testing on a wide scope of systems, including Web applications, security controls, network infrastructure, wireless, and mobile deployments.
- Conduct hands-on technical testing beyond the use of automated tool validation. Plan, execute, report, and lead technical debriefs on testing activities and outcomes.
- Execute covert Red Team Cyber operations to mimic adversary tactics and work closely in a Purple Team to test exploits needed to build detections.
- Communicate findings and remediation strategies effectively to stakeholders, including technical staff and executive leadership.
- OSCP, GPEN or GXPN certification preferred.
- Perform other official duties as assigned.
Qualifications - Demonstrated experience and advanced knowledge of security systems analysis, testing, and documentation
- Knowledge of virtual environments, network operating systems, mobile device environments, and data encryption methods
- Demonstrated expertise in communication protocols, network operating systems, servers, firewall implementation, IPS/IDS systems, and advanced malware detection systems
- Demonstrated knowledge of TCP/IP, network fundamental, network security, NetFlow and knowledge of tools such as Wireshark.
- Demonstrated knowledge of NetWitness , FireEye, Splunk, AWS Direct Connect, Checkpoint/Barracuda Firewalls, StealthWatch , ThreatConnect, O365, Bro, WS/AZURE Security Onion, Gigamon, and VMware. Experience with scripting languages such as Perl a plus.
- Exceptional communication skills, both verbally and written
- Strong attention to detail
- bility to work alone and in team environments
- Critical thinking skills
- Flexibility/Adaptability
Level of Education: Bachelors or above rea(s) of Concentration : Bachelor's degree in computer related field plus 5 years of professional experience or equivalent work experience is required for each position. In lieu of a bachelor's degree, proposed staff should have at least eight (8) years of Information Technology security experience
Certifications Preferred : CISSP, GIAC, CCE, ECIH, CEH.