Penetration Tester

about 4 hours ago

Washington, DC, USAMid Level / Senior

Base Salary

$130k - $145k/yr

Responsibilities

Conduct comprehensive penetration testing on hardware, software, and network components.
Perform advanced vulnerability scanning and assessments on all components.
Evaluate products for vulnerabilities affecting confidentiality, integrity, or availability.
Analyze software, firmware, hardware, and RF components within systems.
Opine on the impact and remediation strategies for identified vulnerabilities.
Develop and execute exploits and proof-of-concept attacks.
Analyze and reverse engineer firmware and embedded systems for security weaknesses.
Test and assess the security of secure boot processes and Trusted Execution Environments.
Conduct web application security assessments focusing on OWASP Top Ten vulnerabilities.
Perform manual verification of vulnerabilities and assess their risk and exploitability.
Engage in wireless and RF security testing, including Wi-Fi, Bluetooth, and Zigbee.
Utilize Software Defined Radio for protocol reverse engineering and testing.
Report findings and provide actionable recommendations for remediation.
Plan and execute full-scale vulnerability assessments and phishing campaigns.

Minimum of 2+ years’ experience in relevant areas such as penetration testing and vulnerability assessment.
Proficiency with cloud technologies including AWS, Azure, and GCP.
Experience in testing mobile operating systems, embedded systems, and IoT devices.
Ability to draft reports and summarize findings based on system analysis.
Experience conducting web application security assessments focusing on OWASP vulnerabilities.
Strong written and verbal communication skills.
Understanding of NIST 800-53 frameworks.
US Citizenship and an active security clearance at a minimum of the Secret Level.