This listing was posted on Professional Diversity Network.
Lead Penetration Tester
Location:
Annapolis Junction, MD
Description:
Open Systems Technologies Corporation is a leader in the government contracting marketplace, providing Enterprise Security and Cloud Computing solutions to support large organizations. Our capabilities include supplying federal government entities and private businesses with software development, scientific and engineering technical assistance, systems integration, and enterprise security. Since its founding in 1996, OST has been committed to delivering high-quality, best-in-class results that bring added value to our clients while investing in our employees' futures by providing exciting projects to work on, and robust benefits to include technical training and certifications, relocation assistance and a 401K match with immediate vesting.Open Systems Technologies Corporation is seeking a Lead Penetration Tester to join a high-performing agile team using the Scaled Agile Framework ?SAFe? methodology. The selected candidate will work on a team of cyber Subject Matter Experts ?SMEs? who are providing support to a large, complex technical program for preventing, identifying, containing and eradicating cyber threats to networks through monitoring, intrusion detection and protective security services on information systems including local area networks/wide area networks /LAN/WAN?, commercial Internet connections, public facing websites, security devices, servers and workstations. She/he will be responsible for the overall security of Enterprise-wide information systems, and will collect, investigate, and report any suspected and confirmed security violations. Responsibilities: Perform internal and external pentest against systems to determine vulnerabilities and offer mitigation strategies. Perform web app pentests. Perform vulnerability risk assessment. Perform physical pentests and social engineering. Perform cyber incident response as needed for programs. Required Qualifications: CLEARANCE: TS/SCI w/FSP (must be from NSA) At least 5 years of relevant experience Must have experience in web development and programming languages such as Java, XML, Perl and HTML. Must have extensive experience performing IT security risk assessments. Must have experience performing web app and physical pentests. Experience with programming/scripting in Python, Powershell, C, JavaScript, etc. Must have experience with or strong familiarity of the following Web Application tools; Burp Suite, Web Inspect, Appdetective. Must have experience with or strong familiarity of Kali. Must have experience with or strong familiarity of IPS/IDS solutions. Must have a strong understanding of the Cyber Kill Chain methodology. Must have the ability to effectively collaborate with technical staff and customers when necessary to form strategies and plan for continuous modernization and legacy integration. Must have experience managing multiple projects and quickly and effectively adjusting to shifting priorities and resolving issues. Preferred Qualifications: BS in a related feild and at least 8 years of relevant experience Certifications in one or more of the following areas: GIAC Web Applications Penetration Tester/GWAPT GIAC Penetration Tester/GPEN Certified Ethical Hacker/CEH Certified Information Security Manager/CISM Certified Web Application Defender/GWEB Certified Information System Security Professional/CISSP BENEFITS OST is an Equal Opportunity Employer and has been operating since 1996 providing support on various contracts with Government agencies. We offer a comprehensive benefits package that includes 3 weeks paid time off, 11 Federal Holidays, medical/dental coverage, STD, LTD, Life Insurance, AD&D, 401k with up to 4% match, and end-of-year profit sharing.#monsterPDN-9b726247-508a-405c-ba53-2520676ef146
Visit Our Partner Website
This listing was posted on another website. Click here to open: Go to Professional Diversity Network
Important Safety Tips
- Always meet the employer in person.
- Avoid sharing sensitive personal and financial information.
- Avoid employment offers that require a deposit or investment.
To learn more, visit the Safety Center or click here to report this listing.