NIH - Penetration Tester
Qualifications
- Public Trust Clearance
- B.S. in Computer Science, Information Technology, or a related field
- 5+ years of experience conducting penetration testing or offensive cybersecurity operations
- Experience performing enterprise penetration testing
- Experience with network and application security assessments
- Experience documenting technical security findings
- Able to obtain and maintain NIH suitability/background investigation
- Active OSCP, OSEP, GPEN, GXPN, CEH, PenTest+, or CISSP
Duties
- Conduct enterprise penetration testing activities including:
- Perform internal and external network penetration testing.
- Conduct web application penetration testing.
- Execute infrastructure security testing.
- Perform cloud penetration testing.
- Conduct operating system security assessments.
- Perform wireless security testing.
- Assess Active Directory security.
- Conduct application security testing.
- Simulate real-world cyberattacks using industry-standard offensive security methodologies.
- Perform controlled exploitation activities to identify security weaknesses.
- Validate effectiveness of implemented security controls.
- Identify attack paths and privilege escalation opportunities.
- Document technical findings and supporting evidence.
- Prepare comprehensive penetration testing plans
- Provide Red Team Support
Benefits
We are a federal contractor or subcontractor. The law requires us to provide equal employment opportunity to qualified people with disabilities. We have a goal of having at least 7% of our workers as people with disabilities. The law says we must measure our progress towards this goal. To do this, we must ask applicants and employees if they have a disability or have ever had one. People can become disabled, so we need to ask this question at least every five years.
Equal Opportunity
This is a federal contract or subcontract. As such, we are committed to providing equal employment opportunities to all qualified individuals without regard to race, color, religion, sex, national origin, age, disability, veteran status, genetic information, sexual orientation, gender identity, or any other characteristic protected by applicable law. We are also committed to complying with all applicable laws prohibiting discrimination based on citizenship status.