Penetration Testing - SME
Position Summary
EnDyna is seeking a highly experienced Penetration Testing Subject Matter Expert (SME) to provide technical leadership supporting the HHS Office of Inspector General Cyber Assessment Team. The SME will lead complex penetration testing engagements, provide technical consulting to Federal auditors, develop testing methodologies, mentor penetration testers, deliver cybersecurity training, and serve as a trusted advisor to Government leadership.
Primary Responsibilities
Lead penetration testing engagements
Develop attack strategies
Review Rules of Engagement
Provide technical oversight
Review testing methodologies
Ensure technical quality
Mentor penetration testers
Validate technical findings
Lead advanced penetration testing, including Red Team operations
Perform Cloud security testing
Perform AI security testing
Perform Active Directory attacks
Perform Wireless testing
Perform Mobile security testing
Perform Web application assessments
Perform Social engineering assessments
Perform Container security testing
Perform Internal network assessments
Perform External network assessments
Serve as a cybersecurity advisor to OIG auditors by providing technical guidance
Support complex audits
Evaluate security architectures
Review vulnerability data
Advise on remediation strategies
Serve as a Cyber Range advisor
Develop executive briefings
Develop OARS findings
Develop penetration test reports
Develop conclusions memoranda
Develop attack confirmation lists
Develop risk analyses
Develop technical recommendations
Develop and deliver 4–5 day penetration testing courses
Deliver hands-on laboratories
Deliver live exploit demonstrations
Deliver capstone exercises
Coach instructors
Develop training materials
Develop student guides
Develop presentation slides
Technical Expertise
Demonstrated expertise in offensive security
Threat emulation
Adversary tactics
Cloud security
Active Directory
Application security
Network security
Secure development
Risk management
Federal cybersecurity
Minimum Qualifications
Bachelor's degree
Master's preferred
10+ years of penetration testing experience
5+ years leading technical teams
Extensive report writing experience
Strong presentation skills
Highly Desired Certifications
One or more advanced certifications
OSCE
OSE
PEG
PEN
CISSP
GREM
CRTO
CART
PCART
PCARTC
Preferred Experience
Experience with:
HHS OIG
DHS
Office of Inspector General organizations
NIST SP 800-115
Federal auditing
Cyber Range environments
Offensive security consulting