Lead Penetration Tester - Mid Level - 8+ Yrs Exp
Location
Annapolis Junction, MD | United States
Job description
Prodigy One, LLC. is a software engineering and consulting firm providing more than 45 years of service to state and federal customers. By combining unparalleled experience and capabilities, our company provides big data, cloud development, and enterprise management solutions. We are focused on product usability and end user presentation to help our customers make the best decisions possible. Given our length of service in the industry, Prodigy One knows the importance of a competitive salary and benefits package. That's why our total compensation package can be tailored to meet employees personal needs.
A CLEARANCE IS REQUIRED TO BE CONSIDERED FOR THIS ROLE Clearance required: Active TS/SCI clearance with Polygraph
Location: Annapolis Junction, MD
Desired: Mid Level
Salary: 170K-181K (The compensation of this position starts at the lower amount of the stated salary range while higher amounts may be achieved by the candidate accepting less PTO, waiving Healthcare, or both.)
A Lead Penetration Tester is needed to join a high performing agile team using the Scaled Agile Framework ﴾SAFe﴿ methodology. The selected candidate will work on a team of cyber Subject Matter Experts ﴾SMEs﴿ who are providing support to a large, complex technical program for preventing, identifying, containing and eradicating cyber threats to networks through monitoring, intrusion detection and protective security services on information systems including local area networks/wide area networks ﴾LAN/WAN﴿, commercial Internet connections, public facing websites, security devices, servers and workstations. She/he will be responsible for the overall security of Enterprise‐wide information systems, and will collect, investigate, and report any suspected and confirmed security violations.
Primary Responsibilities - Perform internal and external pentest against systems to determine vulnerabilities and offer mitigation strategies.
- Perform web app pentests.
- Perform vulnerability risk assessment.
- Perform physical pentests and social engineering.
- Perform cyber incident response as needed for programs.
Basic Qualifications - Must have experience in web development and programming languages such as Java, XML, Perl and HTML.
- Must have extensive experience performing IT security risk assessments.
- Must have experience performing web app and physical pentests.
- Experience with programming/scripting in Python, Powershell, C, JavaScript, etc.
- Must have experience with or strong familiarity of the following Web Application tools; Burp Suite, Web Inspect, Appdetective.
- Must have experience with or strong familiarity of Kali.
- Must have experience with or strong familiarity of IPS/IDS solutions.
- Must have a strong understanding of the Cyber Kill Chain methodology.
- Must have the ability to effectively collaborate with technical staff and customers when necessary to forming strategies and plan for continuous modernization and legacy integration.
- Must have experience managing multiple projects and quickly and effectively adjusting to shifting priorities and resolving issues.
Preferred Qualifications - BS in a related field and at least 8 years of relevant experience
- Certifications in one or more of the following areas:
- GIAC Web Applications Penetration Tester ﴾GWAPT﴿
- GIAC Penetration Tester ﴾GPEN﴿
- Certified Ethical Hacker ﴾CEH﴿
- Certified Information Security Manager ﴾CISM﴿
- Certified Web Application Defender ﴾GWEB﴿
- Certified Information System Security Professional ﴾CISSP﴿
Benefits: • Healthcare for Employee and Spouse and/or Children that is fully funded by Prodigy One
• 10% Employer Contribution to 401K; Immediately Vested
• 7 Weeks Paid Time Off (PTO)
• $2500 for Professional Development
Prodigy One, LLC provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.
This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.
Job tags
Salary