Penetration Tester

Posted:
9/27/2024, 7:17:12 AM

Location(s):
Alabama, United States ⋅ Huntsville, Alabama, United States

Experience Level(s):
Junior ⋅ Mid Level

Field(s):
IT & Security ⋅ Software Engineering

Leidos Defense Systems is seeking a full-time Penetration Tester - Security Engineer to perform penetration tests on customer systems in the defense, space, cyber, and commercial fields. The ideal candidate will possess strong technical skills, including proficiency in networking, operating systems, and programming, as well as the ability to think creatively and strategically to anticipate potential threats. They will also possess the ability to analyze both open and closed-source intelligence to determine potential cyber threat Tactics, Techniques, and Procedures (TTPS), attack vectors, and risks to systems of various size and complexity.

Primary Responsibilities

.

  • Penetration testing customers systems and networks.
  • Deep-dive preparatory analysis for systems under test.
  • Penetration testing at multiple stages of the system development/acquisition lifecycle.
  • Developing and recommending detailed cyber threat mitigation strategies for customer systems and networks.
  • Exploiting vulnerabilities and misconfigurations within operating systems, protocols, and networks.
  • Researching and developing various cyber threat actor Tactics, Techniques, and Procedures (TTPs).
  • Offensive tool development for use in stand-alone and network-connected systems.
  • Timely delivery of development updates and after-action reports.
  • Create detailed reports outlining vulnerabilities, risks, and remediation strategies.
  • Maintaining a comprehensive understanding of the cyber threat landscape, situational awareness of emerging threats, zero days, vulnerabilities and other threats against customer systems, networks, and assets including identifying and analyzing cyber threats actors and/or activities.

Basic Qualifications

  • Bachelors in Cyber Security, Computer Science, Computer Engineering, Electrical Engineering, or related Technical Degree.
  • Four years of relevant experience in penetration testing/red teams or related security field, or a Masters’ degree in a related field with + two years of experience.
  • Proficient with Linux (preferably Kali, Parrot, or similar distros) and Windows Operating systems
  • Experience with using scripting languages such as bash, python, etc.
  • Strong background in computer security, administration, forensics, systems analysis, etc.
  • Exceptional problem-solving skills.
  • Must be a resident of North Alabama area or be willing to relocate to the Huntsville/North Alabama area. 
  • Must have the ability to obtain and maintain a Top-Secret clearance.                                                           

Preferred Qualifications

  • Hands-on experience with performing penetration tests, reverse engineering, and/or system analysis
  • Prior DoD experience.
  • Strong communication skills and documenting and relaying findings to customers.
  • Strong understanding of TCP/IP network architecture.
  • Experience with developing exploits using scripting languages such as bash, python, etc.
  • Extensive experience with scanning/analysis tools (nmap, burpsuite, nikto, etc.)
  • Extensive experience with exploitation tools (Metasploit, Cobalt Strike, etc.)
  • Extensive Knowledge of the MITRE ATT&CK and D3FEND Frameworks.
  • Completion or work towards CISSP, GSEC, GCIH, GPEN, OSCP, or similar technical certification

Original Posting Date:

2024-09-27

While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

Pay Range:

Pay Range $81,250.00 - $146,875.00

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.