KPS1978 Cybersecurity Penetration Tester - WAP Analyst

Twitter Facebook
Alexandria, VA
Job Type
Direct Hire
Dec 14, 2017
Job ID
Job Title: Cybersecurity Penetration Tester - WAP Analyst
Location: Alexandria, Virginia 22310
Client Summary
Our Client is a Service-Disabled Veteran-Owned business.  It was founded in 2005 to address the IT and infrastructure challenges facing Federal government agencies.  Since that time, they have established themselves as one of the fastest growing providers of technology and consulting services across Federal government, State and Local government, and commercial enterprises.  Their staff maintain expertise spanning a wide spectrum of IT management, technology, and service solutions.  They are a Cisco Gold Partner and are appraised at Capability Maturity Model Integration (CMMI) Level 2.  Through the International Organization for Standardization, they hold an ISO 20000-1:2011 certification for Information Technology Service Management and ISO 27001:2005 certification for Information Security Management System.
Our client has been repeatedly recognized as one of the elite in the field.  The company was named to Inc. Magazine’s “The Build 100”, designating the Unites States’ Strongest and Most Strategic Growth Firms.  Our client has also been recognized on Inc. Magazine’s “Top 5000 Fastest Growing Private Companies” in 2012, 2013, and 2014.  The Washington Post recognized them on their 2014 “Top Work Places -Small Employers” list.  They have been named as the #1 best place to work in Virginia, by Virginia Business magazine, in our respective category for the fourth consecutive year.  This award is composed of two parts; 25% was a look at the benefits that an organization offers and the other 75% was based on surveys of the employees in the state.
Our client is an EEO/AA employer.  Our client is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability status, protected veteran status, or any other characteristic protected by law.  They promote affirmative action for minorities, women, disabled persons, and veterans. 
Position Summary:
The Cybersecurity Penetration Tester will have at least two years of specialized penetration testing to include network vulnerability scans, security assessments, penetration testing of networks and systems in cloud-based and traditional target environments, and preparation of penetration testing results in written report formats and in formal presentation to senior managers. The ideal candidate will also have experience in web server scanning, database scanning, PCI scanning, and wireless access point scanning; however, system and network penetration testing will be the primary focus of the position as this job requires two individuals and they will perform both penetration testing and wireless access point testing as part of their primary duties.
The ideal candidate will be able to identify and remediate security flaws across systems, web applications, and mobile platforms, and have a basic understanding of computer forensics and incident response.
  • Penetration testing of client systems throughout the enterprise
  • Wireless access point analysis including travel to field sites to review installation and scan WAPs for compliance
Success Factors / Job Competencies:
  • Ability to demonstrate actual skills on various penetration testing tools on provided laptop during interview process
Physical Demands and Work Environment:
  • Job Location: Springfield, VA
  • Position Type:  Full Time
  • Compensation: Highly competitive salary package
  • Travel: Approximately 25% after 1 February 2017 
  • Systems Engineering or System Admin work experience (enterprise-level):4+ years of which 2 must have hands-on penetration testing experience,
  • Experience trouble-shooting and remediating Windows and Linux Centos OS
  • Some programming experience; e.g. JavaScript, C++, Python
  • Experience with virtualized test environments
  • Strong knowledge of threat detection/removal/mitigation (Viruses/Malware/Trojans)
  • Experienced in VPN technologies, IPSec, L2TP, PPTP, etc.
  • Experience with remote application and network penetration testing
  • Practical exposure to AWS, Azure, and other cloud-based technologies
  • Experienced in writing in-depth reports based on findings and making presentations to clients on findings
  • Experienced in many security tools; Nmap, Metasploit, Kali Linux, Burp Suite Pro, Zed Attack Proxy (ZAP), Core Impact, etc.
  • Must be able to pass a Federal background investigation
  • Ability to travel 25%
  • 2+ years of documented penetration testing expertise
Preferred Qualifications:
  • B.S. in Computer Science or Engineering (or comparable field); practical experience can be substituted for a degree on a 1-1 basis (one year of experience = 1 year of school)
  • One or more of the following certifications: OSCP, CEH, GPEN, GWAPT, CISSP