View all jobs
Senior Penetration Tester with 50% Travel
Remote, USAOverview: Cyber Defense Technologies (CDT) is seeking a highly skilled and motivated Penetration Tester to join our dynamic team. The ideal candidate will have a strong background in cybersecurity, with extensive experience in conducting penetration tests, identifying security vulnerabilities, and providing actionable recommendations to enhance the security posture for our clients. This will include supporting a variety of testing engagement with the Federal, State, and Local government customers. This is a remote position but will require 50% of your time on travel to varying site locations within the US. GPEN certification required. Candidates with an OSCP certification are highly encouraged to apply.
Clearance Requirements: U.S. Citizens and be able to pass a 5-year background investigation. Candidates who do not meet this requirement will not be considered.
Responsibilities:
Qualifications:
Travel: Travel will be required across the US 50%+ of the time. The remainder of the time can be WFH.
CDT is committed to diversity and inclusion. We are proud to be an Equal Opportunity Employer, making decisions without regard to age, race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, veteran status, disability, or any other protected class under federal, state, or local laws.
Clearance Requirements: U.S. Citizens and be able to pass a 5-year background investigation. Candidates who do not meet this requirement will not be considered.
Responsibilities:
- Participate in a variety of pentesting engagements independently, with a consulting team, and alongside our Direct Action Team.
- Conduct thorough penetration tests on web applications, network, and systems to identify security vulnerabilities and weaknesses.
- Document and report findings, including descriptions of vulnerabilities, potential impact and recommended remediation steps to customers.
- Comfortable conducting extensive independent research when troubleshooting complex technologies or problems.
- Conduct kick-off meetings, project briefings, and closeout presentations to stakeholders who hold a variety of technical knowledge/understanding (zero to expert).
- Collaborate with internal teams and customers to prioritize and address security issues in a timely manner.
Qualifications:
- 5+ Years of directly related work experience performing IT security risk assessments, web application pentesting, vulnerability testing.
- Fluency in scripting in one of the following languages: Python, C++, Go
- Experience identifying and exploiting/mitigating vulnerabilities in Windows/Active Directory Environments, Web Applications, Network Components, Desktop Applications, Cloud Environments.
- Experience with Social Engineering/Phishing
- Required Certifications: GPEN
- Preferred Certifications: OSCP, OSWP, OSCE, OSWE, GWAPT, CEH, CISM, GWEB, CISSP.
- Experienced with the following Web Application tools; Burp Suite, Web Inspect, Empire.
- Able to work well on teams with multiple levels of skillsets and observe where help is needed and proactively offer expertise when needed.
Travel: Travel will be required across the US 50%+ of the time. The remainder of the time can be WFH.
CDT is committed to diversity and inclusion. We are proud to be an Equal Opportunity Employer, making decisions without regard to age, race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, veteran status, disability, or any other protected class under federal, state, or local laws.