Penetration Tester - Journeyman

OneZero is looking for solutions-oriented professionals to join our diverse team of Cyber Security Specialists supporting the United States Coast Guard in Alexandria, VA. We are an employee-centric company that truly appreciates our team members and their value to our customers and the missions they support. We pride ourselves on being forward-leaning thinkers and fostering teams that are and continue to be technically proficient and technically capable across a comprehensive range of cyber mission areas. OneZero full-time employees receive an extremely competitive benefits package that includes health/dental/vision/life insurance plans, 401K with company matching, PTO & paid holidays, employee referral program, and educational assistance. Additional details can be found on our website at: https://www.onezerollc.com/careers/

Position Title Penetration Tester Journeyman

Clearance TS/SCI

Location Alexandria, VA

Responsibilities:

• Plan and execute penetration assessments against various technology types, Cloud, Mobility, Web, Wireless, Database, Network, and End-Point assets and services.
• Assist customers in the identification, application, and validation of weakness mitigation strategies
• Conduct research and training on current and emerging malicious code threats and possible attack vectors
• Participate in organizational Red and Blue team exercises

Requirements:

• Active Top Secret with SCI eligibility security clearance
• 5+ years of relevant experience.
• Excellent written and oral communication skills a must, with the ability to work independently or as a member of a team
• Proficiency with any three of the tools listed below:
  • Kali Linux
  • Metaspoilt
  • Burpsuite
  • Cobalt Strike
  • Pentest.WS
  • Web Inspect
  • Scuba
  • Wireshark
  • Appdetective
  • sqlmap
  • Aircrack-ng
• Demonstrated experience in Vulnerabilities Assessment and Penetration Testing (VAPT)
• Working knowledge of common Penetration Testing TTPs and methodologies
• Experience in Python and PowerShell script development
• Familiarity with the MITRE ATT&CK framework
• Familiarity with industry standards and publications libraries such OWASP, NIST, SANS, PCI, ISO 27001, MITRE, etc.
• Familiarity with Cloud technology and related security concepts

Certifications:

DOD 8570 IAT II or III qualifying certification required. Red Team Apprentice Certification (RTAC) or GPEN is required for the red team,

One or more of the following certifications are preferred: PenTest+, CEH, CFR, OSWP, OSEE, GXPN, CCNA Cyber Ops, CCNA-Security, CySA+, GCIA, GCIH, SCYBER,

OneZero Solutions, LLC is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability.

If you are a qualified individual with a disability or a disabled veteran, you have the right to request an accommodation if you are unable or limited in your ability to use or access www.onezerollc.com/careers as a result of your disability.

To request an accommodation, please contact us at recruiting@onezerollc.com or call (202) 987-2580.