Cybersecurity Exploit Developer

EWA, a Sigma Defense company, is seeking a Cybersecurity Exploit Developer to provide on-site support to our customer in Suffolk, VA.
As part of an industry leading cyber defense assessment team, the Cybersecurity Exploit Developer must be able to develop and create tools and means to demonstrate penetration and exploitation techniques of computer networks, operationalized tool capabilities to defeat current and emerging exploit mitigation techniques, and bypass or evade defensive tools and maintain a covert presence within a network.

The hired candidate will be responsible for ensuring end-to-end functionality of the tools and making sure they are robust and ready for training and exercise support.

Equal Opportunity Employer/Veterans/Disabled: Sigma Defense Systems is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability.

Requirements

• 5+ years of experience in exploit development, reverse engineering, and red team capabilities and engineering.

Mandatory Certifications:

• Certified Ethical Hacker (CEH)
• Security+ or higher
• Certification + two technical certifications from the following list:
• Web Application Penetration Tester (WAPT)
• GIAC Web Application Penetration Tester (GWAPT)
• GIAC Certified Network Associate (CCNA)
• Offensive Security Certified Professional (OSCP)
• Offensive Security Certified Expert (OSCE)

Preferred Skills

• Experience examining various cyber threat TTPs, organizational structures, capabilities, personas, environments, and integrating findings into penetration tests or exercises.

• Ability to design, build, and implement:

• Software
• Cyber Assessment tools
• Information Assurance products
• Computer security applications
• Experience with computer network or system design and implementation.
• Knowledge of virtualization technology. (VMWare, VirtualBox, etc.)

Personnel Clearance Level:

• Candidate must possess an active, DoD-issued Secret security clearance.

Essential Job Duties (not all inclusive):

• Analyze and extrapolate from the latest cyber threat intelligence new and evolving attack techniques.
• Develop tools to emulate effects of cyber-attacks for training.
• Develop usable exploits and implants.
• Design and develop obscured communication and control channels.
• Conduct end-to-end testing of attack tools to ensure intended functionality while evading defensive tools.
• Collaborate with a team of experienced developers to create usable and robust attack tools.
• Collaborate across Cybersecurity professionals and similar teams to prioritize the development for the systems of interest.
• Exploit common vulnerabilities and misconfigurations associated with common operating systems. (Windows, Linux, etc.), protocols (HTTP, FTP, etc.), and network security services (PKI, HTTPs, etc.).

Salary Range: $120,000 - $150,000 annually.

Benefits