OSCP Certified, Penetration Tester (USA Based)

Make a difference here.
UltraViolet Cyber is a leading platform-enabled unified security operations company providing a comprehensive suite of security operations solutions. Founded and operated by security practitioners with decades of experience, the UltraViolet Cyber security-as-code platform combines technology innovation and human expertise to make advanced real-time cybersecurity accessible for all organizations by eliminating risks of separate red and blue teams.
By creating continuously optimized identification, detection, and resilience from today’s dynamic threat landscape, UltraViolet Cyber provides both managed and custom-tailored unified security operations solutions to the Fortune 500, Federal Government, and Commercial clients. UltraViolet Cyber is headquartered in McLean, Virginia, with global offices across the U.S. and in India. 
UltraViolet Cyber (UV Cyber) is seeking an experienced Penetration Tester with a background in Web Applications, Network, and Cloud Security. This individual will play a key role in conducting penetration tests as one of the core capabilities of UltraViolet Cyber and our customers. The penetration tester will execute simulated attacks against client information technology systems to demonstrate susceptibility to such attacks by an adversary, including advanced persistent threats (APTs). Qualified candidates must be able to assess target systems, identify vulnerabilities, safely exploit those vulnerabilities, and effectively communicate the risk to the client.
US Citizenship required, and candidates must be willing to be submitted for a US Government background investigation.
Ability to Travel 1 Week Every 2 Months 
No third-party candidates will be considered 

Responsibilities

• Conduct web application, mobile application, network, wireless, and operational technology penetration tests.
• Conduct security assessments of cloud environments and application source code review.
• Conduct penetration tests in accordance with standard methodologies (i.e. OWASP, NIST, PTES).
• Use common penetration testing and red-team tools, tactics, techniques, and procedures.
• Utilize custom penetration testing tools, frameworks, and infrastructure.
• Assess risk of discovered vulnerabilities based on likelihood and severity of exploitation.
• Document and deliver technical reports on detailed findings and vulnerability remediation recommendations.
• Collaborate with clients throughout an assessment on status and vulnerability information.
• Evolve our capabilities and toolset.

Required Experience:

• Familiarity with Security Content Automation Protocols (SCAP), Common Vulnerabilities and Exposures (CVE), Common Vulnerability Scoring System (CVSS), Common Weakness Enumeration (CWE), or Common Platform Enumeration (CPE)
• Understanding US Government Configuration Baseline (USGCB), Security Technical Implementation Guides (STIGs), NSA Guides, National Checklist Program (NCP) or Common Secure configurations
• Penetration Testing in 3 or more of the following:
• - Web Applications
• - Network (Internal / External)
• - Active Directory
• - Mobile Applications
• - Cloud Environments
• - Phishing


• Tools / Services:
• - NMAP
• - BurpSuite
• - CrackMapExec
• - BloodHound
• - Ansible
• - Terraform
• - Git
• - AWS

Minimum Requirements

• Bachelor’s Degree in Cybersecurity or related field preferred
• At least 2 years of experience related to conducting penetration tests or red-team assessments
• Ability to Travel 1 Week Every 2 Months 
• Offensive Security Certified Professional

Benefits at UltraViolet Cyber!

• 401(k), including an employer match of 100% of the first 3% contributed and 50% of the next 2% contributed  
• Medical, Dental, and Vision Insurance (available on the 1st day of the month following your first day of employment)  
• Group Term Life, Short-Term Disability, Long-Term Disability  
• Voluntary Life, Hospital Indemnity, Accident, and/or Critical Illness  
• Participation in the Discretionary Time Off (DTO) Program  
• 11 Paid Holidays Annually  

We sincerely thank all applicants in advance for submitting their interest in this position. We know your time is valuable.
UltraViolet Cyber welcomes and encourages diversity in the workplace regardless of race, gender, religion, age, sexual orientation, gender identity, disability, or veteran status. 
If you want to make an impact, UltraViolet Cyber is the place for you!