(487) Senior Penetration Tester

Company Summary

Arlo Solutions (Arlo) is an information technology consulting services company that specializes in delivering technology solutions. Our reputation reflects the high quality of the talented Arlo Solutions team and the consultants working in partnership with our customers. Our mission is to understand and meet the needs of both our customers and consultants by delivering quality, value-added solutions. Our solutions are designed and managed to not only reduce costs, but to improve business processes, accelerate response time, improve services to end-users, and give our customers a competitive edge, now and into the future. 

Position Description

Position Overview We are seeking an experienced and highly skilled Senior Penetration Tester to support a Federal Government Agency. This role requires expertise in evaluating, analyzing, and improving the security posture of complex federal environments. As part of our team, you will lead penetration testing efforts to identify vulnerabilities, assess risks, and deliver actionable solutions to strengthen the security of critical systems.

At this time, it is unknown if the position will be on-site, remote, or hybrid. The assumption is that on-site work will be required 5 days a week. This senior-level position is ideal for a motivated individual with 8+ years of hands-on experience in penetration testing, vulnerability assessments, and security consulting. You will play a critical role in safeguarding vital systems and data for the Federal Government Agency.

Work Environment and Benefits Full-time, senior-level position with opportunities for professional growth. Work location to be determined; may include on-site, remote, or hybrid options. Competitive salary commensurate with experience, plus performance-based bonuses. Comprehensive benefits package, including health insurance, retirement plans, and paid time off. Access to training, certifications, and conferences to maintain cutting-edge skills.

How to Apply Submit your resume and a detailed cover letter outlining your experience, certifications, and notable projects in penetration testing. Include links to any relevant publications, GitHub repositories, or professional portfolios.

Location:  Arlington, VA

Clearance: Secret
 

Responsibilities and/or Success Factors:

• Key Responsibilities Conduct advanced penetration testing, vulnerability assessments, and exploit development across diverse environments, including on-premises, cloud, and hybrid infrastructures.
• Develop and execute comprehensive test plans and methodologies to assess systems, applications, networks, and devices for security vulnerabilities.
• Ensure compliance with relevant government standards such as NIST 800-53 and NIST 800-171.
• Produce detailed reports with findings, mitigation strategies, and actionable recommendations tailored to Federal Government Agency requirements.
• Collaborate with stakeholders to understand security objectives and provide technical expertise in securing federal systems.
• Stay current with emerging threats, attack vectors, and security trends to inform testing methodologies.
• Mentor junior team members, fostering skill development and ensuring the delivery of high-quality penetration testing services.
• Assist with proposal development, scoping of engagements, and client presentations to articulate security needs and solutions.

Required Qualifications:

• Must possess an active Secret clearance (or higher) or be eligible to obtain one.
• Bachelor’s degree in computer science, Cybersecurity, or a related field (or equivalent experience).
• Minimum of 8+ years of experience in penetration testing, vulnerability assessments, and/or red team operations.
• Proven experience with tools such as Burp Suite, Metasploit, Nessus, Kali Linux, and custom scripts for testing and exploitation.
• Deep understanding of network protocols, operating systems, and application security vulnerabilities (e.g., OWASP Top 10, MITRE ATT&CK framework).
• Relevant certifications, such as OSCP, OSCE, GPEN, GXPN, CEH, CISSP, or equivalent.
• Strong knowledge of federal compliance standards, including NIST frameworks.
• Excellent communication and report-writing skills, with the ability to convey complex findings to technical and non-technical audiences.

Preferred Qualifications:

• Master’s degree in Cybersecurity or a related field. Experience supporting federal contracts.
• Knowledge of scripting languages such as Python, PowerShell, or Bash.
• Experience with cloud platforms such as AWS, Azure, or Google Cloud.

AAP Statement

We are proud to be an Affirmative Action and Equal Opportunity Employer and as such, we evaluate qualified candidates in full consideration without regard to race, color, religion, sex, sexual orientation, gender identity, marital status, national origin, age, disability status, protected veteran status, and any other protected status.