Registered User? - Login Here :    Email (User ID):    Passcode:        Forgot Password?

Penetration Tester - Vienna, VA 22180 - US



Job Posting Information
Employer : WarCollar Industries
Job Title : Penetration Tester
Location : Vienna, VA 22180 - US
Reference Code :
Job Type : Direct-Hire / Permanent Full-Time
Minimum Clearance Level : Top Secret / SCI
Date Modified : 12-01-2020
Salary : (not listed)
Additional Salary Information :
Career Level : Experienced (Non-Manager) 2+ Years of Experience
Education Level : Bachelors
 Save       Print       Email to Friend       Apply     
Job Description


Category: Commercial and Government Location:

Washington DC Metro Area

Why WarCollar?

WarCollar Industries prides itself on being an employee focused company with access to some of the most rewarding and challenging jobs in the market. Because we are rapidly growing, we offer a very unique opportunity for growth within the company. Our founder, Gene Bransfield, takes the approach that he wants his team to be WarCollar employees for their career, not just for a while. With that approach in mind, we offer 100% paid medical, a very generous PTO structure, fantastic tuition reimbursement plan, aggressive recruiting bonuses available for referrals, generous 401(k) and HSA plans, semi-annual bonuses and free night out (with food!) each month (for our monthly team meetings). We even offer pet insurance, other perk reimbursements and identity theft protection. We want to be a choice employer while having fun.

Where we are really different is this; We support our employees through their every day working life. We believe in a good work life balance. Sitting at the dentist on a Saturday and have a question about your insurance? We don’t wait until Monday to get you answers. Need guidance on a work-related items? We’ve structured our company so that you get the guidance you need to perform the tasks you’re asked to perform immediately. Our job is to make your job easier, more rewarding, and more fulfilling. We want our employees to become leaders in their fields and we strive to identify those leaders through every conversation, meeting, and event we have. Sure we have an awesome annual holiday company party, we have a fantastic summer event (think National's baseball game with perks and shade), but we work for you on the days its most important to you, not just important to us.


What we need from you....

Penetration Tester

A penetration tester shall be capable of performing complex assessments while maintaining a focus on meeting client requirements. This position will work both independently and as part of a team to perform Security Assessments including vulnerability assessments and penetration tests. A Penetration tester also contributes to the development and continuous improvement of the Security Assessment practice through various team and industry contributions.

Job responsibilities include:

1. Assess an organization’s network security posture through the use of automated tools and manual
techniques to identify and verify common security vulnerabilities

2. Use creative approaches to identify vulnerabilities that are commonly missed in security assessments

3. Exploit vulnerabilities and identify specific, meaningful risks to clients based on industry and business
focus

4, Perform complex wireless attacks both against wireless clients and access points

5. Use social engineering techniques to obtain sensitive information, network access and physical access to
client sites

6, Execute opportunistic, blended and chained attack scenarios that combine multiple weaknesses to
compromise client environments

7. Create comprehensive assessment reports that clearly identify root cause and remediation strategies

8. Interface with client personnel to gather information, clarify scope and investigate security controls.

9. Execute projects using established methodology, tools and documentation

10. Collaborate with other team members and practices to complete client projects and practice contributions

11. Maintain industry credentials/certifications

12. Participate in industry conferences to include delivering presentations

13. Provide support in the ongoing development of security assessment offerings through tool creation and
process improvement

14. Perform other duties as assigned


Desired Qualifications:

1. Experience performing Vulnerability Assessments, Penetration Tests, Wireless Security Assessments and
and/or Social Engineering including:
a. Network Vulnerability Assessments
b. Penetration Tests
c. Wireless Network Security Assessments
d. Social Engineering (Telephony, onsite and remote pre-texting, spear phishing, etc.)
e. Product/Hardware Security Assessments
f. Web application Vulnerability Assessments (SQLi, XSS, Session management issues, etc.)

2. Experience in a consulting services role, or related information security positions

3. Bachelor’s Degree from a four-year college or university; or equivalent combination of education and
experience

4. OSCP, OSCE, GIAC, CISSP certifications preferred

5. Ability to combine multiple separate findings to identify complex blended vulnerabilities

6. Ability to identify, describe and report of overall information system risk to clients through post-exploitation
activities required.

7. Mastery of commercial and open source security tools required (e.g. Nessus, Nexpose, SAINT, Qualys, Burp,
Nmap, Kali, Metasploit, Meterpreter, Wireshark, Kismet, Aircrack-ng etc.)

8. Familiarity with many different network architectures, network services, system types, network devices,
development platforms and software suites required (e.g. Linux, Windows, Cisco, Oracle, Active Directory,
JBoss, .NET, etc.) required.

9. Demonstrated ability to create comprehensive assessment reports required.

10. Must be able to work well with customers and self-manage through difficult situations, focusing on client
satisfaction.

11. Ability to convey complex technical security concepts to technical and non- technical audiences including
executives required.

12. Ability to work both independently as well as on teams required.

13. Ability to lead and mentor others.

14. Willingness to collaborate and share knowledge with team members.

15. Proven ability to review and revise reports written by peers.

16. Demonstrated effective time management skills, ability to balance multiple projects simultaneously and the
ability to take on large and complex projects with little or no supervision required.

17. Motivation to constantly improve processes and methodologies required.

18. Passion for creating tools and automation to make common tasks more efficient required.

19. Project management experience preferred.

20. Strong programming skills preferred (Python, Ruby, Node.js, C/C++, Assembly, etc.)

21. Reverse engineering/Binary analysis experience (firmware, x86 applications, etc.) preferred.

If you fit most of these qualifications and have a security clearance, we hope you'll give us an opportunity to speak with you about what WarCollar can do for you and your career goals.

WarCollar Industries is an Equal Opportunity Employer and does not discriminate against any person, at any time, for any reason. We are proud of our diversity and encourage all qualified candidates to apply. EOE M/F/D/V