Job Directory Penetration Tester

Penetration Tester
Alexandria, VA

Companies like
are looking for tech talent like you.

On Hired, employers apply to you with up-front salaries.
Sign up to start matching for free.

About

Job Description

Kingfisher Systems, Inc. specializes in providing a full range of Information Technology, Cybersecurity, Intelligence, and support services to the U.S. Government. Kingfisher Systems core competency is technology-enabled services, with a specific focus on national security. Since 2005, Kingfisher has established itself as a recognized and trusted mission partner whose mission is safeguarding sensitive information, operations, and programs for our Federal customers and warfighters.

Penetration Tester

Certification: GPEN, OSCP, GWAPT, LPT or equivalent certification.

Education: BS IT (preferred)

Clearance: US Public Trust

Experience:

3+ Years in field. Expertise in ethical hacking, penetration testing using tools such as Metasploit, Core Impact, etc. Must have GPEN, OSCP, GWAPT, LPT or equivalent certifications. Perform penetration testing on client systems and applications utilizing industry standard penetration toolsets; document systems configurations, hosts, URLs, and system diagrams; review and test system accounts and other user/system defined configuration parameter produce detailed test results and reports to include: System Vulnerability Profiling, Network Architecture Analysis, System / Application / Data Exposure, Intrusion Impact Analysis, Intrusion Threat and Business Risk Analysis.

Responsibilities:

Identify internal network topology and design vulnerabilities using information gathering, port scanning, vulnerability scanning and/or password cracking. Identify access points and connections from the internal network to selected critical systems or network segments that are intended to be isolated. Execute port scans on target hosts to identify active services and test the known vulnerabilities of system software, in conjunction with the open ports. Identify system-level vulnerabilities in operating systems and their configuration for Trojan horses, buffer overflows, SQL injection, and cross-site scripting, etc. Identify application-level vulnerabilities that are accessible from within the network to determine the ease of access to sensitive information that is not authorized by the login account. Analyze web applications web pages to gather the general understanding of functionality to ascertain risk, hidden content, or information leakage.

Kingfisher Systems, Inc. is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, protected veteran status, among other things, or status as a qualified individual with a disability.

Let your dream job find you.

Sign up to start matching with top companies. It’s fast and free.