This contingent position is being considered & hired for all non-management levels (G08-G11) based upon selected candidate's applicable experience.
Raytheon Blackbird Technologies is seeking to hire an experienced Penetration Tester to conduct penetration testing and generate associated vulnerability assessment for one of our clients.
The Penetration Tester must be able to plan, communicate, coordinate and conduct penetration tests and security assessments for applications, systems and enterprise networks. Candidates must have 4+ years of penetration testing experience.
This position would be based on site in Falls Church (Merrifield), Virginia.
Job responsibilities would include:
* Plan, communicate, coordinate and perform penetration testing, application testing, and security assessments at application, system and enterprise level * Develop Rules of Engagement, scoping documents and reports * Perform manual penetration tests and validation of vulnerability scan results * Develops automation/scripts for replicating vulnerability validation and penetration tests * Devises plans and scenarios for various types of penetration tests * Documents exploits and results in remediation in final vulnerability assessment report * Perform information technology security research to remain current on emerging technology trends and develop exploits for disclosed and undisclosed vulnerabilities * Contributes to developing and implementing tools for penetration testing and early warning of weaknesses or possible incidents building on methodologies as promulgated by NIST, ISO, etc. to ensure useful, measurable, and repeatable methods applied to quantifying risk * Selects, installs, and configures security testing platforms and tools or develop tools and procedures for penetration tests * Performs penetration testing using standard penetration tools (Metasploit, Nmap, Nessus, Burp Suite, etc.) * Performs off-hours work as necessary
Required experience and skills:
* Must be eligible to obtain a sensitive clearance - Position of Public Trust - and may be required to obtain a higher security clearance. * Experience with web and mobile applications, databases, operating systems * Experience in penetration testing large and complex enterprise networks * Experience with utilizing penetration testing framework such as OWASP * Experience with regulatory compliance, policy development, and policy enforcement * Experience with FISMA compliance and the NIST SP 800 series * Experience in the roles identified above * 4+ years of network or system security * 4+ years of penetration testing work experience * Excellent communication and interpersonal skills * Hands-on OS configuration/administration experience * Programming experience with focus on penetration testing or process automation * Experience with the following technologies: * Kali Linux * Metasploit * Nmap * Burp Suite
* Experience with cyber security development projects and programs for U.S. Government and/or commercial clients * Experience with process development and deployment * Experience with the following technologies: * Tenable SecurityCenter * HP Fortify * IBM AppScan * WebInspect
* Experience with three or more of the following: * Security COTS integration * Operating System Hardening * Vulnerability Assessment testing * Identification and Authentication schemes * Public Key Infrastructure and Identity Management * Cross Domain Solutions * Reverse Engineering * Security engineering * Mobile Technologies * Cloud Computing
Bachelor's Degree in related field or equivalent experience in military, civil, or corporate continuity planning will be considered.
Desired Certifications (one or more):
OSCP, CISSP, CEH preferred.
143624BR 143624 Business Unit Profile
Raytheon Intelligence, Information and Services delivers innovative technology to make the world a safer place. Our expertise in cyber, analytics and automation allow us to reach beyond what others think is possible to underpin national security and give our global customers unique solutions to solve the most pressing modern challenges -- from the cyber domain to automated operations, and from intelligent transportation and training solutions to creating clear insight from large volumes of data. IIS operates at nearly 550 sites in 80 countries, and is headquartered in Dulles, Virginia. The business area generated $6.2 billion in 2018 revenues. As a global business, our leaders must have the ability to understand, embrace and operate in a multicultural world -- in the marketplace and the workplace. We strive to hire people who reflect our communities and embrace diversity and inclusion to advance our culture, develop our employees, and grow our business.
Public Trust Current
Integration & Test Engineering
Type Of Job
VA - Falls Church
VA - Merrifield
Raytheon is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, creed, sex, sexual orientation, gender identity, national origin, disability, or protected Veteran status.
Raytheon is a global company that specializes in defense and other government markets.