BAE Systems Cybersecurity - Attack Surface Management has an opening for Penetration Tester to assess security controls and work closely with stakeholders to improve overall security posture. Position will work on a wide array of engagements, including incident response, compliance, application accreditation, assessment of new products, and general projects. This is an exciting opportunity to work with a highly motivated team of cyber security professionals.
Technical Skill Requirements:
Ability to use and analyze information produced from various commercial and open source tools, including Qualys, Burp Suite, Nmap, Wireshark, etc.
Familiarity with modern vulnerability categories and attack techniques (XSS, CSRF, SQLi).
Proficiency in one or more scripting languages (Python, Perl, Bash, etc.)
Ability to map controls to the MITRE ATT&CK framework
Familiarity with large network infrastructure components (Load balancers, Proxies, hybrid cloud implementations, VPNs)
Familiarity with network and host-based security system components (Firewalls, Endpoint Protection Solutions)
Familiarity with modern virtualization platforms and technology.