Penetration Tester
Must be U.S. Citizen to Apply
ACTIVE Secret Security Clearance Required
Position Overview:
We are seeking a talented and experienced Penetration Tester to join our dynamic team. As a Penetration Tester at Calano & Associates, LLC, you will be responsible for evaluating and strengthening the security posture of our clients' systems, networks, and applications. This role involves simulating real-world cyber-attacks to identify vulnerabilities and provide actionable recommendations to enhance security defenses.
Key Responsibilities:
1. Develop security engineering requirements, procedures and policies for penetration and red team testing activities.
2. Collaborate with clients to understand their security requirements and provide tailored penetration testing services.
3. Analyze and interpret security assessment results, producing comprehensive and detailed reports for clients.
4. Provide expert guidance to clients on remediation strategies and proactive security measures.
5. Assess the current state of the customer's system security by identifying all vulnerabilities and security measures to help the customer perform analysis and mitigation of security vulnerabilities.
6. Collaborate with the government to perform penetration testing or facilitate penetration testing by an independent source and security assessment activities in accordance with FedRAMP requirements.
7. Conducting penetration test based on results of network mapping, vulnerability scanning, operating systems security, phishing exercise, web, database, and wireless assessments.
8. Facilitate meetings with government representatives to identify the parameters of the penetration testing and requirements for daily reports designed to identify progress on discovered issues.
9. Conduct in-depth security engineering reviews and approve proposed systems/application security control implementations used
Qualifications:
· Master’s degree in Computer Science, Information Security, or a related field.
· Proven experience as a Penetration Tester or Ethical Hacker.
· Strong knowledge of networking protocols, operating systems, and web application security.
· Familiarity with security frameworks, standards, and compliance requirements (e.g., OWASP, NIST, ISO 27001).
· Proficiency in using penetration testing tools and frameworks (e.g., Metasploit, Burp Suite, Nmap).
· Relevant certifications such as OSCP, CEH, or CISSP are highly desirable.
Job Types: Part-time, Temporary
Pay: $110,000.00 - $135,000.00 per year
Experience level:
- 7 years
Schedule:
- Day shift
- Monday to Friday
Work Location: Remote