Penetration Tester - Mid Level, Cyber Defense Technologies, Dayton, OH
Cyber Defense Technologies -
Dayton, OH,
US
Penetration Tester - Mid Level
Date Posted: 2024-06-17
Job description
Overview: Cyber Defense Technologies (CDT) is seeking a highly skilled and motivated mid-level Penetration Tester to join our team in Dayton, Ohio. The ideal candidate will be assessing the security posture of systems and applications by identifying and exploiting vulnerabilities. You will be responsible for comprehensive testing of cyber mitigation controls, through test plan creations, test case (manual and/or automated) development and test case execution.
Clearance Requirements: An active Secret clearance is required. Candidates who do not meet this requirement will not be considered.
Responsibilities:
Clearance Requirements: An active Secret clearance is required. Candidates who do not meet this requirement will not be considered.
Responsibilities:
- Conduct thorough penetration tests on web applications, network, and systems to identify security vulnerabilities and weaknesses.
- Documents and report findings, including descriptions of vulnerabilities, potential impact and recommended remediation steps to customers.
- Develop and execute detailed testing procedures, including both manual and automated tests, to evaluate the security of systems and applications.
- Comfortable conducting extensive independent research when troubleshooting complex technologies or problems.
- Conduct kicks off meetings, project briefings, and closeout presentations to stakeholders who hold a variety of technical knowledge/understanding (zero to expert).
- Collaborate with internal teams and customers to prioritize and address security issues in a timely manner.
- 5+ Years of directly related work experience (performing IT security risk assessments, web application penetration testing, and/or vulnerability testing).
- Experience in writing scripts and tools in languages such as Python, Bash, or Ruby.
- Excellent problem-solving skills and ability to think like both a tester and an attacker.
- Strong communication skills, both written and verbal, with the ability to present findings to technical and non-technical audiences.
- Preferred Certifications: OSCP, GWAPT, GPEN, CEH, CISM, GWEB, CISSP.
- Experienced with the following Web Application tools; Burp Suite, Web Inspect, Empire.