Excentium, Inc. is a Service-Disabled Veteran owned small business that provides Cyber Security Engineering, Information Assurance (IA), management, Certification and Accreditation (C&A), and other IT services to government and commercial organizations.

We have an opportunity for a Remote Penetration Tester supporting one of our Federal customers in Egg Harbor Township, NJ.

MINIMUM CLEARANCE LEVEL: Secret

CITIZENSHIP: US Citizenship

LOCATION: Egg Harbor Township, NJ / Remote

The Penetration Tester should have at least 2 years of hands-on experience in performing external and internal penetration tests using industry-standard tools such as Metasploit, CoreImpact, Nmap, Burp Suite and etc. The Remote Penetration Tester should be able to attend on-site meetings at Atlantic City International Airport, NJ as needed.

Position Overview:

Serves as the technical Penetration Tester.​ Performs penetration testing of the ATO NAS security posture to provide detailed analysis and identification of application, system, and network vulnerabilities; gaps in IT security guidance, and assessment of patching/mitigation methodologies. Will act as Ethical white hat attacker (red teamer) to simulate cyber attacks, and/or Defensive cybersecurity personnel (blue teamer) to harden against simulated attacks. Develops and prepares penetration testing Rules of Engagement, test plans, and reports. Provides recommended remediation actions to lower overall risk exposure, as required. Provides technical expertise on penetration testing tools and simulation environment.
 

Requirements:

• Experience developing custom scripts or tools used for vulnerability scanning and identification as part of penetration testing
• Proficiency with red teaming tests in the performance of penetration testing
• Proficiency in mobile application penetration testing
• Thorough understanding of Windows and Linux based Operating Systems, networking (TCP/IP, Ports, Active Directory, DNS, and DHCP), Switch / Router configuration, and Security
• Proficiency with at least two scripting languages (e.g. Python, Bash, JavaScript, PowerShell)
• Ability to write custom exploit code, Metasploit modules, and attack tools are highly desired
• Source code review experience in C/C++, C#, VB.NET, ASP, PHP, or Java to identify security vulnerabilities
• Ability to recommend remediation actions to mitigate valid findings
• Possess a good understanding of cloud computing models, technologies and concepts
• Possess a good understanding of FISMA, PCI, and Federal Risk and Authorization Management Program (FedRAMP) programs and penetration testing requirements associated with them
• Advanced written and verbal communication skills, strong analytical and interpersonal characteristics, and ability to work both independently and collaboratively

Education Requirements:

• Bachelor’s Degree in Computer Science, Computer Engineering, Software Engineering, Systems Engineering, Electrical Engineering, Information Technology, or related discipline from an accredited College or University
• 5 years or more of relevant ISS experience.
• 2+ years of experience with Penetration testing
• Working knowledge of ISS architecture and requirements

Certification Requirement(s):

• One of the following Certifications: CISSP or CEH, GPEN or OSCP, and GWAPT or LPT

We take pride in building a workforce with a strong Veterans focus

Excentium offers a competitive salary and comprehensive benefits package, including medical, dental, life, disability, 401k, and paid time off.

Excentium, Inc. is an equal opportunity employer.