Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Senior Penetration Testing, Software Assurance & Vulnerability Assessment Engineer

OneZero Solutions

Job Description

Job Description

We are an employee-centric company that truly values our team members and the contributions they make to our customers and the missions they support. We pride ourselves on being forward-leaning thinkers and on building teams that are, and continue to be, technically proficient across a broad range of cyber mission areas. OneZero full-time employees receive a highly competitive benefits package, including health, dental, vision, and life insurance, a 401(k) with company matching, paid time off and holidays, an employee referral program, and educational assistance. Additional details are available on our website:

Position Title: Senior Penetration Testing, Software Assurance & Vulnerability Assessment Engineer

Location : On-site in a SCIF in the National Capital Region (NCR) – Nebraska Avenue Complex, Washington, DC (work locations transitioning to ICCB Bethesda / St. Elizabeths). Telework is not authorized; a designated Key Person must be available on-site during core hours

Clearance: TS/SCI

Job Summary:

Performs advanced penetration testing, vulnerability assessments, and software assurance activities to identify and mitigate security weaknesses across DHS systems.

Education and Experience:

  • Bachelor's degree in Cybersecurity, Computer Science, or related field or equivalent years of experience.
  • CEH, OSCP, GPEN, CISSP, or equivalent experience
  • 15+ years of total cybersecurity experience, with demonstrated SME-level depth across the following disciplines:
  • 5+ years conducting penetration testing across multiple domains (network, application, red team, physical, and/or wireless)
  • 5+ years in software assurance, including secure code review, threat modeling, SAST/DAST tooling, and vulnerability analysis across multiple languages and platforms
  • 4+ years in enterprise patch management and vulnerability remediation, including prioritization frameworks (CVSS, EPSS), SLA enforcement, and remediation validation
  • 4+ years architecting, assessing, and securing cloud environments (AWS, Azure, GCP) and/or Cross Domain Solutions (CDS), including cloud-native attack surface analysis
  • Significant experience supporting DHS, Intelligence Community (IC), or other federal agency programs, with deep familiarity with RMF, ICD 503, NIST 800-53/800-115, and related compliance frameworks
  • Experience briefing findings and recommendations to senior leadership, program managers, and authorizing officials

Essential Duties:

  • Conduct advanced penetration testing and vulnerability assessments across networks, applications, AI systems, cloud environments, and DevSecOps pipelines
  • Employ both automated tooling and sophisticated manual techniques to identify, validate, exploit, and analyze security weaknesses across complex, multi-domain environments
  • Perform red team operations and adversary emulation exercises aligned to MITRE ATT&CK TTPs, simulating realistic threat actor behavior against classified and unclassified systems
  • Conduct secure code reviews, static and dynamic application security testing (SAST/DAST), and software assurance activities across multiple languages and platforms
  • Assess Cross Domain Solutions (CDS), cloud-native architectures, and hybrid environments for misconfigurations, privilege escalation paths, and lateral movement opportunities
  • Analyze and correlate findings across assessments to identify systemic vulnerabilities and patterns, not just individual weaknesses
  • Lead and direct penetration test programs across multiple concurrent systems, coordinating scope, scheduling, and resource allocation
  • Develop, maintain, and continuously improve penetration testing methodologies, playbooks, and Standard Operating Procedures (SOPs)
  • Serve as a subject matter expert and technical authority on offensive security techniques, vulnerability research, and exploit development

OneZero Solutions, LLC is an Equal Opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, pregnancy, genetic information, disability, status as a protected veteran, or any other protected category under applicable federal, state, and local laws.

To request an accommodation, please contact us at View email address on ziprecruiter.com or call View phone number on ziprecruiter.com.

Job Posted by ApplicantPro
Vacancy posted 3 days ago
Similar jobs that could be interesting for youBased on the Senior Penetration Testing, Software Assurance & Vulnerability Assessment Engineer in Washington DC vacancy
  • Senior Penetration Testing, Software Assurance and Vulnerability Assessment Engineer Dexian Government Solutions is recruiting for a Senior Penetration Testing, Software Assurance and Vulnerability Assessment Engineer to support our proposal at the DHS CIETS in DC Metro... 
    Senior
    Software
    Temporary work
    Local area

    EmergencyMD

    Washington DC
    1 day ago
  • One Federal Solution is seeking a highly skilled cybersecurity professional to provide senior-level penetration testing, software assurance, and vulnerability assessment engineering support. The successful candidate will conduct comprehensive security assessments using... 
    Software

    One Federal Solution

    Washington DC
    3 days ago
  •  ...skilled cybersecurity professional for a Senior Penetration Testing role. The candidate will conduct security assessments, identify vulnerabilities, and develop remediation...  ...vulnerability management, cloud/hybrid engineering, and securing Cross Domain Solutions.... 
    Senior
    Software

    One Federal Solution

    Washington DC
    3 days ago
  • $92.3k - $166.85k

     ...seeking an experienced Senior Cybersecurity Systems Engineer to support the...  ...security testing and compliance validation...  ...system-level vulnerability assessments and security engineering...  ...engineers, software developers, and cloud...  ..., Information Assurance, Engineering, or... 
    Senior
    Software

    Dormont Manufacturing Company

    Alexandria, VA
    8 hours ago
  •  ...Your Role The Quality Assurance Engineer is a key member of...  ...of the software products and services...  ...manual and automated testing techniques. You will...  ...and expose potential vulnerabilities. Support cross‑functional...  ...and computer‑based assessments. If you require reasonable... 
    Software
    Flexible hours

    Medium

    Arlington, VA
    5 days ago
  • $86.8k - $198k

     ...Job Number: R0242153 Penetration Testing Engineer The Opportunity: We're mission...  ...penetration testing, vulnerability management, and software and system assurance will ensure the security of...  ...escalation. You'll also conduct assessments of threats and vulnerabilities... 
    Software
    Full time
    Contract work
    Part time
    Work at office
    Local area
    Remote work

    Booz Allen Hamilton

    Alexandria, VA
    19 hours ago
  • $86.8k - $198k

     ...edge technology. As a penetration tester, you'll play...  ...perform penetration testing, vulnerability management, and software and system assurance will ensure the...  ...injections, social engineering, buffer overflows, trojan...  ...You'll also conduct assessments of threats and vulnerabilities... 
    Software
    Full time
    Contract work
    Part time
    Work at office
    Local area
    Remote work

    Phase2 Technology

    Arlington, VA
    4 days ago
  • $86.8k - $198k

     ...Penetration Testing Engineer The Opportunity We’re mission accelerators who protect...  ...perform penetration testing, vulnerability management, and software and system assurance will ensure the security of...  ...escalation. You'll also conduct assessments of threats and... 
    Software
    Full time
    Contract work
    Part time
    Local area

    SwiftCruit

    Arlington, VA
    3 days ago
  •  ...expertise in cybersecurity, security engineering, security assessment and testing, and information system security...  ...System configurations for devices and software performing security‑relevant functions, Vulnerability and penetration test results, Security incident reports... 
    Senior
    Software

    Qmulos

    Arlington, VA
    2 days ago
  • $106.3k - $221.1k

     ...The Cybersecurity Engineer will design, implement...  ...controls, conduct risk and vulnerability assessments, and manage tools...  ...conducting security testing (static/dynamic analysis, code reviews, penetration testing),...  ...Information Technology, or Software Engineering. # Equivalent... 
    Senior
    Software
    Live in
    Work at office
    Local area

    Accenture

    Arlington, VA
    4 days ago
  • $115k - $203k

     ...Senior Penetration Tester Job Description Overview...  ...capabilities to test our internal and...  ...identified vulnerabilities and demonstrate...  ...exploitability to engineering teams, security...  ...such as security, software development, or...  ...and MCP server assessment. Hands-on experience... 
    Senior
    Software
    Hourly pay
    Full time
    Work at office
    Work from home
    Monday to Thursday

    CoStar Group

    Arlington, VA
    2 days ago
  • $106.3k - $221.1k

     ...Senior Penetration Tester At Accenture Federal Services...  ...penetration tests on applications, networks...  ...and exploit security vulnerabilities to assess risk, developing...  ...application, and social engineering assessments. Use...  ...Technology, or Software Engineering, or possess... 
    Senior
    Software
    Local area

    Accenture Federal Services

    Arlington, VA
    3 days ago
  • $130k - $145k

     ...an experienced Penetration Tester to join our...  ...role in assessing and enhancing the...  ...including hardware, software, and embedded systems...  ...of penetration testing methodologies...  ...and mitigating vulnerabilities across a wide range...  ...and reverse engineering firmware and embedded... 
    Software
    Hourly pay

    Dark Wolf Solutions

    Washington DC
    1 day ago
  •  ...Administration Support - Senior Associate-102955-...  ...related to Risk Assessment and Management including...  ...the use of relevant software such as Oracle Data...  ..., assessing vulnerability, etc. Experience identifying...  ...and tools such as penetration testing, application security... 
    Senior
    Software
    Full time

    Fannie Mae SB

    Washington DC
    5 days ago
  • $120.8k - $265.8k

     ...Infrastructure Support Engineer (Level 3) to...  ...: Engineer, test, configure,...  ...solutions. Vulnerability Management: Conduct...  ...vulnerability assessments and manage...  ...Forensics and Penetration Testing: Perform...  ...in the System/Software Development...  ..., Information Assurance, or a related... 
    Software
    Contract work
    Work experience placement
    Flexible hours

    Dormont Manufacturing Co

    Suitland, MD
    1 day ago
  • $120k

    Summary The Senior Information Assurance Specialist plays a pivotal role in safeguarding...  ...and prevention, secure software/system design, reverse engineering, vulnerability assessments, and data protection...  ...tools. Lead development and testing of disaster recovery and continuity... 
    Senior
    Software
    Contract work
    Local area
    Monday to Friday

    Validatek

    Washington DC
    7 days ago
  •  ...Senior Information Systems Security Officer...  ...and technical assessment specialist. This...  ...for identifying vulnerabilities, assessing...  ...effectiveness, conducting penetration testing activities, evaluating software assurance risks, and...  ...administrators, security engineers, ISSMs, and... 
    Senior
    Software
    Local area

    EmergencyMD

    Washington DC
    19 hours ago
  •  ...experienced Information Assurance Engineers/Information...  ...experience Senior IT Consultant (...  ...environments. Security Assessments & Compliance...  ...assessments and vulnerability reviews of...  ...developing and testing incident response...  ...systems engineering, software engineering, and... 
    Software

    Onyx Consulting Services

    Washington DC
    9 days ago
  •  ...an impact? –Jabil is seeking a Sr. Software Test Development Engineer who will directly contribute to the...  ...plans, test cases, and test scripts to assess the functionality and performance of...  ...engineers, and quality assurance personnel, to ensure alignment on testing... 
    Senior
    Software
    Remote work

    Jabil Circuit, Inc.

    Washington DC
    4 days ago
  •  ...Cybersecurity Assessments And Exercises Vice President...  ...through hands-on offensive testing. As an Assessments...  ..., and report on penetration tests targeting high-...  ...proactively identify vulnerabilities, collaborate with...  ...Experience in reverse engineering thick-client and mobile... 
    Senior

    Chase

    Washington DC
    4 days ago
  •  ...restoration of services. They are seeking a Senior Cybersecurity Engineer (Controls & Assessment Lead) to support this critical customer mission...  ...security automation practices Background in penetration testing or vulnerability assessment Desired Certifications DoD 8140 IAT... 
    Senior
    Contract work
    Immediate start

    NewGen Technologies (Maryland)

    Arlington, VA
    5 days ago
  •  ...Senior Penetration Tester Quzara LLC, a SBA Certified WOSB...  ...& Compliance, Vulnerability Management, Continuous...  ...perform advanced security testing on wired and...  ...comprehensive security assessment reports. Essential...  ...cryptography, reverse engineering, web applications,... 
    Senior
    Full time
    Work experience placement
    Remote work
    Monday to Friday

    Quzara LLC

    Washington DC
    19 hours ago
  • $135k - $145k

    # Senior Commissioning Engineer (Hybrid - Arlington, VA)Chinook Systems...  ...performance tests, investigation reports...  ....* Conduct facility assessments, systems condition evaluations...  ....* Conduct quality assurance reviews of project...  ...) and scheduling software.* Requires a Valid State... 
    Senior
    Software
    Full time
    Work at office
    Local area
    Work from home

    TryApplyNow

    Arlington, VA
    4 days ago
  •  ...Senior Hardware Engineer Quality Support, Inc., openings for Hardware Engineers...  ...requirements, development, testing, building, maintaining, and...  ...collaborating closely with software, layout and manufacturing...  ...Conduct sites surveys; assesses and documents current site... 
    Senior
    Software
    Full time
    Contract work

    Quality Support, Incorporated

    Alexandria, VA
    3 days ago
  •  ...Systems Engineer Transform technology into opportunity with GDIT...  ...system requirements, hardware/software interfaces and applications...  ...infrastructure including updating, testing and deploying the vSphere and...  ...8570.01-M at the Information Assurance Technical (IAT) Level II role... 
    Senior
    Software
    Work at office
    Local area

    General Dynamics

    Washington DC
    3 days ago
  • $79.6k - $176.3k

     ...Senior Systems Engineer Category: Software Development/ Engineering Main location: United States, Maryland...  ...program for the US Army. This role assesses complex systems, identifies...  ...Engineer leads the design, integration, testing, and optimization of systems... 
    Senior
    Software
    Full time
    Local area

    CGI

    Hyattsville, MD
    19 hours ago
  •  ...technology with a great team and make meaningful contributions every single day. We are looking for an experienced QA Engineer responsible for software testing, specifically functional, performance and end‑end testing of CheckVideo flagship product assets. Additional duties... 
    Senior
    Software
    Early shift

    Kastle Systems

    Falls Church, VA
    5 days ago
  •  ...Senior QA Automation Engineer Washington, DC – (Hybrid – 3 days on Site) 12 months DOE U.S. Citizens...  ...Over 7 years of experience in software quality assurance, with a focus on automation of web...  ...like Selenium, Cucumber, and API testing tools (Postman, SoapUI, Rest-assured... 
    Senior
    Software
    Work experience placement

    Georgia IT Inc

    Washington DC
    3 days ago
  • # Vulnerability Management AnalystJobs via DiceBe an Early ApplicantFull TimemidWashington...  ...and how to correlate risk from Penetration Testing and reports from the VDP* Provide recommendations...  ...the VDP and VM programs.* Understand Software as a service (SaaS) environments... 
    Software
    Work at office

    TryApplyNow

    Washington DC
    1 day ago
  •  ...Systems Security Engineer (ISSE) to join our...  ...Develop Security Test Procedures (STPs)...  ...CI/CD; support assessment & authorization by...  ...Conduct risk and vulnerability assessments focused...  ..., EDR, and penetration testing frameworks...  ...Computer Science, Software Engineering, or IT... 
    Software

    SAIC

    Arlington, VA
    19 hours ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Senior Penetration Testing, Software Assurance & Vulnerability Assessment Engineer. Be the first to apply!