Senior Penetration Testing, Software Assurance & Vulnerability Assessment Engineer
OneZero Solutions
Job Description
Job Description
We are an employee-centric company that truly values our team members and the contributions they make to our customers and the missions they support. We pride ourselves on being forward-leaning thinkers and on building teams that are, and continue to be, technically proficient across a broad range of cyber mission areas. OneZero full-time employees receive a highly competitive benefits package, including health, dental, vision, and life insurance, a 401(k) with company matching, paid time off and holidays, an employee referral program, and educational assistance. Additional details are available on our website:
Position Title: Senior Penetration Testing, Software Assurance & Vulnerability Assessment Engineer
Location : On-site in a SCIF in the National Capital Region (NCR) – Nebraska Avenue Complex, Washington, DC (work locations transitioning to ICCB Bethesda / St. Elizabeths). Telework is not authorized; a designated Key Person must be available on-site during core hours
Clearance: TS/SCI
Job Summary:
Performs advanced penetration testing, vulnerability assessments, and software assurance activities to identify and mitigate security weaknesses across DHS systems.
Education and Experience:
- Bachelor's degree in Cybersecurity, Computer Science, or related field or equivalent years of experience.
- CEH, OSCP, GPEN, CISSP, or equivalent experience
- 15+ years of total cybersecurity experience, with demonstrated SME-level depth across the following disciplines:
- 5+ years conducting penetration testing across multiple domains (network, application, red team, physical, and/or wireless)
- 5+ years in software assurance, including secure code review, threat modeling, SAST/DAST tooling, and vulnerability analysis across multiple languages and platforms
- 4+ years in enterprise patch management and vulnerability remediation, including prioritization frameworks (CVSS, EPSS), SLA enforcement, and remediation validation
- 4+ years architecting, assessing, and securing cloud environments (AWS, Azure, GCP) and/or Cross Domain Solutions (CDS), including cloud-native attack surface analysis
- Significant experience supporting DHS, Intelligence Community (IC), or other federal agency programs, with deep familiarity with RMF, ICD 503, NIST 800-53/800-115, and related compliance frameworks
- Experience briefing findings and recommendations to senior leadership, program managers, and authorizing officials
Essential Duties:
- Conduct advanced penetration testing and vulnerability assessments across networks, applications, AI systems, cloud environments, and DevSecOps pipelines
- Employ both automated tooling and sophisticated manual techniques to identify, validate, exploit, and analyze security weaknesses across complex, multi-domain environments
- Perform red team operations and adversary emulation exercises aligned to MITRE ATT&CK TTPs, simulating realistic threat actor behavior against classified and unclassified systems
- Conduct secure code reviews, static and dynamic application security testing (SAST/DAST), and software assurance activities across multiple languages and platforms
- Assess Cross Domain Solutions (CDS), cloud-native architectures, and hybrid environments for misconfigurations, privilege escalation paths, and lateral movement opportunities
- Analyze and correlate findings across assessments to identify systemic vulnerabilities and patterns, not just individual weaknesses
- Lead and direct penetration test programs across multiple concurrent systems, coordinating scope, scheduling, and resource allocation
- Develop, maintain, and continuously improve penetration testing methodologies, playbooks, and Standard Operating Procedures (SOPs)
- Serve as a subject matter expert and technical authority on offensive security techniques, vulnerability research, and exploit development
OneZero Solutions, LLC is an Equal Opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, pregnancy, genetic information, disability, status as a protected veteran, or any other protected category under applicable federal, state, and local laws.
To request an accommodation, please contact us at View email address on ziprecruiter.com or call View phone number on ziprecruiter.com.
Job Posted by ApplicantPro- Senior Penetration Testing, Software Assurance and Vulnerability Assessment Engineer Dexian Government Solutions is recruiting for a Senior Penetration Testing, Software Assurance and Vulnerability Assessment Engineer to support our proposal at the DHS CIETS in DC Metro...SeniorSoftwareTemporary workLocal area
- One Federal Solution is seeking a highly skilled cybersecurity professional to provide senior-level penetration testing, software assurance, and vulnerability assessment engineering support. The successful candidate will conduct comprehensive security assessments using...Software
- ...skilled cybersecurity professional for a Senior Penetration Testing role. The candidate will conduct security assessments, identify vulnerabilities, and develop remediation... ...vulnerability management, cloud/hybrid engineering, and securing Cross Domain Solutions....SeniorSoftware
$92.3k - $166.85k
...seeking an experienced Senior Cybersecurity Systems Engineer to support the... ...security testing and compliance validation... ...system-level vulnerability assessments and security engineering... ...engineers, software developers, and cloud... ..., Information Assurance, Engineering, or...SeniorSoftware- ...Your Role The Quality Assurance Engineer is a key member of... ...of the software products and services... ...manual and automated testing techniques. You will... ...and expose potential vulnerabilities. Support cross‑functional... ...and computer‑based assessments. If you require reasonable...SoftwareFlexible hours
$86.8k - $198k
...Job Number: R0242153 Penetration Testing Engineer The Opportunity: We're mission... ...penetration testing, vulnerability management, and software and system assurance will ensure the security of... ...escalation. You'll also conduct assessments of threats and vulnerabilities...SoftwareFull timeContract workPart timeWork at officeLocal areaRemote work$86.8k - $198k
...edge technology. As a penetration tester, you'll play... ...perform penetration testing, vulnerability management, and software and system assurance will ensure the... ...injections, social engineering, buffer overflows, trojan... ...You'll also conduct assessments of threats and vulnerabilities...SoftwareFull timeContract workPart timeWork at officeLocal areaRemote work$86.8k - $198k
...Penetration Testing Engineer The Opportunity We’re mission accelerators who protect... ...perform penetration testing, vulnerability management, and software and system assurance will ensure the security of... ...escalation. You'll also conduct assessments of threats and...SoftwareFull timeContract workPart timeLocal area- ...expertise in cybersecurity, security engineering, security assessment and testing, and information system security... ...System configurations for devices and software performing security‑relevant functions, Vulnerability and penetration test results, Security incident reports...SeniorSoftware
$106.3k - $221.1k
...The Cybersecurity Engineer will design, implement... ...controls, conduct risk and vulnerability assessments, and manage tools... ...conducting security testing (static/dynamic analysis, code reviews, penetration testing),... ...Information Technology, or Software Engineering. # Equivalent...SeniorSoftwareLive inWork at officeLocal area$115k - $203k
...Senior Penetration Tester Job Description Overview... ...capabilities to test our internal and... ...identified vulnerabilities and demonstrate... ...exploitability to engineering teams, security... ...such as security, software development, or... ...and MCP server assessment. Hands-on experience...SeniorSoftwareHourly payFull timeWork at officeWork from homeMonday to Thursday$106.3k - $221.1k
...Senior Penetration Tester At Accenture Federal Services... ...penetration tests on applications, networks... ...and exploit security vulnerabilities to assess risk, developing... ...application, and social engineering assessments. Use... ...Technology, or Software Engineering, or possess...SeniorSoftwareLocal area$130k - $145k
...an experienced Penetration Tester to join our... ...role in assessing and enhancing the... ...including hardware, software, and embedded systems... ...of penetration testing methodologies... ...and mitigating vulnerabilities across a wide range... ...and reverse engineering firmware and embedded...SoftwareHourly pay- ...Administration Support - Senior Associate-102955-... ...related to Risk Assessment and Management including... ...the use of relevant software such as Oracle Data... ..., assessing vulnerability, etc. Experience identifying... ...and tools such as penetration testing, application security...SeniorSoftwareFull time
$120.8k - $265.8k
...Infrastructure Support Engineer (Level 3) to... ...: Engineer, test, configure,... ...solutions. Vulnerability Management: Conduct... ...vulnerability assessments and manage... ...Forensics and Penetration Testing: Perform... ...in the System/Software Development... ..., Information Assurance, or a related...SoftwareContract workWork experience placementFlexible hours$120k
Summary The Senior Information Assurance Specialist plays a pivotal role in safeguarding... ...and prevention, secure software/system design, reverse engineering, vulnerability assessments, and data protection... ...tools. Lead development and testing of disaster recovery and continuity...SeniorSoftwareContract workLocal areaMonday to Friday- ...Senior Information Systems Security Officer... ...and technical assessment specialist. This... ...for identifying vulnerabilities, assessing... ...effectiveness, conducting penetration testing activities, evaluating software assurance risks, and... ...administrators, security engineers, ISSMs, and...SeniorSoftwareLocal area
- ...experienced Information Assurance Engineers/Information... ...experience Senior IT Consultant (... ...environments. Security Assessments & Compliance... ...assessments and vulnerability reviews of... ...developing and testing incident response... ...systems engineering, software engineering, and...Software
- ...an impact? –Jabil is seeking a Sr. Software Test Development Engineer who will directly contribute to the... ...plans, test cases, and test scripts to assess the functionality and performance of... ...engineers, and quality assurance personnel, to ensure alignment on testing...SeniorSoftwareRemote work
- ...Cybersecurity Assessments And Exercises Vice President... ...through hands-on offensive testing. As an Assessments... ..., and report on penetration tests targeting high-... ...proactively identify vulnerabilities, collaborate with... ...Experience in reverse engineering thick-client and mobile...Senior
- ...restoration of services. They are seeking a Senior Cybersecurity Engineer (Controls & Assessment Lead) to support this critical customer mission... ...security automation practices Background in penetration testing or vulnerability assessment Desired Certifications DoD 8140 IAT...SeniorContract workImmediate start
- ...Senior Penetration Tester Quzara LLC, a SBA Certified WOSB... ...& Compliance, Vulnerability Management, Continuous... ...perform advanced security testing on wired and... ...comprehensive security assessment reports. Essential... ...cryptography, reverse engineering, web applications,...SeniorFull timeWork experience placementRemote workMonday to Friday
$135k - $145k
# Senior Commissioning Engineer (Hybrid - Arlington, VA)Chinook Systems... ...performance tests, investigation reports... ....* Conduct facility assessments, systems condition evaluations... ....* Conduct quality assurance reviews of project... ...) and scheduling software.* Requires a Valid State...SeniorSoftwareFull timeWork at officeLocal areaWork from home- ...Senior Hardware Engineer Quality Support, Inc., openings for Hardware Engineers... ...requirements, development, testing, building, maintaining, and... ...collaborating closely with software, layout and manufacturing... ...Conduct sites surveys; assesses and documents current site...SeniorSoftwareFull timeContract work
- ...Systems Engineer Transform technology into opportunity with GDIT... ...system requirements, hardware/software interfaces and applications... ...infrastructure including updating, testing and deploying the vSphere and... ...8570.01-M at the Information Assurance Technical (IAT) Level II role...SeniorSoftwareWork at officeLocal area
$79.6k - $176.3k
...Senior Systems Engineer Category: Software Development/ Engineering Main location: United States, Maryland... ...program for the US Army. This role assesses complex systems, identifies... ...Engineer leads the design, integration, testing, and optimization of systems...SeniorSoftwareFull timeLocal area- ...technology with a great team and make meaningful contributions every single day. We are looking for an experienced QA Engineer responsible for software testing, specifically functional, performance and end‑end testing of CheckVideo flagship product assets. Additional duties...SeniorSoftwareEarly shift
- ...Senior QA Automation Engineer Washington, DC – (Hybrid – 3 days on Site) 12 months DOE U.S. Citizens... ...Over 7 years of experience in software quality assurance, with a focus on automation of web... ...like Selenium, Cucumber, and API testing tools (Postman, SoapUI, Rest-assured...SeniorSoftwareWork experience placement
- # Vulnerability Management AnalystJobs via DiceBe an Early ApplicantFull TimemidWashington... ...and how to correlate risk from Penetration Testing and reports from the VDP* Provide recommendations... ...the VDP and VM programs.* Understand Software as a service (SaaS) environments...SoftwareWork at office
- ...Systems Security Engineer (ISSE) to join our... ...Develop Security Test Procedures (STPs)... ...CI/CD; support assessment & authorization by... ...Conduct risk and vulnerability assessments focused... ..., EDR, and penetration testing frameworks... ...Computer Science, Software Engineering, or IT...Software
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Senior Penetration Testing, Software Assurance & Vulnerability Assessment Engineer. Be the first to apply!
- software engineer amazon Washington DC
- experienced software developer Washington DC
- federal - software developer Washington DC
- software developer internship Washington DC
- senior software engineer Washington DC
- software developer fintech Washington DC
- part time software developer remote Washington DC
- software developer intern Washington DC
- software data engineer Washington DC
- software developer night shift Washington DC

