Senior Penetration Tester
ANALYGENCE Inc
Description Tharros is seeking a Senior Penetration Testing, Software Assurance and Vulnerability Assessment Engineer to support a DHS Intelligence and Analysis cybersecurity program in the National Capital Region.
This role will support advanced penetration testing, software assurance, vulnerability assessment, cyber supply chain risk management, secure cloud and hybrid engineering, and cross-domain security assessment activities. The ideal candidate is a senior technical assessor who can go beyond automated scanning to identify systemic weaknesses, validate exploitability, assess operational impact, and provide clear remediation recommendations for complex mission environments.
Responsibilities:
This role will support advanced penetration testing, software assurance, vulnerability assessment, cyber supply chain risk management, secure cloud and hybrid engineering, and cross-domain security assessment activities. The ideal candidate is a senior technical assessor who can go beyond automated scanning to identify systemic weaknesses, validate exploitability, assess operational impact, and provide clear remediation recommendations for complex mission environments.
Responsibilities:
- Conduct penetration testing, vulnerability assessments, software assurance, and cyber supply chain risk management activities for Federal mission systems.
- Perform full-scope security testing using established methodologies such as MITRE ATT&CK, OWASP, NIST 800-115, and related Federal or IC assessment practices.
- Support pre-engagement planning, rules of engagement, intelligence gathering, threat modeling, vulnerability analysis, exploitation, post-exploitation, and reporting.
- Use approved automated and manual testing methods to identify vulnerabilities, validate exploitability, and assess potential business and operational impacts.
- Identify vulnerabilities commonly missed by automated tools through manual, expert-driven testing techniques.
- Assess SOC detection and response capabilities through controlled testing activities.
- Produce penetration testing reports, vulnerability assessment reports, software assurance recommendations, and corrective action guidance.
- Support software assurance through vulnerability and compliance testing, source code review, static/dynamic analysis, dependency review, and software supply chain risk identification.
- Conduct vulnerability assessments and interpret results to recommend corrective actions and mitigation strategies.
- Support secure cloud, hybrid, DevSecOps, application, identity, API, microservices, CI/CD, Zero Trust, and cross-domain assessment activities.
- Maintain secure testing kits and assessment tooling, including patching, configuration updates, and approved tool management.
- Update and maintain penetration testing, SCRM, and vulnerability assessment procedures.
- Support audits, working groups, and stakeholder briefings related to penetration testing, software assurance, vulnerability assessment, and cyber supply chain risk.
- Identify opportunities to improve testing processes, automate assessment workflows, strengthen reporting, and produce useful metrics for leadership and technical stakeholders.
- Translate assessment findings into actionable remediation plans, risk insights, POA&M inputs, dashboards, and decision-ready reporting.
- Active TS/SCI
- 10+ years of related cybersecurity assessment, penetration testing, software assurance, vulnerability assessment, or cyber supply chain risk experience.
- 2+ years of recent experience in each of the following areas: software assurance, penetration testing with automated tools, vulnerability assessment, security patch management, secure cloud and hybrid engineering, and
- Cross Domain Solutions.
- CEH and CISSP certifications, or comparable demonstrable experience.
- Experience conducting penetration testing, vulnerability assessments, software assurance, source code review, SCRM, and cyber supply chain management activities.
- Experience using both automated tools and manual testing processes to identify, validate, and document vulnerabilities.
- Experience producing technical reports, corrective action recommendations, mitigation strategies, and executive-ready summaries.
- Strong understanding of vulnerability management, exploitability, secure configuration, remediation validation, and operational risk.
- Strong written and verbal communication skills.
- Ability to work onsite at a government-approved location as required.
- Prior DHS, Intelligence Community, DoD, CISA, classified red team, software assurance, SCRM, CVPA, vulnerability research, or national security cyber assessment experience.
- Experience with MITRE ATT&CK, OWASP, NIST 800-115, IC "Raise the Bar," NIST SP 800-161, CNSSI 1253, DHS 4300C, or related Federal/IC cybersecurity frameworks.
- Experience testing cloud, application, identity, API, microservices, CI/CD, DevSecOps, Zero Trust, cross-domain, and hybrid TS/SCI environments.
- Experience with SBOM analysis, static/dynamic code analysis, dependency review, source code review, exploit validation, secure configuration, and remediation validation.
- Experience with GRC platforms such as Archer, eMASS, or Xacta, including the ability to translate findings into POA&Ms, dashboards, scorecards, and remediation workflows.
Vacancy posted 1 day ago
Similar jobs that could be interesting for youBased on the Senior Penetration Tester in Washington DC vacancy
- ...primary responsibility will be to plan, execute, and report on penetration tests targeting high-impact applications, platforms, and... ...peer reviews of penetration test reports and mentoring junior testers. ~ Continuous learner who keeps up with the latest offensive...Senior
$106.3k - $221.1k
...Senior Penetration Tester At Accenture Federal Services, nothing matters more than helping the US federal government make the nation stronger and safer and life better for people. Our 13,000+ people are united in a shared purpose to pursue the limitless potential of...SeniorLocal area- ...Senior Penetration Tester Quzara LLC, a SBA Certified WOSB, EDWOSB, and 8(a) cybersecurity firm, specializes in compliance advisory, cloud security, and managed security operations. Driven by innovation and dedication, our mission is to secure our clients' digital landscapes...SeniorFull timeWork experience placementRemote workMonday to Friday
$115k - $203k
...Senior Penetration Tester Job Description Overview CoStar Group is a leading global provider of commercial and residential real estate information, analytics, and online marketplaces. Included in the S&P 500 Index, CoStar Group is on a mission to digitize the...SeniorHourly payFull timeWork at officeWork from homeMonday to Thursday$160k - $205k
Koitecc Solutions is seeking a Manual Ethical Hacker to lead assessments on the security of bank's applications and technologies. The role requires a minimum of 5 years of pentesting experience and the ability to perform deep analysis of vulnerabilities. With a competitive...Senior$95.86k
...inspiration and expand your capabilities, then consider a career in Advisory. KPMG is currently seeking a Senior Specialist, MAST Application Penetration Tester to join our Managed Services practice. Responsibilities: Conduct manual application penetration...SeniorH1bLocal area$86.8k - $198k
Phase2 Technology is seeking a Penetration Tester to safeguard critical digital environments. In this role, you'll conduct penetration testing, perform vulnerability management, and ensure system security. Your expertise will help identify weaknesses and provide actionable...Senior$40 per hour
A technology firm is looking for experienced cybersecurity professionals to join their remote team. In this role, you will evaluate AI-generated security content and solve technical problems to train AI models. Seeking candidates with 2+ years of hands-on experience in ...SeniorRemote jobHourly payFlexible hours$160k - $205k
...of the bank's applications to malicious hacking activity. This senior technical role is responsible for performing and leading... ...use scripting/coding techniques, proficiently execute common penetration testing tools, triage, and support incidents, and produce high...SeniorShift workDay shift- Booz Allen Hamilton is seeking a Vulnerability Assessment Analyst in Alexandria, Virginia. You will support the Army by delivering high-quality cybersecurity services, identify and report vulnerabilities, perform scans, and recommend remediation actions to ensure system...Senior
$100k - $200k
...Systems Interoperability Tester Position Description: CGI Federal has an exciting opportunity for a Systems Interoperability Tester within our Intel sector advancing the national security mission through cutting edge technology. You must have a passion for keeping...Senior- ...for Top Secret due to classified threat intelligence. Citizenship: US Citizen (MUST) Key Responsibilities : Lead SBA’s penetration, offensive, and adversarial testing services, including gray/black box testing, red teaming, API testing, and DevSecOps code...SeniorLocal areaRemote work
- ...Application Penetration Tester We are seeking a highly skilled and experienced Application Penetration Tester to join our dynamic team. This role is ideal for someone with a passion for cybersecurity, a deep understanding of application security, and the ability to...
$127.94k - $186.6k
hackajob is collaborating with Excella to connect them with exceptional professionals for this role. Lead Information Systems Security Officer (ISSO) Arlington, Virginia, United States, Hybrid Excella is a transformative technology firm that helps organizations...SeniorWork from homeHome officeFlexible hours- A leading technology company is seeking Cyber Network Defense Analysts (CNDA) to provide advanced technical support both remotely and onsite. Duties include coordinating incident response investigations, analyzing network activity for threats, and providing cybersecurity...SeniorRemote job
- A technology solutions provider in Arlington, VA, is seeking a Cyber Network Defense Analyst. The candidate will monitor network activity, analyze cyber events, and recommend proactive measures against threats. Responsibilities include documenting incidents, performing ...Senior
- ...clearance before being able to start. The ability to obtain a final Top‑Secret security clearance. Peraton is currently seeking a Senior Digital Forensic Analyst for its Federal Strategic Cyber programs. Position Description: The Senior Digital Forensic Analyst will:...SeniorFull timeFor contractorsInterim roleLocal area
- Overview Vexterra Group is searching for a Digital Forensic Analyst to provide support across forensic examinations, technical exploitation, and related activities for diverse customer assets and stakeholders. Responsibilities Conduct forensic examination of High Priority...SeniorTemporary workWork experience placement
$113k - $188k
## Information Systems Security Officer - Senior ConsultantApplylocations: US - DC, Washingtontime type: Full timeposted on: Posted Todayjob requisition id: 36581**Job Family:**Cyber Consulting**Travel Required:**Up to 10%**Clearance Required:**Active Top Secret SCI (TS...SeniorTemporary workFlexible hours- SwiftCruit is hiring a NOSC Cyber Analyst to support national security operations. This role involves planning and maintaining network security, performing threat detection, and leading investigations to enhance security protocols. The ideal candidate holds a Top Secret...Senior
- ...MANTECH seeks a motivated, career and customer-oriented Senior Systems Analyst to join our team in Arlington, VA . The position is onsite . Responsibilities include but are not limited to: ~ Providing Tier II IT Systems support on a wide range of technologies...SeniorFull timeWork at office
- Vexterra Group is looking for a Digital Forensic Analyst to conduct comprehensive forensic examinations, support technical exploitation and generate professional reports for diverse stakeholders. The ideal candidate will have extensive experience and must possess active...Senior
- ...Harris Technologies currently has an opening for a User Acceptance Tester with expertise in Test and Integration for an important National... ...and verbal communication skills, with experience updating senior leadership. Able to work independently with minimum supervision....SeniorFor contractorsLocal area
- ...Certifications: Holds or is working toward penetration testing and offensive security... ...PingWind is seeking a Penetration Tester responsible for supporting authorized penetration... ...coordination with Government stakeholders and senior cybersecurity personnel. • Conducts...Temporary workFlexible hours
$68k - $73k
...Job Type Full-time Description Salary range: $68,000 - $73,000/year The Junior Penetration Tester supports security assessments by planning and executing tests on web applications, infrastructure, cloud environments, and other technologies connected...Full timeContract workFlexible hours$130k - $145k
...Penetration Tester Washington DC Metro Area Dark Wolf is actively seeking an experienced Penetration Tester to join our innovative team. This individual will play a critical role in assessing and enhancing the security of various products, including hardware, software...Hourly pay$95k - $112k
...upon customer approval. SkyePoint Decisions is seeking a Penetration Tester to support the Diplomatic Security Cyber Mission (DSCM)... ...Demonstrated ability to lead a penetration test and guide Senior/Junior Penetration Testers. U.S. citizenship required....Contract workRemote work$66k - $106k
...Jr Cyber Penetration Tester Job Locations US-VA-Arlington Requisition ID 2026-167214 Position Category Cyber Security Clearance Secret Responsibilities Peraton is currently seeking a Jr Cyber Penetration Tester...Contract workLocal areaRemote workShift work- ...Penetration Tester Locations: Los Angeles (CA), Dallas (TX), Washington DC. Responsibilities: Assist in project scoping and SOW... ...vulnerabilities Create and deliver findings and/or reports to customer senior management Consult clients on best practices for...Work experience placement
- ...Senior Information Systems Security Officer Dexian Government Solutions is recruiting for a Senior Information Systems Security Officer... ..., validating security control effectiveness, conducting penetration testing activities, evaluating software assurance risks, and providing...SeniorLocal area
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Senior Penetration Tester. Be the first to apply!
Related searches
- vulnerability analyst Washington DC
- penetration tester Washington DC
- ethical hacker Washington DC
- senior game producer Washington DC
- senior electronic design engineer Washington DC
- senior robotics software engineer Washington DC
- senior java software engineer Washington DC
- senior specialist Washington DC
- senior research manager Washington DC
- senior director corporate development Washington DC

