Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Senior Penetration Tester

ANALYGENCE Inc

Description

Tharros is seeking a Senior Penetration Testing, Software Assurance and Vulnerability Assessment Engineer to support a DHS Intelligence and Analysis cybersecurity program in the National Capital Region.


This role will support advanced penetration testing, software assurance, vulnerability assessment, cyber supply chain risk management, secure cloud and hybrid engineering, and cross-domain security assessment activities. The ideal candidate is a senior technical assessor who can go beyond automated scanning to identify systemic weaknesses, validate exploitability, assess operational impact, and provide clear remediation recommendations for complex mission environments.


Responsibilities:

  • Conduct penetration testing, vulnerability assessments, software assurance, and cyber supply chain risk management activities for Federal mission systems.
  • Perform full-scope security testing using established methodologies such as MITRE ATT&CK, OWASP, NIST 800-115, and related Federal or IC assessment practices.
  • Support pre-engagement planning, rules of engagement, intelligence gathering, threat modeling, vulnerability analysis, exploitation, post-exploitation, and reporting.
  • Use approved automated and manual testing methods to identify vulnerabilities, validate exploitability, and assess potential business and operational impacts.
  • Identify vulnerabilities commonly missed by automated tools through manual, expert-driven testing techniques.
  • Assess SOC detection and response capabilities through controlled testing activities.
  • Produce penetration testing reports, vulnerability assessment reports, software assurance recommendations, and corrective action guidance.
  • Support software assurance through vulnerability and compliance testing, source code review, static/dynamic analysis, dependency review, and software supply chain risk identification.
  • Conduct vulnerability assessments and interpret results to recommend corrective actions and mitigation strategies.
  • Support secure cloud, hybrid, DevSecOps, application, identity, API, microservices, CI/CD, Zero Trust, and cross-domain assessment activities.
  • Maintain secure testing kits and assessment tooling, including patching, configuration updates, and approved tool management.
  • Update and maintain penetration testing, SCRM, and vulnerability assessment procedures.
  • Support audits, working groups, and stakeholder briefings related to penetration testing, software assurance, vulnerability assessment, and cyber supply chain risk.
  • Identify opportunities to improve testing processes, automate assessment workflows, strengthen reporting, and produce useful metrics for leadership and technical stakeholders.
  • Translate assessment findings into actionable remediation plans, risk insights, POA&M inputs, dashboards, and decision-ready reporting.
Requirements
  • Active TS/SCI
  • 10+ years of related cybersecurity assessment, penetration testing, software assurance, vulnerability assessment, or cyber supply chain risk experience.
  • 2+ years of recent experience in each of the following areas: software assurance, penetration testing with automated tools, vulnerability assessment, security patch management, secure cloud and hybrid engineering, and
  • Cross Domain Solutions.
  • CEH and CISSP certifications, or comparable demonstrable experience.
  • Experience conducting penetration testing, vulnerability assessments, software assurance, source code review, SCRM, and cyber supply chain management activities.
  • Experience using both automated tools and manual testing processes to identify, validate, and document vulnerabilities.
  • Experience producing technical reports, corrective action recommendations, mitigation strategies, and executive-ready summaries.
  • Strong understanding of vulnerability management, exploitability, secure configuration, remediation validation, and operational risk.
  • Strong written and verbal communication skills.
  • Ability to work onsite at a government-approved location as required.
Preferred Qualifications:
  • Prior DHS, Intelligence Community, DoD, CISA, classified red team, software assurance, SCRM, CVPA, vulnerability research, or national security cyber assessment experience.
  • Experience with MITRE ATT&CK, OWASP, NIST 800-115, IC "Raise the Bar," NIST SP 800-161, CNSSI 1253, DHS 4300C, or related Federal/IC cybersecurity frameworks.
  • Experience testing cloud, application, identity, API, microservices, CI/CD, DevSecOps, Zero Trust, cross-domain, and hybrid TS/SCI environments.
  • Experience with SBOM analysis, static/dynamic code analysis, dependency review, source code review, exploit validation, secure configuration, and remediation validation.
  • Experience with GRC platforms such as Archer, eMASS, or Xacta, including the ability to translate findings into POA&Ms, dashboards, scorecards, and remediation workflows.
Vacancy posted 1 day ago
Similar jobs that could be interesting for youBased on the Senior Penetration Tester in Washington DC vacancy
  •  ...primary responsibility will be to plan, execute, and report on penetration tests targeting high-impact applications, platforms, and...  ...peer reviews of penetration test reports and mentoring junior testers. ~ Continuous learner who keeps up with the latest offensive... 
    Senior

    Chase

    Washington DC
    3 days ago
  • $106.3k - $221.1k

     ...Senior Penetration Tester At Accenture Federal Services, nothing matters more than helping the US federal government make the nation stronger and safer and life better for people. Our 13,000+ people are united in a shared purpose to pursue the limitless potential of... 
    Senior
    Local area

    Accenture Federal Services

    Arlington, VA
    2 days ago
  •  ...Senior Penetration Tester Quzara LLC, a SBA Certified WOSB, EDWOSB, and 8(a) cybersecurity firm, specializes in compliance advisory, cloud security, and managed security operations. Driven by innovation and dedication, our mission is to secure our clients' digital landscapes... 
    Senior
    Full time
    Work experience placement
    Remote work
    Monday to Friday

    Quzara LLC

    Washington DC
    4 days ago
  • $115k - $203k

     ...Senior Penetration Tester Job Description Overview CoStar Group is a leading global provider of commercial and residential real estate information, analytics, and online marketplaces. Included in the S&P 500 Index, CoStar Group is on a mission to digitize the... 
    Senior
    Hourly pay
    Full time
    Work at office
    Work from home
    Monday to Thursday

    CoStar Group

    Arlington, VA
    1 day ago
  • $160k - $205k

    Koitecc Solutions is seeking a Manual Ethical Hacker to lead assessments on the security of bank's applications and technologies. The role requires a minimum of 5 years of pentesting experience and the ability to perform deep analysis of vulnerabilities. With a competitive...
    Senior

    Koitecc Solutions

    Washington DC
    12 hours ago
  • $95.86k

     ...inspiration and expand your capabilities, then consider a career in Advisory. KPMG is currently seeking a Senior Specialist, MAST Application Penetration Tester to join our Managed Services practice. Responsibilities: Conduct manual application penetration... 
    Senior
    H1b
    Local area

    KPMG

    Washington DC
    1 day ago
  • $86.8k - $198k

    Phase2 Technology is seeking a Penetration Tester to safeguard critical digital environments. In this role, you'll conduct penetration testing, perform vulnerability management, and ensure system security. Your expertise will help identify weaknesses and provide actionable... 
    Senior

    Phase2 Technology

    Arlington, VA
    4 days ago
  • $40 per hour

    A technology firm is looking for experienced cybersecurity professionals to join their remote team. In this role, you will evaluate AI-generated security content and solve technical problems to train AI models. Seeking candidates with 2+ years of hands-on experience in ...
    Senior
    Remote job
    Hourly pay
    Flexible hours

    DataAnnotation

    Washington DC
    1 day ago
  • $160k - $205k

     ...of the bank's applications to malicious hacking activity. This senior technical role is responsible for performing and leading...  ...use scripting/coding techniques, proficiently execute common penetration testing tools, triage, and support incidents, and produce high... 
    Senior
    Shift work
    Day shift

    Koitecc Solutions

    Washington DC
    4 days ago
  • Booz Allen Hamilton is seeking a Vulnerability Assessment Analyst in Alexandria, Virginia. You will support the Army by delivering high-quality cybersecurity services, identify and report vulnerabilities, perform scans, and recommend remediation actions to ensure system...
    Senior

    Booz Allen Hamilton

    Alexandria, VA
    4 days ago
  • $100k - $200k

     ...Systems Interoperability Tester Position Description: CGI Federal has an exciting opportunity for a Systems Interoperability Tester within our Intel sector advancing the national security mission through cutting edge technology. You must have a passion for keeping... 
    Senior

    Navstar

    Arlington, VA
    2 days ago
  •  ...for Top Secret due to classified threat intelligence. Citizenship: US Citizen (MUST) Key Responsibilities : Lead SBA’s penetration, offensive, and adversarial testing services, including gray/black box testing, red teaming, API testing, and DevSecOps code... 
    Senior
    Local area
    Remote work

    eTelligent Group LLC

    Washington DC
    more than 2 months ago
  •  ...Application Penetration Tester We are seeking a highly skilled and experienced Application Penetration Tester to join our dynamic team. This role is ideal for someone with a passion for cybersecurity, a deep understanding of application security, and the ability to... 

    OnDefend

    Washington DC
    2 days ago
  • $127.94k - $186.6k

    hackajob is collaborating with Excella to connect them with exceptional professionals for this role. Lead Information Systems Security Officer (ISSO) Arlington, Virginia, United States, Hybrid Excella is a transformative technology firm that helps organizations...
    Senior
    Work from home
    Home office
    Flexible hours

    Excella

    Arlington, VA
    8 days ago
  • A leading technology company is seeking Cyber Network Defense Analysts (CNDA) to provide advanced technical support both remotely and onsite. Duties include coordinating incident response investigations, analyzing network activity for threats, and providing cybersecurity...
    Senior
    Remote job

    NewGen Technologies (Maryland)

    Arlington, VA
    4 days ago
  • A technology solutions provider in Arlington, VA, is seeking a Cyber Network Defense Analyst. The candidate will monitor network activity, analyze cyber events, and recommend proactive measures against threats. Responsibilities include documenting incidents, performing ...
    Senior

    ARSIEM Corporation

    Arlington, VA
    12 hours ago
  •  ...clearance before being able to start. The ability to obtain a final Top‑Secret security clearance. Peraton is currently seeking a Senior Digital Forensic Analyst for its Federal Strategic Cyber programs. Position Description: The Senior Digital Forensic Analyst will:... 
    Senior
    Full time
    For contractors
    Interim role
    Local area

    Peraton

    Arlington, VA
    3 days ago
  • Overview Vexterra Group is searching for a Digital Forensic Analyst to provide support across forensic examinations, technical exploitation, and related activities for diverse customer assets and stakeholders. Responsibilities Conduct forensic examination of High Priority...
    Senior
    Temporary work
    Work experience placement

    Vexterra Group

    Bethesda, MD
    1 day ago
  • $113k - $188k

    ## Information Systems Security Officer - Senior ConsultantApplylocations: US - DC, Washingtontime type: Full timeposted on: Posted Todayjob requisition id: 36581**Job Family:**Cyber Consulting**Travel Required:**Up to 10%**Clearance Required:**Active Top Secret SCI (TS... 
    Senior
    Temporary work
    Flexible hours

    Dovel Technologies, Inc

    Washington DC
    2 days ago
  • SwiftCruit is hiring a NOSC Cyber Analyst to support national security operations. This role involves planning and maintaining network security, performing threat detection, and leading investigations to enhance security protocols. The ideal candidate holds a Top Secret...
    Senior

    SwiftCruit

    Washington DC
    1 day ago
  •  ...MANTECH seeks a motivated, career and customer-oriented  Senior Systems Analyst to join our team in  Arlington, VA . The position is onsite . Responsibilities include but are not limited to: ~ Providing Tier II IT Systems support on a wide range of technologies... 
    Senior
    Full time
    Work at office

    MANTECH

    Arlington, VA
    12 hours ago
  • Vexterra Group is looking for a Digital Forensic Analyst to conduct comprehensive forensic examinations, support technical exploitation and generate professional reports for diverse stakeholders. The ideal candidate will have extensive experience and must possess active...
    Senior

    Vexterra Group

    Bethesda, MD
    2 days ago
  •  ...Harris Technologies currently has an opening for a User Acceptance Tester with expertise in Test and Integration for an important National...  ...and verbal communication skills, with experience updating senior leadership. Able to work independently with minimum supervision.... 
    Senior
    For contractors
    Local area

    L3Harris Technologies

    Arlington, VA
    1 day ago
  •  ...Certifications: Holds or is working toward penetration testing and offensive security...  ...PingWind is seeking a Penetration Tester responsible for supporting authorized penetration...  ...coordination with Government stakeholders and senior cybersecurity personnel. • Conducts... 
    Temporary work
    Flexible hours

    PingWind Inc

    Alexandria, VA
    3 days ago
  • $68k - $73k

     ...Job Type Full-time Description Salary range: $68,000 - $73,000/year The Junior Penetration Tester supports security assessments by planning and executing tests on web applications, infrastructure, cloud environments, and other technologies connected... 
    Full time
    Contract work
    Flexible hours

    Gunnison, CO

    Washington DC
    4 days ago
  • $130k - $145k

     ...Penetration Tester Washington DC Metro Area Dark Wolf is actively seeking an experienced Penetration Tester to join our innovative team. This individual will play a critical role in assessing and enhancing the security of various products, including hardware, software... 
    Hourly pay

    Dark Wolf Solutions

    Washington DC
    6 hours ago
  • $95k - $112k

     ...upon customer approval. SkyePoint Decisions is seeking a Penetration Tester to support the Diplomatic Security Cyber Mission (DSCM)...  ...Demonstrated ability to lead a penetration test and guide Senior/Junior Penetration Testers. U.S. citizenship required.... 
    Contract work
    Remote work

    SkyePoint Decisions

    Arlington, VA
    12 hours ago
  • $66k - $106k

     ...Jr Cyber Penetration Tester Job Locations US-VA-Arlington Requisition ID 2026-167214 Position Category Cyber Security Clearance Secret Responsibilities Peraton is currently seeking a Jr Cyber Penetration Tester... 
    Contract work
    Local area
    Remote work
    Shift work

    Peraton

    Arlington, VA
    3 days ago
  •  ...Penetration Tester Locations: Los Angeles (CA), Dallas (TX), Washington DC. Responsibilities: Assist in project scoping and SOW...  ...vulnerabilities Create and deliver findings and/or reports to customer senior management Consult clients on best practices for... 
    Work experience placement

    WATI

    Washington DC
    2 days ago
  •  ...Senior Information Systems Security Officer Dexian Government Solutions is recruiting for a Senior Information Systems Security Officer...  ..., validating security control effectiveness, conducting penetration testing activities, evaluating software assurance risks, and providing... 
    Senior
    Local area

    EmergencyMD

    Washington DC
    4 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Senior Penetration Tester. Be the first to apply!