Penetration Tester
$175k - $235kM2 Technology Group LLC
M2 Technology Group provides high-assurance cyber and engineering support to federal, defense, and intelligence community programs. We bring that same rigor, discipline, and execution-focused approach to commercial assessments, delivering practical solutions designed for real-world operational environments. We also have amazing benefits, check them out below! Role Overview We are seeking an elite, senior-level Penetration Tester and RMF Subject Matter Expert to lead complex security assessments and drive advanced vulnerability discovery. In this role, you will act as the principal authority on defensive and offensive testing, providing critical technical expertise to support the Risk Management Framework (RMF) lifecycle. You will direct comprehensive testing phases during security controls assessments, leveraging deep, specialized knowledge of network architectures, specialized equipment, operating systems, protocols, and federal compliance standards. Core Responsibilities & Expanded Penetration Testing Duties RMF & Security Control Testing: Provide senior-level technical expertise to validate, assess, and challenge security controls throughout the RMF lifecycle. Direct and participate in rigorous testing phases during formal authorization assessments. Full-Scope Penetration Testing: Plan, scope, and execute advanced network-level and application-level penetration tests (both black-box and white-box) using established methodologies, framework protocols, and custom exploitation techniques. Red Teaming & Simulation: Emulate sophisticated adversary tactics, techniques, and procedures (TTPs) to evaluate the resilience of enterprise architectures, equipment, and services against live threats. Vulnerability Assessment & Research: Lead active research efforts into emerging technologies, novel exploits, and zero-day vulnerabilities relevant to information systems security to proactively defend agency assets. Post-Exploitation & Risk Analysis: Analyze penetration testing results to determine lateral movement potential, data exfiltration vectors, and the true business or mission impact of discovered vulnerabilities. Regulatory Interpretation & Reporting: Translate complex federal and agency-specific security regulations into actionable engineering and testing criteria. Deliver comprehensive technical risk reports and executive-level briefs detailing mitigation roadmaps for system owners. Required Qualifications & Experience Matrix Experience Threshold: Minimum of 12 years of directly related work experience in information security and technical testing. Education Substitution: A Bachelor’s Degree in Computer Science or IT Engineering may be substituted for exactly 4 years of experience (requiring 8 years of hands‑on experience alongside the degree). Technical Tool Proficiency: Highly proficient in deploying, configuring, and modifying a diverse toolkit of industry‑standard vulnerability scanners, exploitation frameworks, and automated or manual penetration testing tools. System & Protocol Expertise: Advanced understanding of network protocols, complex enterprise architectures, operating system internals, and modern IT services. Regulatory Knowledge: Proven experience interpreting, applying, and auditing against federal security mandates and agency‑specific regulations. Compliance, Certifications & Clearance Requirements Mandatory Professional Certifications: Candidates must satisfy DoD 8570.01‑M requirements by holding: IAT Level III or IAM Level III baseline certification. Certified Ethical Hacker ( CEH ). An active, recognized vendor certification in a major operating system (e.g., Linux/Unix or Windows environments). Position requires active Security Clearance with appropriate Polygraph Pay Range:$175 ,000-$235,000 Please note that the listed salary range for this position at M2 Technology Group is intended as a helpful guide, not a fixed guarantee. We strive to build offers that are equitable and competitive by looking at a variety of factors. Your final compensation will be tailored based on your individual experience, educational background, specialized skills, and the specific demands of the role. Personal Time Off & Holidays Employees earn 20 Days of Personal Time Off Annually *Want more? Earn an extra day every anniversary for up to 25 Days! Three Tiered Medical Plans from CareFirst BCBS $5,500 Medical Opt-Out Dental, Vision, LTD and STD- 100% Company-paid 401k (Nothing but the best here!) 10% Employer Contribution (No match needed!) 7% Safe Harbor - 3% Profit Sharing Includes Safe Harbor and Profit Sharing - Immediate Vesting! Training & Education Reimbursement Up to $7,500 Training/Tuition Reimbursements Flexible Additional Training Support Available Upon Request Charity Donation Match Feeling Charitable? $250 Annual Donation Match to any Charitable Organization Pet Adoption Need a furry companion? Referral Bonus & Company Events $7,500 Referral Bonus Quarterly Happy Hours, Annual Picnic, Holiday Party, Movie Nights, All Hands Meet Ups Other Perks Swag Drops!, Flexible work schedule, Employee Appreciation Awards, Work Anniversary Gifts, Newborn Gifts #J-18808-Ljbffr
$134.1k - $241.4k
...Job Description Parsons is looking for a Cyber Vulnerability Analyst with a background in Red Team/Penetration Testing to join our team. In this role you will be responsible for simulating adversary tactics and working with other threat analyst team members to inform the...SuggestedFlexible hours- ...with exceptional professionals for this role. MANTECH seeks an experienced and passionate, career and customer-oriented Penetration Tester with Splunk to join our team located in the Ft. Meade, MD area. In this role, you be responsible for identifying network vulnerabilities...Suggested
$86.9k - $198k
...Penetration Tester Conduct testing and analysis to identify vulnerabilities and potential threat vectors in systems and networks, develop exploits, and engineer attack methodologies. Leverage MITRE ATT&CK and common cybersecurity control implementations to plan and conduct...SuggestedFull timeContract workPart timeLocal area$82.7k - $173.9k
...Job Title: Penetration Tester Job Category: Information Technology Time Type: Full time Minimum Clearance Required to Start: Secret Employee Type: Regular Percentage of Travel Required: Up to 25% Type of Travel: Continental US Exciting Opportunity: Join Our Dynamic Team...SuggestedFull timeContract workWork experience placementImmediate startFlexible hours$86.9k - $198k
...Job Number: R0243365 Penetration Tester The Opportunity Conduct testing and analysis to identify vulnerabilities and potential threat vectors in systems and networks, develop exploits, and engineer attack methodologies. Leverage understanding of MITRE ATT&CK and common...SuggestedContract workWork at officeLocal areaRemote work$50k - $290k
A leading consulting firm is seeking a Network Evaluator to assess and improve operational networks in Annapolis Junction, MD. Candidates must evaluate vulnerabilities, recommend countermeasures, and support security solutions. A Bachelor’s degree with relevant experience...- AUGUST SCHELL ENTERPRISES, INC. is seeking a Lead Penetration Tester in Annapolis Junction, MD. This role is crucial for collaborating on a large, complex program to safeguard networks from cyber threats. The successful candidate will join an agile team using the SAFe...
- AUGUST SCHELL ENTERPRISES, INC. is looking for a Lead Penetration Tester in Annapolis Junction, MD to join a high-performing agile team. The selected candidate will work in a dynamic environment applying advanced cybersecurity expertise to tackle complex challenges and...
- ...Information Technology, Information Assurance, and Information Security). Relevant experience must be in vulnerability analysis, penetration testing, and/or computer forensics. In addition, may include computer or information systems design/development, programming, information...Local area
- Senior Network Vulnerability Analyst - Full‑time, requires an active Secret clearance. Based in Fort Meade, MD, this role supports cybersecurity management in a U.S. DoD environment. Education Requirement Pursuing a bachelor's degree or equivalent work experience. Experience...Full timeWork experience placementCasual workWork at office
$104k - $166k
...CEH, CCNA-Security, CySA+, OSCP (or equivalent), PenTest+ or similar certification a plus. Completed multiple Hack-The-Box penetration testing labs and challenges, developing hands-on expertise in vulnerability enumeration, exploitation, privilege escalation, and...Contract workWork at officeShift work$3,000 per month
hackajob is collaborating with Lockheed Martin - US to connect them with exceptional professionals for this role. WHAT WE'RE DOING Lockheed Martin, Rotary Mission Systems Cyber & Intelligence invites you to step up to one of today’s most daunting challenges: the...Full timeTemporary workWork experience placementWork at officeRemote workRelocationFlexible hoursShift work- MANTECH seeks a motivated, career driven, and customer-focused Information System Security Officer (ISSO) to join our team in Columbia, MD . You will play a critical role in supporting enterprise infrastructure capabilities for a global, mission-focused workforce....Work at office
- A cybersecurity company is seeking a Cybersecurity Vulnerability Analyst to support a Vulnerability Disclosure Program for the federal government. The role requires a Bachelor’s degree and extensive experience in IT or cybersecurity, along with an active Security+ certification...
- ...Job Description Job Description ASSYST is seeking a skilled Penetration Tester to join our cybersecurity team in Baltimore, Maryland (Remote). This role involves conducting real-world attack simulations to identify vulnerabilities, preparing rules of engagement...Local areaRemote work
- cFocus Software seeks a Penetration Tester to join our program supporting the National Institutes of Health (NIH). This position is fully remote. This position requires a Public Trust or the ability to obtain a public trust clearance. Qualifications: ~ Public Trust...Full timeRemote work
- Overview Vexterra Group is searching for a Digital Forensic Analyst to provide support across forensic examinations, technical exploitation, and related activities for diverse customer assets and stakeholders. Responsibilities Conduct forensic examination of High Priority...Temporary workWork experience placement
$100k - $110k
Security Engineer Level 2 This position is responsible for design, planning, and implementation of in-house and cloud-based information systems, and enterprise software architectures that support the bank's information security operations functions. This role performs...Temporary workRemote workFlexible hours$80k - $120k
Digital Forensic Analyst Employment Type: Full-Time, Mid-Level Department: Forensics CGS is seeking a Digital Forensic Analyst whose primary focus will be on the preservation and collection of mobile device and cloud-stored data. This candidate should be fluent in a broad...Full timeWork at officeRemote workFlexible hours- Digital Forensic Analyst Employment Type: Full-Time, Mid-Level Department: Forensics CGS is seeking a Digital Forensic Analyst whose primary focus will be on the preservation & collection of mobile device and cloud‑stored data. This candidate should be fluent in a broad...Full timeWork at officeRemote workFlexible hours
- Senior Unix and Linux Vulnerability Analyst Job Title: Senior Unix and Linux Vulnerability Analyst Location: Fort Meade, MD 20755 Clearance Level: Active Secret Clearance Job Type: Full-Time PD Inc International is seeking an experienced and mission-driven Senior Unix...Full timeTemporary workWork experience placementCasual workWork at office
- PD Inc is seeking a Senior Web Vulnerability Analyst at Fort Meade, MD. The position involves providing Cybersecurity Management support in a U.S. government environment, addressing vulnerabilities, and ensuring compliance with DoD directives. Applicants should have a Bachelor...
- Job Title: Senior Database Vulnerability Analyst Location: Fort Meade, MD 20755 Clearance Level: Active Secret Clearance Job Type: Full-Time Must be U.S. Citizen PD Inc International is seeking an experienced and mission-driven Senior Database Vulnerability Analyst...Full timeWork experience placementCasual work
$3,000 per month
Job Description: This position is participating in our External Referral Program. If you know somebody who may be a fit, click here to submit a referral. If your referral is hired, you‘ll receive a $3000 payment! This position may be eligible for a $25K sign on ...Relocation package- PD Inc International is seeking a Senior Unix and Linux Vulnerability Analyst to support U.S. government cybersecurity operations at Fort Meade, MD. You will identify and report vulnerabilities in UNIX, Linux, and related assets, assess security controls, and explain risk...
$90k - $120k
...following areas: Network Analysts (Cyber, Forensic, Signals, Exploitation etc) Vulnerability Analysts Data Analysts Penetration Testers Malware Analysts Others… Be part of a team of diverse backgrounds performing ongoing, comprehensive vulnerability...Local areaRemote work- The Johns Hopkins University Applied Physics Laboratory (APL) is seeking a Cyber and Information Systems Security Analyst to design and operate national security systems within classified environments. You will join a team of cybersecurity specialists dedicated to supporting...
- PD Inc in Fort Meade, MD is seeking a mission-driven Senior Windows Vulnerability Analyst to provide Cybersecurity Management support in a U.S. government environment. This position requires significant experience in Microsoft Windows Server and cybersecurity practices,...
- Job Title: Senior Windows Vulnerability Analyst Location: Fort Meade, MD 20755 Clearance Level: Active Secret Clearance Job Type: Full-Time Must be U.S. Citizen. PD Inc International is seeking an experienced and mission-driven Senior Windows Vulnerability Analyst ...Full timeWork experience placementWork at office
- cFocus Software Incorporated is seeking a Vulnerability Analyst to support the National Institutes of Health (NIH) with remote work options. The role requires public trust clearance and 7+ years of experience in managing vulnerability assessments and enterprise solutions...Remote job
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Penetration Tester. Be the first to apply!



