Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Penetration Tester

General Dynamics

Penetration Tester

The Penetration Tester supports the Case Management Modernization (CMM) Program for the Administrative Office of the U.S. Courts (AO) by conducting security, penetration, and vulnerability assessments required prior to Application ATO (Authority to Operate). This role ensures that CMM applications-built using React, NodeJS, AWS cloud services, and microservices-meet federal security standards and demonstrate resilience against real-world cyber threats. Working within Agile DevSecOps teams, the Penetration Tester performs hands-on exploitation, validates security controls, identifies weaknesses, and collaborates with engineering teams to remediate findings. This role is critical to ensure that CMM systems comply with NIST 800-53, RMF, and AO security requirements before production authorization.

Key Responsibilities:

  • Perform application, API, and cloud penetration tests on CMM systems prior to ATO submission.
  • Conduct web, mobile, API, and microservices security testing using industry-standard tools and manual exploitation techniques.
  • Execute AWS cloud penetration testing within approved boundaries (IAM, S3, Lambda, API Gateway, ECS/EKS, networking).
  • Perform static and dynamic analysis, including code review for security vulnerabilities.
  • Conduct credentialed and uncredentialed scans, privilege escalation testing, and lateral movement analysis.
  • Validate implementation of NIST 800-53 controls, including AC, AU, IA, SC, SI, and CM families.
  • Support RMF Step 3 (Security Assessment) activities and provide evidence for ATO packages.
  • Identify vulnerabilities across application layers, cloud infrastructure, and CI/CD pipelines.
  • Work with developers, cloud engineers, and DevSecOps teams to validate fixes and retest vulnerabilities.
  • Provide detailed remediation guidance aligned with secure coding and cloud security best practices.
  • Track findings in Jira or equivalent tools and ensure closure prior to ATO milestones.
  • Prepare Security Assessment Reports (SAR), penetration test summaries, and risk findings for AO stakeholders.
  • Document exploitation steps, proof-of-concepts, and risk severity aligned with federal scoring methodologies.
  • Contribute to System Security Plans (SSP), POA&Ms, and ATO evidence packages.
  • Support pre-ATO readiness reviews, including control validation and security walkthroughs.
  • Participate in tabletop exercises, threat modeling sessions, and architecture reviews.
  • Validate system resilience through stress, failover, and adversarial resilience testing.
  • Ensure compliance with federal security standards, including NIST, FISMA, and AO-specific guidelines.
  • Work closely with development teams to integrate security testing into Agile sprints.
  • Provide security insights during sprint planning, backlog refinement, and release readiness reviews.
  • Support secure CI/CD pipeline enhancements, including automated security scanning.
Vacancy posted 3 days ago
Similar jobs that could be interesting for youBased on the Penetration Tester in United States vacancy
  • $168.5k

     ...Barclays to connect them with exceptional professionals for this role. What will you be doing? Barclays Services Corp. seeks Penetration Tester, AVP (multiple positions) in Whippany, NJ: Scope and execute penetration tests and code review against a variety of... 
    Suggested
    Hourly pay
    Remote work

    Barclays

    New Jersey
    7 days ago
  •  ...crafts tailored, exploit-driven assessments based on each organization's unique business logic and risk profile. Summary As a Penetration Tester , you will be a founding member of our new European penetration testing team. You will work at the intersection of... 
    Suggested

    Terra Security

    Poland, NY
    2 days ago
  • $150k - $195k

     ...Overview VTG is looking for multiple levels (Level 2, 3 & 4) of a Penetration Tester in Chantilly VA and Aurora CO. (Note: position is contingent upon program award and the postions are located in Chantilly VA & Auroro CO) A Penetration Tester (Pen Tester) is a security... 
    Suggested
    Work experience placement

    VTG Defense

    Chantilly, Loudoun County, VA
    2 days ago
  •  ...Penetration Tester Our client is seeking a Penetration Tester with 8-10 years of experience to review and validate vulnerability reports, perform targeted retesting, and coordinate remediation efforts across development and infrastructure teams. Responsibilities... 
    Suggested

    RIT Solutions

    New York, NY
    3 days ago
  •  ...Location: Marlboro, MA Job Responsibilities Security Analysis and Testing Conduct vulnerability scanning, penetration testing, and code analysis to identify and address security concerns in applications. Incident Response Investigate security breaches, determine... 
    Suggested

    Q1 Technologies

    Southborough, MA
    4 days ago
  •  ...required You will need to hold a current Team Member certificate – either TIGER or CREST Have deep technical knowledge of hacking and penetration testing techniques, methodologies and tools across all common platforms. Active CHECK status is highly desirable although we can... 

    3 Faces Recruitment Limited

    Malvern, AR
    2 days ago
  • $95k - $112k

     ...meaningful results. Position Summary: This is a contingent position based upon customer approval. SkyePoint Decisions is seeking a Penetration Tester to support the Diplomatic Security Cyber Mission (DSCM) program providing leading cyber and technology security experience to... 
    Contract work
    Remote work

    SkyePoint Decisions

    Arlington, VA
    2 days ago
  •  ...Penetration Tester Experienced & hands on penetration tester (preferably with CH certification) with experience in both web & mobile applications leveraging Burp Suite. Vulnerability assessment and penetration testing of internet facing, mobile applications, SOAP and... 

    Argyle Infotech

    Passaic, NJ
    2 days ago
  •  ...Dark Wolf is looking for a Penetration Tester who will plan and perform continuous cross-domain vulnerability assessments, full-scale penetration testing and red team operations. The ideal candidate must display familiarity with both cloud-based and on-premises Windows... 
    Full time

    Dark Wolf

    Ogden, UT
    2 days ago
  • $152.38k - $206.16k

     ...experience US Citizenship Required: Yes Job Description: Seize your opportunity to make a personal impact as a Penetration Tester supporting customer activities. GDIT is your place to make meaningful contributions to challenging projects and grow a... 
    Temporary work
    Immediate start
    Remote work
    Worldwide
    Flexible hours

    General Dynamics Information Technology

    McLean, VA
    3 days ago
  •  ...Penetration Tester Location: Austin, TX Duration: Long term contract Skills: Security Testing, Web Application security, Penetration testing (At least one year experience) What We're Looking For Analytical thinking, and motivated to learn new things.... 
    Long term contract

    InterSources

    Austin, TX
    2 days ago
  • $86.8k - $198k

     ...Job Number: R0236401 Penetration Tester The Opportunity: Conduct testing and analysis to identify vulnerabilities and potential threat vectors in systems and networks, develop exploits, and engineer attack methodologies.Apply advanced advising skills, extensive... 
    Full time
    Contract work
    Part time
    Work at office
    Local area
    Remote work

    Booz Allen Hamilton

    Herndon, VA
    1 day ago
  •  ...Senior Web Application Penetration Tester Annapolis, Maryland SIXGEN's mission is to deliver agile, mission-ready cybersecurity solutions that empower government and critical infrastructure organizations to stay ahead of advanced cyber threats. We combine innovation... 
    Full time
    Temporary work
    Remote work
    Flexible hours

    SIXGEN

    United States
    23 hours ago
  •  ...with exceptional professionals for this role. MANTECH seeks an experienced and passionate, career and customer-oriented Penetration Tester with Splunk to join our team located in the Ft. Meade, MD area. In this role, you be responsible for identifying network vulnerabilities... 

    MANTECH

    Maryland
    14 days ago
  •  ...A technology solutions firm is seeking a Web Application Penetration Tester to perform manual penetration testing on critical web applications. The role involves identifying vulnerabilities, collaborating with the development team for remediation, and mentoring in secure... 

    Saicon

    Pleasanton, CA
    2 days ago
  •  ...Job Description We are seeking a Penetration Tester to join our team! You will implement security measures for the protection of computer networks and information. Responsibilities Implement and monitor daily security alerts Report and respond to any security breaches... 
    Apprenticeship

    Total Cyber Solutions LLC

    Springfield, VA
    2 days ago
  •  ...Position: Penetration Tester Location: Woonsocket, RI (Onsite) Duration: C2C W2 Contract Experience: 8*+ Years Job Description: • Conduct advanced penetration tests on web applications, mobile applications, network infrastructure, and cloud environments... 
    Contract work
    Immediate start

    Syntricate Technologies

    Woonsocket, RI
    3 days ago
  •  ...Penetration Tester Our client is seeking a Penetration Tester to help ensure the continued operation of the systems that protect a client's network against unauthorized access, modification of data, and malicious activity. These systems require continuous management... 
    Work experience placement

    Marathon TS

    Manassas Park, VA
    2 days ago
  • $88.8k - $165.6k

     ...regulators, and the business Depth over volume – focus on deep, manual penetration testing (Network, Cloud, and AI with human in the loop), not...  ...training expensed Core Responsibilities The Penetration Tester reports to the Sr. Manager of Network and Strategic... 
    Contract work
    Work experience placement
    Local area
    Remote work

    BMO U.S.

    Wausau, WI
    2 days ago
  •  ...IT Security - Penetration Tester Our client company is a top-tier global Information Technology Solutions provider. They have been rated as one of the Best Places to Work by Fortune for over 10 years. Our client is expanding the IT Security practice and adding Security... 
    Remote work
    Work from home

    Hire Life Recruiting and Consulting

    United States
    2 days ago
  • $60k - $180k

     ...Penetration Tester II Chandler, AZ or Washington, DC - Secret clearance required M9 Solutions is dedicated to providing IT services and solutions to the Federal Government by mobilizing the right people, skills, clearance levels, and technologies to help organizations... 
    Contract work

    M9 Solutions

    Washington DC
    1 day ago
  •  ...Webinspect and HCL Appscan preferred – any other tools is OK as well Minimum 7 years of experience Work with enterprise programs on penetration testing and online application security Worked extensively on Web & Mobile Application, Network device, API Security, Web... 

    Omni Inclusive

    Cary, NC
    4 days ago
  •  ...Heavy Penetration Testing Experience Needed -Manual AND automated testing -Manual pen testing experience Need to be able to actually execute and understand tools/how to use. -If they have an ethical hacker certification, they will most... 

    Apex Informatics

    Dallas, TX
    1 day ago
  •  ...Penetration Tester GC, USC 100% onsite in Albany, NY. All Candidates must currently live in Albany, NY or the very close surrounding area. Java application security expert with 6+ years in DevSec, skilled in core Java, OWASP, vulnerability assessment... 
    Live in

    3B Staffing LLC

    Albany, NY
    2 days ago
  •  ...blending of several disciplines to include, but not limited, penetration testing, reverse engineering, and code/script development. In...  ...In support of this mission, Tharros is seeking a Penetration Tester (PT) to conduct assessments of threats and vulnerabilities; determine... 
    Local area

    ANALYGENCE Inc

    San Antonio, TX
    2 days ago
  •  ...Marathon TS Penetration Tester Hybrid Remote in Manassas, VA Financial Technology Industry Penetration Tester As a penetration tester in the Swift Red Team, you will assess security from an offensive perspective with the intent to improve the global security... 
    Remote work

    Marathon TS

    United States
    4 days ago
  •  ...Penetration Tester LOCATION Chantilly, VA 20151 CLEARANCE TS/SCI Full Poly (Please note this position requires full U.S. Citizenship) KEY SUMMARY We are seeking a highly skilled and proactive Penetration Tester to join our cybersecurity team. In... 
    Temporary work
    For contractors
    Immediate start
    Flexible hours

    Cymertek

    Chantilly, Loudoun County, VA
    23 hours ago
  •  ...Engineering may be substituted for four years of experience) Proficiency in utilizing a wide variety of tools for vulnerability and penetration testing Experience in performing both network and application-level testing using established test protocols and methods... 
    Full time
    Work experience placement

    nDepth Security, LLC

    Columbia, MD
    2 days ago
  •  ...Organization Responsible for the management and optimization of all logistics operations supporting mission‑critical activities. Penetration Tester – Tharros (US Navy) Assist in developing cyber test plans and execute cyber tests to support the US Navy’s operational test... 
    Internship

    ANALYGENCE Inc

    Norfolk, VA
    2 days ago
  • $113.2k - $237.8k

     ...Job Title: Penetration Tester Job Category: Engineering Time Type: Full time Minimum Clearance Required to Start: TS/SCI with Polygraph Employee Type: Regular Percentage of Travel Required: None Type of Travel: None Opportunity Perform computer network evaluations to... 
    Full time
    Contract work
    Work experience placement
    Immediate start
    Flexible hours

    CACI International

    Chantilly, Loudoun County, VA
    2 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Penetration Tester. Be the first to apply!