Penetration Tester
General Dynamics
Penetration Tester
The Penetration Tester supports the Case Management Modernization (CMM) Program for the Administrative Office of the U.S. Courts (AO) by conducting security, penetration, and vulnerability assessments required prior to Application ATO (Authority to Operate). This role ensures that CMM applications-built using React, NodeJS, AWS cloud services, and microservices-meet federal security standards and demonstrate resilience against real-world cyber threats. Working within Agile DevSecOps teams, the Penetration Tester performs hands-on exploitation, validates security controls, identifies weaknesses, and collaborates with engineering teams to remediate findings. This role is critical to ensure that CMM systems comply with NIST 800-53, RMF, and AO security requirements before production authorization.
Key Responsibilities:
- Perform application, API, and cloud penetration tests on CMM systems prior to ATO submission.
- Conduct web, mobile, API, and microservices security testing using industry-standard tools and manual exploitation techniques.
- Execute AWS cloud penetration testing within approved boundaries (IAM, S3, Lambda, API Gateway, ECS/EKS, networking).
- Perform static and dynamic analysis, including code review for security vulnerabilities.
- Conduct credentialed and uncredentialed scans, privilege escalation testing, and lateral movement analysis.
- Validate implementation of NIST 800-53 controls, including AC, AU, IA, SC, SI, and CM families.
- Support RMF Step 3 (Security Assessment) activities and provide evidence for ATO packages.
- Identify vulnerabilities across application layers, cloud infrastructure, and CI/CD pipelines.
- Work with developers, cloud engineers, and DevSecOps teams to validate fixes and retest vulnerabilities.
- Provide detailed remediation guidance aligned with secure coding and cloud security best practices.
- Track findings in Jira or equivalent tools and ensure closure prior to ATO milestones.
- Prepare Security Assessment Reports (SAR), penetration test summaries, and risk findings for AO stakeholders.
- Document exploitation steps, proof-of-concepts, and risk severity aligned with federal scoring methodologies.
- Contribute to System Security Plans (SSP), POA&Ms, and ATO evidence packages.
- Support pre-ATO readiness reviews, including control validation and security walkthroughs.
- Participate in tabletop exercises, threat modeling sessions, and architecture reviews.
- Validate system resilience through stress, failover, and adversarial resilience testing.
- Ensure compliance with federal security standards, including NIST, FISMA, and AO-specific guidelines.
- Work closely with development teams to integrate security testing into Agile sprints.
- Provide security insights during sprint planning, backlog refinement, and release readiness reviews.
- Support secure CI/CD pipeline enhancements, including automated security scanning.
$168.5k
...Barclays to connect them with exceptional professionals for this role. What will you be doing? Barclays Services Corp. seeks Penetration Tester, AVP (multiple positions) in Whippany, NJ: Scope and execute penetration tests and code review against a variety of...SuggestedHourly payRemote work- ...crafts tailored, exploit-driven assessments based on each organization's unique business logic and risk profile. Summary As a Penetration Tester , you will be a founding member of our new European penetration testing team. You will work at the intersection of...Suggested
$150k - $195k
...Overview VTG is looking for multiple levels (Level 2, 3 & 4) of a Penetration Tester in Chantilly VA and Aurora CO. (Note: position is contingent upon program award and the postions are located in Chantilly VA & Auroro CO) A Penetration Tester (Pen Tester) is a security...SuggestedWork experience placement- ...Penetration Tester Our client is seeking a Penetration Tester with 8-10 years of experience to review and validate vulnerability reports, perform targeted retesting, and coordinate remediation efforts across development and infrastructure teams. Responsibilities...Suggested
- ...Location: Marlboro, MA Job Responsibilities Security Analysis and Testing Conduct vulnerability scanning, penetration testing, and code analysis to identify and address security concerns in applications. Incident Response Investigate security breaches, determine...Suggested
- ...required You will need to hold a current Team Member certificate – either TIGER or CREST Have deep technical knowledge of hacking and penetration testing techniques, methodologies and tools across all common platforms. Active CHECK status is highly desirable although we can...
$95k - $112k
...meaningful results. Position Summary: This is a contingent position based upon customer approval. SkyePoint Decisions is seeking a Penetration Tester to support the Diplomatic Security Cyber Mission (DSCM) program providing leading cyber and technology security experience to...Contract workRemote work- ...Penetration Tester Experienced & hands on penetration tester (preferably with CH certification) with experience in both web & mobile applications leveraging Burp Suite. Vulnerability assessment and penetration testing of internet facing, mobile applications, SOAP and...
- ...Dark Wolf is looking for a Penetration Tester who will plan and perform continuous cross-domain vulnerability assessments, full-scale penetration testing and red team operations. The ideal candidate must display familiarity with both cloud-based and on-premises Windows...Full time
$152.38k - $206.16k
...experience US Citizenship Required: Yes Job Description: Seize your opportunity to make a personal impact as a Penetration Tester supporting customer activities. GDIT is your place to make meaningful contributions to challenging projects and grow a...Temporary workImmediate startRemote workWorldwideFlexible hours- ...Penetration Tester Location: Austin, TX Duration: Long term contract Skills: Security Testing, Web Application security, Penetration testing (At least one year experience) What We're Looking For Analytical thinking, and motivated to learn new things....Long term contract
$86.8k - $198k
...Job Number: R0236401 Penetration Tester The Opportunity: Conduct testing and analysis to identify vulnerabilities and potential threat vectors in systems and networks, develop exploits, and engineer attack methodologies.Apply advanced advising skills, extensive...Full timeContract workPart timeWork at officeLocal areaRemote work- ...Senior Web Application Penetration Tester Annapolis, Maryland SIXGEN's mission is to deliver agile, mission-ready cybersecurity solutions that empower government and critical infrastructure organizations to stay ahead of advanced cyber threats. We combine innovation...Full timeTemporary workRemote workFlexible hours
- ...with exceptional professionals for this role. MANTECH seeks an experienced and passionate, career and customer-oriented Penetration Tester with Splunk to join our team located in the Ft. Meade, MD area. In this role, you be responsible for identifying network vulnerabilities...
- ...A technology solutions firm is seeking a Web Application Penetration Tester to perform manual penetration testing on critical web applications. The role involves identifying vulnerabilities, collaborating with the development team for remediation, and mentoring in secure...
- ...Job Description We are seeking a Penetration Tester to join our team! You will implement security measures for the protection of computer networks and information. Responsibilities Implement and monitor daily security alerts Report and respond to any security breaches...Apprenticeship
- ...Position: Penetration Tester Location: Woonsocket, RI (Onsite) Duration: C2C W2 Contract Experience: 8*+ Years Job Description: • Conduct advanced penetration tests on web applications, mobile applications, network infrastructure, and cloud environments...Contract workImmediate start
- ...Penetration Tester Our client is seeking a Penetration Tester to help ensure the continued operation of the systems that protect a client's network against unauthorized access, modification of data, and malicious activity. These systems require continuous management...Work experience placement
$88.8k - $165.6k
...regulators, and the business Depth over volume – focus on deep, manual penetration testing (Network, Cloud, and AI with human in the loop), not... ...training expensed Core Responsibilities The Penetration Tester reports to the Sr. Manager of Network and Strategic...Contract workWork experience placementLocal areaRemote work- ...IT Security - Penetration Tester Our client company is a top-tier global Information Technology Solutions provider. They have been rated as one of the Best Places to Work by Fortune for over 10 years. Our client is expanding the IT Security practice and adding Security...Remote workWork from home
$60k - $180k
...Penetration Tester II Chandler, AZ or Washington, DC - Secret clearance required M9 Solutions is dedicated to providing IT services and solutions to the Federal Government by mobilizing the right people, skills, clearance levels, and technologies to help organizations...Contract work- ...Webinspect and HCL Appscan preferred – any other tools is OK as well Minimum 7 years of experience Work with enterprise programs on penetration testing and online application security Worked extensively on Web & Mobile Application, Network device, API Security, Web...
- ...Heavy Penetration Testing Experience Needed -Manual AND automated testing -Manual pen testing experience Need to be able to actually execute and understand tools/how to use. -If they have an ethical hacker certification, they will most...
- ...Penetration Tester GC, USC 100% onsite in Albany, NY. All Candidates must currently live in Albany, NY or the very close surrounding area. Java application security expert with 6+ years in DevSec, skilled in core Java, OWASP, vulnerability assessment...Live in
- ...blending of several disciplines to include, but not limited, penetration testing, reverse engineering, and code/script development. In... ...In support of this mission, Tharros is seeking a Penetration Tester (PT) to conduct assessments of threats and vulnerabilities; determine...Local area
- ...Marathon TS Penetration Tester Hybrid Remote in Manassas, VA Financial Technology Industry Penetration Tester As a penetration tester in the Swift Red Team, you will assess security from an offensive perspective with the intent to improve the global security...Remote work
- ...Penetration Tester LOCATION Chantilly, VA 20151 CLEARANCE TS/SCI Full Poly (Please note this position requires full U.S. Citizenship) KEY SUMMARY We are seeking a highly skilled and proactive Penetration Tester to join our cybersecurity team. In...Temporary workFor contractorsImmediate startFlexible hours
- ...Engineering may be substituted for four years of experience) Proficiency in utilizing a wide variety of tools for vulnerability and penetration testing Experience in performing both network and application-level testing using established test protocols and methods...Full timeWork experience placement
- ...Organization Responsible for the management and optimization of all logistics operations supporting mission‑critical activities. Penetration Tester – Tharros (US Navy) Assist in developing cyber test plans and execute cyber tests to support the US Navy’s operational test...Internship
$113.2k - $237.8k
...Job Title: Penetration Tester Job Category: Engineering Time Type: Full time Minimum Clearance Required to Start: TS/SCI with Polygraph Employee Type: Regular Percentage of Travel Required: None Type of Travel: None Opportunity Perform computer network evaluations to...Full timeContract workWork experience placementImmediate startFlexible hours
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Penetration Tester. Be the first to apply!


