Ethical Hacker/IT-Security (m/w/d)

com, is a C corporation and a registered Government contractor that provides services and solutions in:

• Professional, Administrative, and Management Support
• We are a Service-Disabled Veteran-Owned Small Business (SDVOSB) and the founder has years of successful experience in the Government contracting arena. Requisition Type:Full Time

Position Title: Penetration Tester

Security Clearance:The Penetration Testersupports this Transportation Security Administration Information Technology (TSA IT) Task Order (TO) by performing security attacks against all types of IT assets, and exploiting vulnerabilities found to determine if further reach within the engagement scope can be obtained. Provide final reports and presentations of the findings identified to personnel with a variety of technical knowledge to enable TSA IT management to make informed decisions about how to address the identified findings. Occasional off-hours testing and periodic travel required. Conducts penetration testing activities on TSA network.

• Penetration testing will use both automated tools and manual techniques in order to identify vulnerabilities and exploit vulnerabilities.
• Analyzes and validates test results and generates final reports and presents findings to the TSA IT management to make informed decisions on how to address the identified findings.
• Provides support, review, and recommendations of system security design, configuration, security findings, and data flow.
• Coordinates with the TSA Security Operations Center (SOC) to provide assistance with Security Information and Event Management (SIEM) detection content to improve the TSA SOC’s ability to detect activities performed during testing engagements.
• Provides Product and Technology Evaluations (NPTE) on technologies that are used for screening operations at the airports. Evaluation of technologies proposed by the Innovation Task Force’s Advancing the Checkpoint Environment (ACE), with Requirements and Capability Analysis (RCA) features, in support of the Acquisitions and Program Management (APM) teams in the Transportations Security Integration Facility (TSIF).
• The overall functions include, Cybersecurity Requirements Determination, Scoping and Security Testing Strategy, Security Test Documentation, Security Testing, Analysis, and Final Reporting with Findings Meetings.

At least (12) years of technical IT security experience.

• At least (8) years of experience performing Penetration Testing.
• At least (5) years of experience performing Penetration Testing for Federal IT systems.
• Kali Linux, AppScan, BurpSuite, SOAPUI, AppDetective, Cobalt Strike, RedSeal, and Nessus.
• Experience with penetration testing methodologies including Open Source Intelligence, Discovery, Enumeration, Vulnerability Identification, Exploitation, and Post Exploitation techniques and tools.
• Experience with manual testing techniques.
• Experience with custom programming languages: Python, Perl, Powershell, etc.
• Load Balancers, AV, Host and Network based devices, and Enterprise Security Tools.
• gTANGIBLE Corporation is an equal opportunity employer and does not discriminate against any employee or applicant because of race, age, sex, color, physical or mental disability, religion, sexual orientation, marital status, national origin, or political affiliation.