"Alerted.org

Vulnerability Assessment and Penetration Tester

**Department:** DOJ JSOC

Location:

Tyto Athene is searching for a **Penetration Tester** to assist our federal client conducting security assessments of their web and mobile applications, as well as their underlying infrastructure.

Responsibilities:

+ Conduct vulnerability assessments

+ Carry out penetration tests, performs social engineering tests

+ Analyze technical security weaknesses

+ Perform risk analyses and develops exploits

+ Research and maintain proficiency in tools, techniques, countermeasures, and trends in computer and network vulnerabilities, data hiding, and encryption

+ Develop tools, techniques, training, and countermeasures for computer and network vulnerabilities, data hiding, and encryption.

Required:

+ Minimum of five (5) years of experience.

+ Bachelor-s Degree, or an equivalent combination of formal education, and experience.

+ GPEN certificate or equivalent.

+ Must have a strong technical background and understand system architecture and design, operating systems, network infrastructure, software installation on test platforms, software development, database, and operating systems.

+ Security, Software Development, Networking, and/or Systems Administrator Experience

+ Deep understanding of 3-tiered Web Applications and Mobile Application Architectures

+ Manual Penetration Testing Experience (i.e. mapping applications, injecting SQLi, XSS, XXE, exploit creation)

+ Must have Commercial Web Application Tool Experience (i.e. BurpSuite, AppScan, WebInspect)

+ Network Penetration Testing Tool Experience (i.e. Nmap, Nessus, Wireshark, Metasploit, Hydra, John)

+ Exceptional communication skills, with the ability to explain the technical details of OWASP Top 10 and other vulnerabilities from C-levels to developers in a large professional environment

Desired:

+ Web Services Security Penetration Testing Experience

+ Software Development and/or Scripting Experience in .NET, C++, Java, C#, perl, python, or bash

+ Mobile Application Penetration Testing (i.e. iOS, Android, Windows, Blackberry)

+ Database Experience (DBA or security penetration testing)

+ Source Code Review (aka Static Analysis) Experience

+ Excellent technical writing skills and attention to detail

Clearance:

+ Secret Clearance required

Location:

+ There will be on-site client engagements. Must be able to travel to Washington, DC a week a quarter. When not on client site, there will be options for telework.

Compensation:

+ Compensation is unique to each candidate and relative to the skills and experience they bring to the position. The salary range for this position is typically $130K-$140K. This does not guarantee a specific salary as compensation is based upon multiple factors such as education, experience, certifications, and other requirements, and may fall outside of the above-stated range.

Benefits:

+ Highlights of our benefits include Health/Dental/Vision, 401(k) match, Flexible Time Off, STD/LTD/Life Insurance, Referral Bonuses, professional development reimbursement, and maternity/paternity leave.

Additional Information:

Tyto Athene is a trusted leader in IT services and solutions, delivering mission-focused digital transformation that drives measurable success. Our expertise spans four core technology domains-Network Modernization, Hybrid Cloud, Cybersecurity, and Enterprise IT-empowering our clients with cutting-edge solutions tailored to their evolving needs. With over 50 years of experience, Tyto Athene proudly support Defense, Intelligence, Space, National Security, Civilian, Health, and Public Safety clients across the United States and worldwide.

At Tyto Athene, we believe that success starts with our people. We foster a collaborative, innovative, and mission-driven environment where every team member plays a critical role in shaping the future of technology. Are you ready to join #TeamTyto?

Tyto Athene, LLC is an Equal Opportunity Employer; all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, [sexual orientation, gender identity,] national origin, disability, status as a protected veteran, or any characteristic protected by applicable law.