FREE ACCESS
5,000–10,000 jobs/day

See all jobs on JobTailor
Search thousands of fresh jobs every day.
Discover
- Fresh listings
- Fast filters
- No subscription required
Create a free account and start exploring right away.

Penetration Testing – Mid-Level/Senior
EnDyna IncPenetration Tester conducting advanced penetration testing and cybersecurity assessments for HHS Office of Inspector General Cyber Assessment Team. Supporting Federal audit activities and performing vulnerability analysis.
Tech Stack
Tools & technologiesAWSAzureCloudCyber SecurityDockerKubernetesLinuxPythonTCP/IP
About the role
Key responsibilities & impact- Perform cybersecurity assessments including Penetration Testing
- Perform external network penetration testing
- Perform internal network penetration testing
- Perform web application penetration testing
- Perform cloud security assessments
- Perform wireless security assessments
- Perform mobile application testing
- Perform container security assessments
- Perform AI system security assessments
- Conduct phishing and social engineering assessments
- Perform information gathering and reconnaissance
- Enumerate hosts, services, operating systems, applications and network devices
- Identify vulnerabilities and attack paths
- Exploit vulnerabilities using approved methodologies
- Perform post-exploitation activities
- Demonstrate persistence techniques
- Evaluate data access and exfiltration opportunities
- Document countermeasures encountered during testing
- Validate remediation activities
- Analyze vulnerability scan results
- Correlate findings from multiple tools
- Eliminate false positives
- Prioritize vulnerabilities based upon risk
- Map findings to NIST, CVE, OWASP and Federal guidance
- Develop mitigation recommendations
- Prepare professional technical documentation including Rules of Engagement review, Attack confirmation lists, Penetration testing reports, Executive summaries, Technical findings, Risk analyses, Recommendations, Supporting evidence, Screenshots, Logs, Testing artifacts
- Participate in planning meetings
- Conduct entrance conferences
- Present technical findings
- Participate in status briefings
- Explain vulnerabilities to both technical and executive audiences
- Support audit teams throughout engagements
- Provide cybersecurity expertise supporting OIG auditors by performing vulnerability scans, analyzing scan results, advising auditors on security findings, supporting remote assessments, participating in technical discussions
Requirements
What you’ll need- Bachelor's degree in Cybersecurity, Computer Science, Information Technology or related field
- 4+ years of penetration testing experience
- Experience performing network and web application penetration testing
- Experience with vulnerability assessment tools
- Experience writing professional technical reports
- Knowledge of TCP/IP networking
- Understanding of Windows and Linux operating systems
- (Senior) Bachelor's degree (Master's preferred)
- 8+ years of penetration testing experience
- Experience leading penetration testing engagements
- Advanced exploitation experience
- Experience with cloud environments
- Experience mentoring junior testers
- Experience briefing executive leadership
- Strong technical writing skills
- Experience with Burp Suite Pro, Nmap, Nessus, Metasploit, Kali Linux, Wireshark, BloodHound, Impacket, CrackMapExec, PowerShell, Python, Azure, AWS, Docker, Kubernetes, Active Directory, Microsoft Entra ID, Wireless testing tools
- One or more of: OSCP, OSCE, OSEP, GPEN, GWAPT, GXPN, GCIH, CISSP, Security+, PNPT, CRTO
- Experience with NIST SP 800-115, OWASP Testing Guide, MITRE ATT&CK, CVSS, Federal cybersecurity environments, FISMA, FedRAMP
Benefits
Comp & perks- Flexible remote work environment
ATS Keywords
✓ Tailor your resumeApplicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
Penetration TestingVulnerability AnalysisNetwork SecurityWeb Application TestingCloud Security AssessmentsMobile Application TestingContainer Security AssessmentsAI System Security AssessmentsPost-Exploitation ActivitiesExploitation Methodologies
Soft Skills
Technical CommunicationMentoringCollaborationPresentation SkillsProblem Solving
Certifications
OSCPOSCEOSEPGPENGWAPTGXPNGCIHCISSPSecurity+PNPT