Penetration Tester
Company Overview
TestPros is a successful and growing business, established in 1988 to provide Information Technology (IT) technical support services to a wide range of Commercial and U.S. Federal, State, and Local Government customers. Our capabilities include Program Management, Program Oversight, Process Audit, Intelligence Analysis, Cyber Security, NIST SP 800-171 Assessment and Compliance, ATO Support, Computer Forensics, Software Assurance, Software Testing, Test Automation, Section 508 / WCAG / ADA Accessibility Assessment,Customer Experience (CX), Localization Testing, Independent Verification and Validation (IV&V), Quality Assurance (QA), Compliance, and Research and Development (R&D) services.TestPros is an Equal Opportunity Employer.
TestPros delivers innovative independent IT assessment solutions to critical challenges facing the nation and the world. We support the U.S. Federal Government and Commercial clients within the continental USA.TestPros is dedicated to making lives better, safer and more secure.
Position:Part time (as needed, 1099 or Corp. to Corp) Job Summary
TestPros is looking foran experienced Penetration Tester professionalto support our IT Security consulting work for various Commercial and Federal consulting services projects.
This role is responsible for the successful delivery of penetration testing in both classic hosted and also in cloud hosted environments. In this role,the selected candidatewill work with our clients product development teams to plan for, execute, and report on the results of penetration testing. Youmust be deliveryand efficiency focused, with the ability to manage all aspects of a consultingproject to includerequirements analysis, bid and proposal development, resource planning, process improvement, and customer relationship management. The ideal candidate will thrive in a fast-paced environment where personal responsibility and open, direct, respectful communications are highly valued.
Location: Remote
Responsibilities:
Conduct complete penetration tests, report on results, and provide improvement recommendations
Ensure customer satisfaction through the delivery of high-quality consulting services across a portfolio of commercial and federal government projects
Ability to elicit and understand customer requirements and covert those requirements into a technical services solution
Ability to accurately estimate time and cost for each project
Foster an environment of continuous learning,innovationand excellence
Work closely with development teams, product managers, and customer success teams to ensure successful delivery of consulting services or product implementation projects and remove roadblocks
Develop, review and approve formal statements of work, change requests, and proposals
Formulate timely reports and documentation to track progress
Effectively collaborate with peers and company leadership to accomplish team, corporate and client objectives
Answer developer, designer, and content contributor questions about IT Security requirements.
Experience Requirements:
Minimum of5years of experience in penetration testing
Desired certifications Security+, CEH, GPEN, OSCP, AWS, or equivalent
Understanding of OWASP Top 10 and industry best practices for penetration testing
Understanding of all aspects of Penetration Testing with an emphasis on white box testing, black box testing, internal networks, external networks, web applications, and application/code review
Understanding of Pen Test methods such as Open Source Security Testing Methodology Manual (OSSTMM), Open Web Application Security Project (OWASP), Penetration Testing Execution Standard (PTES), FedRAMP Penetration Test Guide, NIST, etc.
Proficient with the command line interface of multiple operating systems Windows, macOS, Linux, etc.
Solid understanding of manual scripting and scripting languages- ex. Python, Bash, PowerShell, C/C++, etc.
Proficient with using commercial and open source penetration testing tools ex. Metasploit, Nikto, SQLMAP, Responder, Nessus, Netcat, Burp Suite, etc.
Conduct and document vulnerability scans and penetration testing on web-based applications and their underlying hosts
Proven ability to perform computer network vulnerability assessment and penetration testing
Understanding of risk planning and mitigation strategies
Ability to prepare and present documents and briefing materials
Advise on new threats to the technologies and environment and provide mitigation steps when applicable
Provide security guidance on design, deployment, and architecture of web-based and cloud hosted applications.
Participate in technical discussions and collaborate with team members
Exceptional communication skills - both orally and written
Strong customer service skills
Strong organizational and time-management skills with the ability to handle multiple tasks at once, while still paying attention to detail
A strong work ethic and self-starter attitude, with the ability to thrive in a fast-paced environment
Bachelors degreein a related field or equivalent work experience and advance
Benefits
TestPros offers a competitive salary, medical/dental/vision insurance, life insurance, disability insurance, paid time off, paid holidays,401(k) retirement plan with company match, opportunities for professional growth, cell phone discounts, and much more! All benefits are per TestPros current policies and are subject to change without notice. Benefits are available to full-time employees.
TestPros, Inc. is an Equal Opportunity Employer.
EEO Statement
All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, gender identity, marital status, age, national origin, or protected veteran status.
About the job
Apply for this position
Penetration Tester
Company Overview
TestPros is a successful and growing business, established in 1988 to provide Information Technology (IT) technical support services to a wide range of Commercial and U.S. Federal, State, and Local Government customers. Our capabilities include Program Management, Program Oversight, Process Audit, Intelligence Analysis, Cyber Security, NIST SP 800-171 Assessment and Compliance, ATO Support, Computer Forensics, Software Assurance, Software Testing, Test Automation, Section 508 / WCAG / ADA Accessibility Assessment,Customer Experience (CX), Localization Testing, Independent Verification and Validation (IV&V), Quality Assurance (QA), Compliance, and Research and Development (R&D) services.TestPros is an Equal Opportunity Employer.
TestPros delivers innovative independent IT assessment solutions to critical challenges facing the nation and the world. We support the U.S. Federal Government and Commercial clients within the continental USA.TestPros is dedicated to making lives better, safer and more secure.
Position:Part time (as needed, 1099 or Corp. to Corp) Job Summary
TestPros is looking foran experienced Penetration Tester professionalto support our IT Security consulting work for various Commercial and Federal consulting services projects.
This role is responsible for the successful delivery of penetration testing in both classic hosted and also in cloud hosted environments. In this role,the selected candidatewill work with our clients product development teams to plan for, execute, and report on the results of penetration testing. Youmust be deliveryand efficiency focused, with the ability to manage all aspects of a consultingproject to includerequirements analysis, bid and proposal development, resource planning, process improvement, and customer relationship management. The ideal candidate will thrive in a fast-paced environment where personal responsibility and open, direct, respectful communications are highly valued.
Location: Remote
Responsibilities:
Conduct complete penetration tests, report on results, and provide improvement recommendations
Ensure customer satisfaction through the delivery of high-quality consulting services across a portfolio of commercial and federal government projects
Ability to elicit and understand customer requirements and covert those requirements into a technical services solution
Ability to accurately estimate time and cost for each project
Foster an environment of continuous learning,innovationand excellence
Work closely with development teams, product managers, and customer success teams to ensure successful delivery of consulting services or product implementation projects and remove roadblocks
Develop, review and approve formal statements of work, change requests, and proposals
Formulate timely reports and documentation to track progress
Effectively collaborate with peers and company leadership to accomplish team, corporate and client objectives
Answer developer, designer, and content contributor questions about IT Security requirements.
Experience Requirements:
Minimum of5years of experience in penetration testing
Desired certifications Security+, CEH, GPEN, OSCP, AWS, or equivalent
Understanding of OWASP Top 10 and industry best practices for penetration testing
Understanding of all aspects of Penetration Testing with an emphasis on white box testing, black box testing, internal networks, external networks, web applications, and application/code review
Understanding of Pen Test methods such as Open Source Security Testing Methodology Manual (OSSTMM), Open Web Application Security Project (OWASP), Penetration Testing Execution Standard (PTES), FedRAMP Penetration Test Guide, NIST, etc.
Proficient with the command line interface of multiple operating systems Windows, macOS, Linux, etc.
Solid understanding of manual scripting and scripting languages- ex. Python, Bash, PowerShell, C/C++, etc.
Proficient with using commercial and open source penetration testing tools ex. Metasploit, Nikto, SQLMAP, Responder, Nessus, Netcat, Burp Suite, etc.
Conduct and document vulnerability scans and penetration testing on web-based applications and their underlying hosts
Proven ability to perform computer network vulnerability assessment and penetration testing
Understanding of risk planning and mitigation strategies
Ability to prepare and present documents and briefing materials
Advise on new threats to the technologies and environment and provide mitigation steps when applicable
Provide security guidance on design, deployment, and architecture of web-based and cloud hosted applications.
Participate in technical discussions and collaborate with team members
Exceptional communication skills - both orally and written
Strong customer service skills
Strong organizational and time-management skills with the ability to handle multiple tasks at once, while still paying attention to detail
A strong work ethic and self-starter attitude, with the ability to thrive in a fast-paced environment
Bachelors degreein a related field or equivalent work experience and advance
Benefits
TestPros offers a competitive salary, medical/dental/vision insurance, life insurance, disability insurance, paid time off, paid holidays,401(k) retirement plan with company match, opportunities for professional growth, cell phone discounts, and much more! All benefits are per TestPros current policies and are subject to change without notice. Benefits are available to full-time employees.
TestPros, Inc. is an Equal Opportunity Employer.
EEO Statement
All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, gender identity, marital status, age, national origin, or protected veteran status.