Senior Penetration Testing, Software Assurance & Vulnerability Assessment Engineer

Washington, DC, US • Posted 4 hours ago • Updated 4 hours ago
Full Time
On-site
Fitment

Dice Job Match Score™

✨ Finding the perfect fit...

Job Details

Skills

  • Life Insurance
  • NCR
  • Telecommuting
  • Security Clearance
  • Computer Science
  • Certified Ethical Hacker
  • OSCP
  • GPEN
  • CISSP
  • Cyber Security
  • Network
  • Wireless Communication
  • Code Review
  • Threat Modeling
  • Vulnerability Assessment
  • Patch Management
  • SLA
  • Amazon Web Services
  • Microsoft Azure
  • Google Cloud Platform
  • Google Cloud
  • Internal Communications
  • IC
  • Integrated Circuit
  • Risk Management Framework
  • RMF
  • ICD
  • NIST 800-53
  • Regulatory Compliance
  • Leadership
  • Artificial Intelligence
  • DevSecOps
  • Emulation
  • Software Security
  • Testing
  • Cloud Computing
  • Management
  • Scheduling
  • Resource Allocation
  • Penetration Testing
  • Standard Operating Procedure
  • Research

Summary

We are an employee-centric company that truly values our team members and the contributions they make to our customers and the missions they support. We pride ourselves on being forward-leaning thinkers and on building teams that are, and continue to be, technically proficient across a broad range of cyber mission areas. OneZero full-time employees receive a highly competitive benefits package, including health, dental, vision, and life insurance, a 401(k) with company matching, paid time off and holidays, an employee referral program, and educational assistance. Additional details are available on our website:

Position Title: Senior Penetration Testing, Software Assurance & Vulnerability Assessment Engineer

Location: On-site in a SCIF in the National Capital Region (NCR) - Nebraska Avenue Complex, Washington, DC (work locations transitioning to ICCB Bethesda / St. Elizabeths). Telework is not authorized; a designated Key Person must be available on-site during core hours

Clearance: TS/SCI

Job Summary:

Performs advanced penetration testing, vulnerability assessments, and software assurance activities to identify and mitigate security weaknesses across DHS systems.

Education and Experience:
  • Bachelor's degree in Cybersecurity, Computer Science, or related field or equivalent years of experience.
  • CEH, OSCP, GPEN, CISSP, or equivalent experience
  • 15+ years of total cybersecurity experience, with demonstrated SME-level depth across the following disciplines:
  • 5+ years conducting penetration testing across multiple domains (network, application, red team, physical, and/or wireless)
  • 5+ years in software assurance, including secure code review, threat modeling, SAST/DAST tooling, and vulnerability analysis across multiple languages and platforms
  • 4+ years in enterprise patch management and vulnerability remediation, including prioritization frameworks (CVSS, EPSS), SLA enforcement, and remediation validation
  • 4+ years architecting, assessing, and securing cloud environments (AWS, Azure, Google Cloud Platform) and/or Cross Domain Solutions (CDS), including cloud-native attack surface analysis
  • Significant experience supporting DHS, Intelligence Community (IC), or other federal agency programs, with deep familiarity with RMF, ICD 503, NIST 800-53/800-115, and related compliance frameworks
  • Experience briefing findings and recommendations to senior leadership, program managers, and authorizing officials

Essential Duties:
  • Conduct advanced penetration testing and vulnerability assessments across networks, applications, AI systems, cloud environments, and DevSecOps pipelines
  • Employ both automated tooling and sophisticated manual techniques to identify, validate, exploit, and analyze security weaknesses across complex, multi-domain environments
  • Perform red team operations and adversary emulation exercises aligned to MITRE ATT&CK TTPs, simulating realistic threat actor behavior against classified and unclassified systems
  • Conduct secure code reviews, static and dynamic application security testing (SAST/DAST), and software assurance activities across multiple languages and platforms
  • Assess Cross Domain Solutions (CDS), cloud-native architectures, and hybrid environments for misconfigurations, privilege escalation paths, and lateral movement opportunities
  • Analyze and correlate findings across assessments to identify systemic vulnerabilities and patterns, not just individual weaknesses
  • Lead and direct penetration test programs across multiple concurrent systems, coordinating scope, scheduling, and resource allocation
  • Develop, maintain, and continuously improve penetration testing methodologies, playbooks, and Standard Operating Procedures (SOPs)
  • Serve as a subject matter expert and technical authority on offensive security techniques, vulnerability research, and exploit development

OneZero Solutions, LLC is an Equal Opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, pregnancy, genetic information, disability, status as a protected veteran, or any other protected category under applicable federal, state, and local laws.

To request an accommodation, please contact us at or call .
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
  • Dice Id: 91091689
  • Position Id: 44c602d4b0db863e663956e75ef5bd57
  • Posted 4 hours ago
Create job alert
Set job alertNever miss an opportunity! Create an alert based on the job you applied for.

Similar Jobs

Washington, District of Columbia

13d ago

Full-time

Arlington, Virginia

Today

Full-time

USD 115,000.00 - 203,000.00 per year

McLean, Virginia

Today

Full-time

USD 158,800.00 - 198,500.00 per year

McLean, Virginia

Today

Full-time

USD 104,800.00 - 192,200.00 per year

Search all similar jobs