Penetration Tester/Application Security Tester
Falls Church, Virginia
12 Months +
Application Security Tester - Able to plan, communicate, coordinate and conduct penetration tests and security assessments for applications, systems and enterprise networks. Candidates must have 3+ years of penetration testing experience.
Plan, communicate, coordinate and perform penetration testing, application testing, and security assessments at application, system and enterprise level
Develop Rules of Engagement, scoping documents and reports
Perform manual penetration tests and validation of vulnerability scan results
Develops automation/scripts for replicating vulnerability validation and penetration tests
Devises plans and scenarios for various types of penetration tests
Documents vulnerabilities, relevant exploits, and remediations in final vulnerability assessment report
Perform information technology security research to remain current on emerging technology trends and develop exploits for disclosed and undisclosed vulnerabilities
Contributes to developing and implementing tools for penetration testing and early warning of weaknesses or possible incidents building on methodologies as promulgated by NIST, ISO, etc. to ensure useful, measurable, and repeatable methods applied to quantifying risk
Selects, installs, and configures security testing platforms and tools or develop tools and procedures for penetration tests
Performs penetration testing using standard penetration tools (Metasploit, Nmap, Nessus, Burp Suite, etc.)
Performs off-hours work as necessary
Must be eligible to obtain a sensitive clearance Position of Public Trust and may be required to obtain a higher security clearance.
3-5 years of penetration testing experience is required
Experience with web and mobile applications, databases, operating systems
Experience in penetration testing large and complex enterprise networks
Experience with utilizing penetration testing framework such as OWASP or Mitre Att&ck Framework.
Experience with regulatory compliance, policy development, and policy enforcement
Experience with FISMA / PCI-DSS compliance, ISO 27000 / NIST SP 800 Frameworks
Experience in the roles identified above
4+ years of network or system security
3+ years of penetration test experience
Excellent communication and interpersonal skills
Hands-on OS configuration/administration experience
Programming experience with focus on penetration testing or process automation
Experience with the following technologies:
o Kali Linux
o Burp Suite About US Tech Solutions: Your talent, our opportunities - This is the premise behind US Tech Solutions.
You have the skill we have the opportunity. As a team, we work passionately for you to get the right career opportunity across industry verticals and functions. For past sixteen years, leading Global
Companies and Fortune 500 come to us to get the right talent. Whether you want to work as full-time, contractor or part-time, technical or non-technical our talent consultants will connect with the right career opportunity globally.
Connect with our talent team today.
USTECH was founded in 2000 by Manoj Agarwal. Today, we are a global firm offering talent solutions to 150 customers including 20% of Fortune 500 across Financial Services, Healthcare, Life Sciences, Aerospace, Energy, Retail, Telecom, Technology, Manufacturing, and Engineering. We are headquartered in New Jersey with 40 global locations across the USA, Canada, Europe, and India. Deloitte has recognized USTECH as one of the fastest growing private businesses for the past five consecutive years and INC 500 for the past three. We have also been rated The Top Business in the US" by Diversity Business since 2011. To learn more about how US Tech Solutions visit our website: .
US Tech is an Equal Opportunity Employer" and US Citizens & all other parties authorized to work in the US are encouraged to apply."
Thank you for your time.