Penetration Tester

Understand and safely use various open source offensive TTPs, tradecraft, and tools to conduct an assessment. Assist with scoping and executing prospective engagements. Estimated workload is 1-2 assessments per month, each consisting of a 2-week assessment, followed by 3 days of report writing. Develop comprehensive and accurate reports and presentations for various consumers of penetration tests or red team engagements. While in-between assessments, this person will be expected to improve any existing processes, develop tools, and potentially find new clients and perspective hires. Develop scripts, tools, or methodologies to enhance Delta Risks offensive assessment capabilities.QualificationsBachelors degree (or equivalent) in a technical fieldMinimum 1 year of Web Application Penetration TestingMinimum 2-5 years' experience in at least three of the following: Network penetration testing and manipulation of network infrastructureEmail, phone, or physical social-engineering assessmentsShell scripting or automation of simple tasks using Perl, Python, or RubyDeveloping, extending, or modifying exploits, shellcode or exploit toolsDeveloping applications in C#, ASP, .NET, ObjectiveC, Go, or Java (J2EE)Reverse engineering malware, data obfuscators, or ciphersSource code review for control flow and security flawsStrong knowledge of tools used for wireless, web application, and network security testingThorough understanding of network protocols, data on the wire, and covert channelsMastery of Unix/Linux/Mac/Windows operating systems, including bash and PowershellMinimum of one GPEN, CEH, and/or GWAPT certification requiredMust be eligible for U.S. TOP SECRET security clearance; U.S. citizenship required
$0.00/None to $0.00/None
Telecommuting not available Travel not required

Job Description

As a member of the Delta Risk Professional Services sector, a Web Application Penetration Tester will support assessments of both Commercial and Government clients where your main goal is to penetrate our customers network, applications, and/or operating systems without being detected by using your advanced knowledge of manipulation and exploitation of misconfigurations. An ideal candidate will be able to think and work creatively, both in teams and independently, about a challenge, be astute enough to learn new skills to quickly problem-solve tough solutions and be able to comprehensively articulate your findings to technical and executive stakeholders.

Delta Risk LLC is a proud equal opportunity/affirmative action employer who is committed to hiring and retaining a diverse workforce. Delta Risk LLC does not make employment decisions based upon race, color, creed, religion, sex, sexual orientation, gender identity, national origin, age, veteran status, disability, or any other protected class.

 

Delta Risk LLC is committed to working and providing reasonable accommodation to individuals of all abilities, including persons with disabilities. If at any time during the application process, you need an accommodation, please contact accommodations@deltarisk.com for assistance.

Dice Id : 10458571
Position Id : 27092586
Have a Job? Post it

Similar Positions

C# Automation QA (62521)
  • West Coast Consulting LLC
  • Malvern, PA
Code Security Engineer
  • Computer Enterprises, Inc.
  • Philadelphia, PA
Security Analyst
  • VLink Inc
  • Plymouth Meeting, PA
Application Analyst
  • Penn Medicine
  • Philadelphia, PA
Software Engineer
  • Intelligent Capital Network, Inc.
  • Philadelphia, PA
Operations Analyst
  • The Judge Group, Inc.
  • Philadelphia, PA
IT Business Systems Analyst III
  • Princeton Information
  • Ewing, NJ
DFIR Manager
  • Matlen Silver
  • Whitehouse Station, NJ
Senior Security Professional
  • Insight
  • Bridgewater, NJ
IT Auditor
  • Arise Systems LLC
  • Somerset, NJ
IT DEVELOPMENT MANAGER
  • CPS Comtech
  • Warren, NJ
Sr. System Analyst
  • XDuce
  • Edison, NJ