US
0 suggestions are available, use up and down arrow to navigate them
Senior Web Application Penetration Te...

Apply to this job.

Think you're the perfect candidate?

Senior Web Application Penetration Tester with Security Clearance

SixGen Inc. Annapolis, MD (Onsite) Full-Time
We are seeking a Senior Web Application Penetration Tester to join our growing team
As a Senior Web Application Penetration Tester, you will be challenged to perform endpoint discovery, open source research, web application enumeration, and novel vulnerability analysis/exploitation
This is much more than Burp scans; operators routinely develop custom tooling (in languages such as PHP, Java, and Python) and achieve a deep understanding of target infrastructure/technology in exploitation paths
The assessments are usually a long haul and great for advanced bug bounty hunters who enjoy getting deep in the weeds
Some cloud/Active Directory experience is a plus for post exploitation activities
This role resides in our Delivery Departmentand reports to our VP of Cyber Operations
This position is remote with a 30% travel requirement
SIXGEN supports cyber and intelligence missions by serving government and commercial organizations as they overcome global cybersecurity challenges
Our highly skilled operators conduct research and assessments based on real-world threats
We simulate adversaries and malicious actors to report details and actionable findings on critical assets and infrastructures
Our program planners advise mission owners to bring rapid solutions to intelligence mission leaders
Using innovative processes, tools, and techniques, we predict and overcome cybersecurity vulnerabilities
Our successes are supported by our diverse team of experienced, technical talent
SIXGEN is growing our support to mission by adding an ambitious Strategic Management Consultant to our team
SIXGEN, Inc
is an Equal Opportunity/Veterans/Disabled Employer
Core Responsibilities:
• Conduct assessments of web applications, mobile applications, databases, client-side applications and tools, and APIs.
• Collaborate with team members and clients to define project scopes, business cases, review test results, and determine remediation steps.
• Analyze security findings, including risk analysis and root cause analysis.
• Draft reports and communicate complex security concepts and test findings to clients and stakeholders.
• Participate in client meetings, communicate clearly and openly on incremental progress, and inform the team of any help needed on impediments and roadblocks.
• Generate comprehensive reports, including detailed findings, exploitation procedures, and mitigation
Required Skills and Experience:
• Ability to participate in cybersecurity control testing engagements for the customer's network, websites, apps and cloud technologies.
• OSCP, OSWA, OSWE, CBBH, GWAPT, or other relevant, hands-on certification
• Must have experience in web application penetration testing.
• Knowledge of FISMA and NIST 800 series standards.
• Experience in network mapping, vulnerability scanning, and penetration and web application testing.
• Experience using approved test protocols and procedures to conduct network and application-level penetration tests.
• Experience attending client meetings, recording internal and technical client interviews and preserving the contents of reports and memoranda.
• Proficiency in using scanning tools like Nessus and NMap, as well as penetration tools like the Kali Linux suite, Burpsuite and Metasploit.
• Must be willing to travel as needed.
• Must be able to obtain Secret Clearance.
• Experience in script writing and crafting of payloads
Additional Details:
• Job Location: Maryland, Northern Virginia, remote
• Clearance Requirement: Must be able to obtain Secret Clearance
• Travel: 30% Compensation & Benefits
• Competitive salary
• Employer-paid health insurance premiums (medical, dental, vision)
• Employer-paid short/long term disability insurance and basic life/AD&D insurance
• 401K with a 4% employer contribution
• Professional development reimbursement options available (training, certification, education, etc)
• Flexible and remote work policies for most positions
• Paid Time Off (PTO) at a rate of three (3) weeks plus one (1) day per year of service up to four (4) weeks annually
• 11 paid holidays per calendar year We are committed to fostering an inclusive culture that values diversity in our people, reflecting the communities we serve and our customer base
We strive to attract and retain a diverse talent pool and create an environment where everyone is empowered to be their authentic selves at work
SIXGEN is an Equal Opportunity Employer
We ensure that all applicants are considered for employment without regard to race, color, religion, sexual orientation, gender identity, national origin, disability, age, marital status, ancestry, projected veteran status, or any other protected group or class.

Recommended Skills

  • Web Development
  • Use Relational Database
  • Use Database
  • Maintain Website
  • Maintain Web Application
  • Use Css

Apply to this job.

Think you're the perfect candidate?

Help us improve CareerBuilder by providing feedback about this job: Report this job

Job ID: 8340_7850082

CareerBuilder TIP

For your privacy and protection, when applying to a job online, never give your social security number to a prospective employer, provide credit card or bank account information, or perform any sort of monetary transaction. Learn more.

By applying to a job using CareerBuilder you are agreeing to comply with and be subject to the CareerBuilder Terms and Conditions for use of our website. To use our website, you must agree with the Terms and Conditions and both meet and comply with their provisions.