Talent.com
Penetration Tester- Top Secret Clearance

Penetration Tester- Top Secret Clearance

Vets, IncArlington, VA, US
20 hours ago
Job type
  • Full-time
  • Quick Apply
Job description

Staffing Pros, a division of VETS Inc., is recruiting for a full-time Penetration Tester onsite in Arlington, VA. This position requires an Active Top Secret Clearance.

This position is located in Arlington, VA and will be onsite 5 days a week. No hybrid / telework allowed.

Responsibilities :

  • Support the Red Cell Team by performing and leading penetration tests to assess the security of customer systems.
  • Identify vulnerabilities and develop recommended remediations to satisfy mandated NIST 800-53 security controls.
  • Report and demonstrate findings to system owners and engineers.
  • Maintain Red Cell infrastructure.
  • Develop or modify tools to automate discovery or exploitation.

Qualifications :

Required Qualifications :

  • Bachelor of Science and 5 years of relevant experience in Cyber / IT, or a Master's of Science and 3 years of relevant experience in Cyber / IT. In lieu of a degree, 4 years of additional IT security or penetration testing experience may be considered.
  • Minimum of 2 years with penetration testing experience.
  • Possess one of the following certifications, OR be able to obtain before start date :
  • CCNA Cyber Ops, CCNA-Security, CEH, CFR, Cloud+, CySA+, GCIA, GCIH, GICSP, SCYBER, Security+ CE, SSCP
  • Demonstrated experience with Kali Linux.
  • Demonstrated penetration testing tools experience with Nmap, Burp Suite, Metasploit, etc.
  • Demonstrated ability in evaluating vulnerabilities, performing root cause analysis, and reporting findings utilizing assessment methodologies such as NIST SP 800-115, Penetration Testing Execution Standard (PTES), Information Systems Security Assessment Framework (ISSAF), OWASP Web Security Testing Guide (WTG), etc.
  • Demonstrated ability to lead a penetration test and guide Senior / Junior Penetration Testers.
  • Must be a U.S. citizen with an active Secret security clearance.
  • Must have the ability to obtain a final Top Secret security clearance.

    • Preferred Qualifications :

  • Active Top Secret or TS / SCI clearance.
  • One of the following certifications or an alternate, verifiable certification demonstrating IT security competence :
  • CompTIA CASP+
  • ISC2 Certified Information Security Professional (CISSP)
  • ISC2 Certified Cloud Security Professional (CCSP)
  • ISC2 Information Systems Security Engineering Professional (ISSEP)
  • One of the following certifications or an alternate, verifiable certification demonstrating practical penetration testing competence :
  • Offensive Security Certified Professional (OSCP)
  • Offensive Security Certified Professional (OSCP)
  • Hack the Box Certified Penetration Testing Specialist (CPTS)
  • TCM Security Practical Network Penetration Tester (PNPT)
  • GIAC Exploit Researcher and Advanced Penetration Tester (GXPN)
  • Zero Point Security Red Team Ops II
  • Advanced understanding of the following :
  • NIST Risk Management Framework (RMF) and the Assessment and Authorization (A&A) process.
  • Security principles such as CIA, IAAAA, access control models, risk management, etc.
  • Networking principles and technologies such as IP routing, TCP / UDP, VPNs, firewalls, NAT, etc.
  • Common network protocols such as SSH, FTP, SMTP, SMB, HTTP, etc.
  • Operating system principles such as process management, device management, user management, file systems, etc.
  • Data processing principles such as encoding, hashing, encryption, etc.
  • Scripting and programming languages such as Bash, Python, PowerShell, JavaScript, etc.
  • Common application vulnerabilities and exploits such as outdated components,
  • permissions misconfigurations, lack of input validation, logging / monitoring failures, etc.
  • Common web application vulnerabilities and exploits such as XSS, SQLi, LFI, file uploads, broken authentication mechanisms, etc.
  • Active Directory (AD) enumeration and attacks such as kerberoasting, AS-REP roasting, abusing misconfigured privileges, crafting golden tickets, etc.
  • Public Key Infrastructure (PKI) and navigating IT environments implementing multifactor authentication.
  • Cloud technologies and platforms such as Amazon Web Services (AWS), Microsoft Azure, Google Cloud Platform (GCP), etc.

    • EEO Statement

    Staffing Pros a division of VETS-inc is an Equal Opportunity Employer / Protected Veterans / Individuals with Disabilities.

    The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor’s legal duty to furnish information.

    Create a job alert for this search

    Top Secret Clearance • Arlington, VA, US

    Related jobs
    • Promoted
    Security Professional - Unarmed Patrol PT

    Security Professional - Unarmed Patrol PT

    Allied UniversalBrooklyn Park, MD, United States
    Full-time +1
    Security Professional - Unarmed Patrol PT.Allied Universal, North America's leading security and facility services company, offers rewarding careers that provide you a sense of purpose.While workin...Show moreLast updated: 1 day ago
    • Promoted
    Senior IT Security Engineer

    Senior IT Security Engineer

    VirtualVocationsBaltimore, Maryland, United States
    Full-time
    A company is looking for a Senior IT Security Operations Engineer.Key Responsibilities Monitor, detect, analyze, and respond to security events and incidents using various security tools Conduct...Show moreLast updated: 1 day ago
    • Promoted
    Senior Cloud Security Architect

    Senior Cloud Security Architect

    VirtualVocationsBaltimore, Maryland, United States
    Full-time
    A company is looking for a Senior Information Security Architect (Remote).Key Responsibilities Develop and implement a comprehensive cloud security strategy aligned with organizational goals and ...Show moreLast updated: 30+ days ago
    • Promoted
    Intern - Critical Minerals Security Program (Fall 2025)

    Intern - Critical Minerals Security Program (Fall 2025)

    Center for Strategic and International StudiesWashington, DC, United States
    Full-time
    The Center for Strategic and International Studies (CSIS) is a non-profit, bipartisan public policy organization established in 1962 to provide strategic insights and practical policy solutions to ...Show moreLast updated: 30+ days ago
    • Promoted
    Cybersecurity Engineer (DHS)

    Cybersecurity Engineer (DHS)

    LMI Consulting, LLCTysons, VA, United States
    Full-time
    Salaried High Fringe / Full-Time.Department of Homeland Security (DHS) market.LMI is a new breed of digital solutions provider dedicated to accelerating government impact with innovation and speed.In...Show moreLast updated: 30+ days ago
    • Promoted
    Security Lead

    Security Lead

    VirtualVocationsRockville, Maryland, United States
    Full-time
    A company is looking for a Security Lead to build and manage its security function across governance, engineering, and operations. Key Responsibilities Own the company's security posture from code...Show moreLast updated: 30+ days ago
    • Promoted
    Internal Investigations Specialist

    Internal Investigations Specialist

    VirtualVocationsBaltimore, Maryland, United States
    Full-time
    A company is looking for a Specialty Investigator - Internal Investigations.Key Responsibilities Investigate suspected internal fraud and financial crimes, documenting findings in a case manageme...Show moreLast updated: 1 day ago
    • Promoted
    • New!
    Workday Security Architect

    Workday Security Architect

    VirtualVocationsBaltimore, Maryland, United States
    Full-time
    A company is looking for a Workday Security Architect to lead the redesign and optimization of a large enterprise Workday security environment. Key Responsibilities Lead design sessions with stake...Show moreLast updated: 17 hours ago
    • Promoted
    Security Analyst

    Security Analyst

    Leidos IncOdenton, MD, United States
    Full-time
    Leidos is seeking a Security Engineer to support the execution of strategic, operational, and organizational PPSM objectives. This position can be based out of any of our three locations - Alexandri...Show moreLast updated: 30+ days ago
    • Promoted
    • New!
    Workday Security Analyst

    Workday Security Analyst

    VirtualVocationsAlexandria, Virginia, United States
    Full-time
    A company is looking for a Workday Security Analyst to configure, maintain, and advise on security within the Workday application ecosystem. Key Responsibilities Manage Workday security configurat...Show moreLast updated: 15 hours ago
    • Promoted
    • New!
    SafeTrace Analyst

    SafeTrace Analyst

    VirtualVocationsBaltimore, Maryland, United States
    Full-time
    A company is looking for a SafeTrace Analyst to support Epic's SafeTrace Tx module.Key Responsibilities Support system build, troubleshooting, and reporting for blood product tracking and transfu...Show moreLast updated: 17 hours ago
    • Promoted
    Intern - Energy Security and Climate Change Program (Fall 2025)

    Intern - Energy Security and Climate Change Program (Fall 2025)

    Center for Strategic and International StudiesWashington, DC, United States
    Full-time
    The Center for Strategic and International Studies (CSIS) is a non-profit, bipartisan public policy organization established in 1962 to provide strategic insights and practical policy solutions to ...Show moreLast updated: 30+ days ago
    • Promoted
    Cyber Security Specialist

    Cyber Security Specialist

    VirtualVocationsBaltimore, Maryland, United States
    Full-time
    A company is looking for a Cyber Security Logistics Specialist SME II.Key Responsibilities Reviews and updates system artifacts and develops baseline impact values for medical devices Documents ...Show moreLast updated: 1 day ago
    • Promoted
    FIPS 140 Security Engineer

    FIPS 140 Security Engineer

    ALTA IT ServicesColumbia, MD, US
    Permanent
    Job Title : FIPS 140 Security Engineer Location : Columbia, Maryland Type : Contract To Hire Compensation : $62.Contractor Work Model : Remote Security Clearance : No active clearance is required.Citizen...Show moreLast updated: 4 days ago
    • Promoted
    Penetration Tester

    Penetration Tester

    Leidos IncAshburn, VA, United States
    Full-time
    We empower our teams, contribute to our communities, and operate sustainable.Everything we do is built on a commitment to do the right thing for our customers, our people, and our community.Our Mis...Show moreLast updated: 30+ days ago
    • Promoted
    Security Specialist

    Security Specialist

    Leidos IncBethesda, MD, United States
    Full-time
    National Security Sector's (NSS) Cyber & Analytics Business Area (CABA).Our talented team is at the forefront in Security Engineering, Computer Network Operations (CNO), Mission Software, Analytica...Show moreLast updated: 27 days ago
    • Promoted
    Surveillance Investigator

    Surveillance Investigator

    Allied UniversalFrederick, MD, United States
    Full-time
    Advance Your Career in Insurance Claims with Allied Universal Compliance and Investigation Services.Allied Universal Compliance and Investigation Services is the premier destination for a career in...Show moreLast updated: 30+ days ago
    • Promoted
    Platform Security Analyst - USCIS - Remote

    Platform Security Analyst - USCIS - Remote

    ITC Federal, IncFairfax, VA, United States
    Remote
    Full-time
    Platform Security Analyst - USCIS - Remote.Department of Homeland Security (DHS) - USCIS OIT Architecture Engineering Support (AES2). Must be able to obtain DHS Suitability security clearance, which...Show moreLast updated: 30+ days ago