RESPONSIBILITIES:
Kforce has a client in search of a Penetration Testing Engineer in Washington, DC. In performance of SIVM Task 3 (Section 3.3), Contractor shall adhere to and perform the following:
- Use in-depth technical knowledge and experience of security testing and evaluation tools to perform automated security testing of both web applications, web services, operating systems, databases, and network fabric devices (i.e. switches, routers, firewalls, load balancers, WAPs, etc.)
- Use TSA-provided security testing and evaluation tools to perform this task; Example tools include, but are not limited to: AquaFold, SuperScan, nmap, Nessus, Core Impact, MetaSploit, Kali, AppScan, HP WebInspect, Burp Suite, and SoapUI
- Become competent with the installation, use, and maintenance of any new tools provided by the TSA within five (5) business days of being provided software licenses or installation media
- Troubleshoot the operation of security testing tools used to perform penetration testing when technical issues (i.e. tool related, network related, or target related) occur which interfere with penetration testing activities
- Perform manual penetration testing activities to complement testing performed with automated tools and in situations where automated tools cannot be used
- Create or modify custom modules of exploitation frameworks used by TSA in order to test the susceptibility of IT assets to specific vulnerabilities and weaknesses
- Plan, coordinate, conduct, and document the results of, penetration testing of TSA IT assets
- Perform penetration testing activities both with participation, and completely separate, from TSA SOCs knowledge of such activity
- Plan, coordinate, conduct, and document the results of social engineering-style attacks to be used both standalone as well as in conjunction with other penetration testing engagements
Want more jobs like this?
Get jobs in Washington, DC delivered to your inbox every week.
REQUIREMENTS:
- To be considered for this position, candidates must have experience in a similar role, or they must possess significant knowledge, experience, and abilities to successfully perform the responsibilities listed
- Relevant education and/or training will be considered a plus