Penetration Tester

Responsibilities:

• Perform penetration testing, software assurance, and vulnerability assessment in support of client customers.

• Interpret penetration testing results to identify and recommend corrective actions and/or mitigation strategies.

• Produce and deliver reports on individual and enterprise software assurance efforts, working with service providers and individual programs/systems. Deliverable: Software Assurance Reports.

• Identify and address security implications during software acceptance activities, including completion criteria, risk acceptance and documentation, common criteria, and methods of independent testing.

• Perform security test assessments in support of client and system-specific software assurance efforts, working with service providers and individual programs.

• Collaborate with DevSecOps team participants from other organizations to integrate information assurance and cybersecurity needs and practices on a continuous basis throughout Agile development activities including, but not limited to: requirements, design, implementation, testing, and delivery of new IT solutions, applications, services, and systems, or updating and enhancing existing ones.

• Perform and document vulnerability assessments of client systems (Deliverable: Vulnerability Assessment Reports).

• Update and maintain software assurance SOPs in accordance with IC and client policy (Deliverable: Software Assurance Standard Operating Procedures).

• nnually review and update, as needed, all security configurations within automated DevSecOps tools and manual processes to ensure compliance with IC policy. Upon government approval, implement changes to processes and technologies for penetration testing, software assurance, and vulnerability assessment activities, and report metrics in Monthly Status Reports.

Required Qualifications:

• Must have at least 3+ years of total cyber security and or information technology professional experience.

• Must have at least 3+ years of recent experience in the following technical areas: software assurance, penetration testing with a range of automated tools, security patch management, secure cloud, and hybrid engineering, and CDS, Web Cyber security certifications as a Certified Ethical Hacker (CEH) and CISSP, CASP, or comparable demonstrable experience are preferred but not required.

• Must be proficient in the use of Nessus Security Center, Security Content Automation Protocol (SCAP), Web Application Scanning, Penetration Testing, Webinspect, Fortify, and similar tools. Must have recent Software Assurance experience. SonarCube experience is preferred.

• Linux and Cisco Routing and Switching experience.

• This position requires a badge and or clearance the requires an extensive background, credit, and drug screening check.

Talteam Inc. is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability.