VetJobs - The Leading Military Job Board

Penetration Testing

Jefferson Wells is looking to hire a Pen Tester for a long-term contract, 100% Remote. This position involves performing hands-on security vulnerability assessment and penetration testing services for various client environments, including conventional and cloud infrastructures. Engagements may involve a single or mixture of environments, including network, system, wireless, or mobile and applications that are web-based, server-based mobile or Cloud-based. Additionally, engagements may involve various types of social engineering such as physical, phishing, vishing, etc. No C2C, W-2 only, must be able to work in the US, no sponsorship available.

Typical Duties:

• Conduct formal vulnerability assessments and penetration tests of networks, systems, web-based applications, and other types of information systems on a regular basis.

• Execute assigned vulnerability assessments and penetration tests independently and complete directives in a thorough and timely fashion

• Perform testing using defined methodologies and a combination of automated and manual tools

• Demonstrate critical thinking and creative analysis techniques in executing tests and distilling test results, eliminating false positives and providing actionable recommendations for mitigation

• Create and deliver reports that effectively capture, explain and communicate the results of assessments and tests to varying technical and business audiences.

Minimum Qualifications:

• Bachelor's Degree

• Security or testing certification (e.g., CEH, CISSP, CISM) is a plus.

• 5+ years’ recent demonstrable experience in positions with primary responsibilities that include vulnerability assessment and penetration testing of a variety of target environments (e.g., pen tester, red team tester, vulnerability assessor)

• 5+ years’ experience with vulnerability assessment and penetration testing tools (e.g., Nessus, Nexpose, Metasploit, nmap, BurpSuite, Kismet, Nipper, Wireshark and Kail)

• 5+ years’ experience with independently analyzing testing results and writing assessment and test reports

• 2+ years’ recent demonstrable experience executing vulnerability assessments and penetration tests against public, private and hybrid cloud environment

• 3+ years’ experience with configuring, administering, and troubleshooting networks and application platforms

• 2+ years’ recent experience in technical a consulting project delivery role

• Working Knowledge of TCP/IP protocols and networking architectures

• Working Knowledge of databases, applications, and web server design and implementation.

• Working Knowledge of security and IT standards, such as ISO, NIST, OWASP, ITIL and COBIT

• Working Knowledge of the National Vulnerability Database (NVDB)

• Working Knowledge of security configuration and testing of common infrastructure, networks, systems and applications platforms

• Experience assessing and testing network devices, including Firewalls, Router and Switches

• Goal-oriented penetration testing experience as a member of an attack team.

• Incumbents must be eligible to work in the USA without sponsorship. No C2C work. What’s in it for you:

• Hourly rate of $50 to $85 an hour with Direct Deposit

• Full-time Long-term Contract with full Medical, Dental, Vision and 401K Benefits as a W-2 employee

• Dedicated Career Partner to help you achieve your career goals

Jefferson Wells ( www.jeffersonwells.com ) is a professional services firm delivering solutions in Finance & Accounting, Internal Audit, Risk & Compliance, and Tax. Our people leverage their extensive industry & technical experience to deliver practical and actionable solutions. We serve clients, including Fortune 500 and Global 1000 companies, from offices worldwide leveraging the workforce capabilities of the ManpowerGroup. Jefferson Wells is an Equal Opportunity Employer.

ManpowerGroup is committed to providing equal employment opportunities in a professional, high quality work environment. It is the policy of ManpowerGroup and all of its subsidiaries to recruit, train, promote, transfer, pay and take all employment actions without regard to an employee's race, color, national origin, ancestry, sex, sexual orientation, gender identity, genetic information, religion, age, disability, protected veteran status, or any other basis protected by applicable law.