Penetration Tester - SME 0010PENWFH - 1520

Clearance Level: Able to Obtain Security Clearance (Desirable Secret)

US Citizenship: Required

Job Classification: On-Call

Location: Remote

Years of Experience: 5

Education Level: Bachelors or 7 years of experience

Position Description: Global InfoTek Inc. is seeking a Penetration Tester with deep expertise in various technical skills, tools, methodologies, and regulatory knowledge to identify security weaknesses.

Required Technical Skills:

• Networking: Deep understanding of network protocols, routing, and switching.
• Operating Systems: Proficiency in Windows and Unix/Linux internals and operations.
• Web Technologies: Knowledge of web technologies (e.g., HTML, CSS, JavaScript) and web application workings.
• Cryptography: Knowledge of cryptographic principles and implementations.
• Penetration Testing Methodologies: Experienced with PTES (Penetration Testing Execution Standard), Open Web Application Security Project's (OWASP) Testing techniques, and (Open Source Security Testing Methodology Manual (OSSTMM).
• Ethical Hacking and Tools: Experienced with using Kali Linux and reconnaissance tools such as Nmap, Nessus, and OpenVAS for scanning and enumeration.
• Exploitation Tools: Experienced with using tools such as Metasploit, SQLmap, and Burp Suite for exploitation.
• Post-Exploitation: Knowledge of post-exploitation frameworks like PowerShell Empire or Meterpreter.
• Social Engineering: Understanding of social engineering tactics and tools like the Social-Engineer Toolkit (SET).
• Vulnerability Assessment: Ability to use automated tools to scan for vulnerabilities and skills to manually identify and exploit vulnerabilities without using automated tools.

Required Training:

• NIST SP 800-53 (Security and Privacy Controls)
• SP 800-37 (Risk Management Framework)
• SP 800-30 (Risk Assessment)
• NIST SP 800-61 (Incident Response Frameworks)

Desirable Certifications and Training:

• Certified Ethical Hacker (CEH)
• Offensive Security Certified Professional (OSCP)
• Licensed Penetration Tester (LPT)
• GIAC Penetration Tester (GPEN)
• Certified Penetration Testing Engineer (CPTE)

Global InfoTek, Inc. is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, or based on disability.

About Global InfoTek, Inc. Global InfoTek Inc. has an award-winning track record of designing, developing, and deploying best-of-breed technologies that address the nation's pressing cyber and advanced technology needs. GITI has rapidly merged pioneering technologies, operational effectiveness, and best business practices for over two decades.