Penetration Tester
Job Category: Information Technology
Time Type: Full time
Minimum Clearance Required to Start: Top Secret
Employee Type: Regular
Percentage of Travel Required: Up to 10%
Type of Travel: Local
Program Overview:
The CDM Program is managed within the DHS Cybersecurity and Infrastructure Security Agency, CISA/Office of Cybersecurity and Communications (CS&C)/Network Security Deployment (NSD) Division, responsible for enhancing the security, resilience, and reliability of the Nation's cyber and communications infrastructure. The DHS CDM Program mission is to safeguard and secure cyberspace in an environment where the threat of cyber-attack is continuously growing and evolving. The CDM Program defends the United States (U.S.) Federal Information Technology (IT) networks from cybersecurity threats by providing continuous monitoring sensors (tools), diagnosis, mitigation tools, and associated services to strengthen the security posture of Government networks.
As a Penetration Tester, you will be responsible for conducting comprehensive assessments on customer networks and systems. You will identify and provide proof of concepts for vulnerabilities using open source and proprietary tools such as EyeWitness, Nessus, Nmap, Burp Suite, Responder, Prowler, and Bloodhound. You will document and communicate findings through detailed reports with actionable remediation recommendations and collaborate with operations teams to integrate and enforce security best practices. Continuously research new threats, attack vectors, and emerging risks to stay ahead in the ever-evolving cybersecurity landscape. You will play a pivotal role in enhancing cybersecurity defenses and ensuring the protection of digital assets and infrastructure.
What You'll Get to Do:
Use industry standard and/or proprietary software to conduct penetration testing, including Metasploit, Burp Suite, and WebInspect
Test web services using automated web application scanning methodologies and tools, including HP WebInspect, IBM AppScan, Acunetix WVS, etc.
Test web services using manual in-depth testing methodologies and tools, including Kali Linux, Core Impact, Wireshark, Network Mapper (NMAP), etc.
Research new threats, attack vectors, and risk.
You'll Bring These Qualifications:
Relevant Years of Experience: 5+ Education: BA/BS or equivalent years of relevant experience
Required Certifications: IAT II or IAT III
Preferred Certifications: GPEN, CySA+, or equivalent
Expert knowledge of computer and network security.
Expert knowledge of pen testing methodology.
Working knowledge of exploit development.
Familiarity and ability to test for OWASP Top 10 Vulnerabilities
What We Can Offer You:
We've been named a Best Place to Work by the Washington Post.
Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.
We offer competitive benefits and learning and development opportunities.
We are mission-oriented and ever vigilant in aligning our solutions with the nation's highest priorities.
For over 60 years, the principles of CACI's unique, character-based culture have been the driving force behind our success.
Company Overview:
CACI is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other protected characteristic.
Pay Range : There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. Learn more here (https://careers.caci.com/global/en/employee-benefits)
The proposed salary range for this position is:
$78,700 - $165,300