Pen Tester Web Apps and Infrastructure

Washington, AR - USA

Yearly Salary: USD 125000 - 130000

Posted on: 30+ days ago

Vacancies: 1 Vacancy

The job posting is outdated and position may be filled

Job Summary

Halvik Corp delivers a wide range of services to 13 executive agencies and 15 independent agencies. Halvik is a highly successful WOB business with more than 50 prime contracts and 500 professionals delivering Digital Services Advanced Analytics Artificial Intelligence/Machine Learning Cyber Security and Cutting Edge Technology across the US Government. Be a part of something special!

We are seeking an enthusiastic and technically proficient Penetration Tester to join our growing security this role you will conduct hands-on penetration testing for both web applications and enterprise infrastructure while supporting advanced engagements such as adversary simulation adversary emulation and red teaming initiatives. The ideal candidate excels at technical problem-solving effective communication and collaborative stakeholder engagement.

Key Responsibilities

Plan execute and document comprehensive penetration tests on web applications and core infrastructure identifying vulnerabilities and weaknesses.
Simulate real-world threats through adversary simulation/emulation and participate in internal red team exercises.
Create and deliver clear actionable reports and risk assessments translating technical findings into business-relevant recommendations.
Collaborate closely with IT and security teams to discuss findings remediation strategies and security improvements.
Continuously research and stay up-to-date with evolving penetration testing techniques tools TTPs and threat actor trends.
Participate in stakeholder meetings clearly conveying testing methodologies progress and risk implications.
Support the development and growth of security testing methodologies and tooling.

Required Qualifications

2 years experience with hands-on penetration testing of web applications and/or infrastructure.
Solid knowledge of both Windows and Linux OS administration including common misconfigurations and privilege escalation techniques.
Familiarity with core offensive tools (e.g. Burp Suite Metasploit Cobalt Strike Empire Kali or similar).
Strong written/verbal communication skills and a collaborative consultative approach to stakeholder management.
Analytical thinking curiosity and adaptability to new challenges.

Preferred Qualifications

Proven experience with adversary simulation adversary emulation or red team operations.

Preferred Certifications

Offensive Security Certified Professional (OSCP)
Red Team Ops (CRTO)
Threat Hunting Professional (THTP)
Certified Red Team Professional (CRTP)
GIAC Penetration Tester (GPEN)
Any relevant SANS/GIAC certifications related to adversary simulation or red teaming

Additional Skills

Experience scripting in at least one language (Python PowerShell Bash etc.)
Ability to translate technical risk into business impact for both technical and non-technical stakeholders.

Halvik offers a competitive full benefits package including:

Company-supported medical dental vision life STD and LTD insurance

Benefits include 11 federal holidays and PTO

Eligible employees may receive performance-based incentives in recognition of individual and/or team achievements.

401(k) with company matching

Flexible Spending Accounts for commuter medical and dependent care expenses

Tuition Assistance

Charitable Contribution matching

Halvik Corp is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race color religion sex sexual orientation gender identity national origin disability or veteran status.

Halviks pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job education experience knowledge skills and abilities as well as internal equity alignment with market data applicable bargaining agreement (if any) or other law.

Halvik Corp delivers a wide range of services to 13 executive agencies and 15 independent agencies. Halvik is a highly successful WOB business with more than 50 prime contracts and 500 professionals delivering Digital Services Advanced Analytics Artificial Intelligence/Machine Learning Cyber Securit...

Key Responsibilities

Plan execute and document comprehensive penetration tests on web applications and core infrastructure identifying vulnerabilities and weaknesses.
Simulate real-world threats through adversary simulation/emulation and participate in internal red team exercises.
Create and deliver clear actionable reports and risk assessments translating technical findings into business-relevant recommendations.
Collaborate closely with IT and security teams to discuss findings remediation strategies and security improvements.
Continuously research and stay up-to-date with evolving penetration testing techniques tools TTPs and threat actor trends.
Participate in stakeholder meetings clearly conveying testing methodologies progress and risk implications.
Support the development and growth of security testing methodologies and tooling.

Required Qualifications

2 years experience with hands-on penetration testing of web applications and/or infrastructure.
Solid knowledge of both Windows and Linux OS administration including common misconfigurations and privilege escalation techniques.
Familiarity with core offensive tools (e.g. Burp Suite Metasploit Cobalt Strike Empire Kali or similar).
Strong written/verbal communication skills and a collaborative consultative approach to stakeholder management.
Analytical thinking curiosity and adaptability to new challenges.

Preferred Qualifications

Proven experience with adversary simulation adversary emulation or red team operations.

Preferred Certifications

Offensive Security Certified Professional (OSCP)
Red Team Ops (CRTO)
Threat Hunting Professional (THTP)
Certified Red Team Professional (CRTP)
GIAC Penetration Tester (GPEN)
Any relevant SANS/GIAC certifications related to adversary simulation or red teaming

Additional Skills

Experience scripting in at least one language (Python PowerShell Bash etc.)
Ability to translate technical risk into business impact for both technical and non-technical stakeholders.

Halvik offers a competitive full benefits package including:

Company-supported medical dental vision life STD and LTD insurance

Benefits include 11 federal holidays and PTO

Eligible employees may receive performance-based incentives in recognition of individual and/or team achievements.

401(k) with company matching

Flexible Spending Accounts for commuter medical and dependent care expenses

Tuition Assistance

Charitable Contribution matching

Key Skills

Apply Now

About Company

Halvik

Certifications: CMMI DEV L3 | CMMI SVC L2 | ISO 9001:2015 | ISO 14001:2015 | ISO 17025:2017 | ISO 20000-1:2011 | ISO 27001:2013 Contract Vehicles: GSA OASIS SB | ARMY ITES-3S | 8(a) STARS III |

View Profile View Profile

AI AutoApply

Apply to 100+ jobs with one click