Penetration Tester, Senior

We are seeking a highly skilled and innovative Penetration Tester to join our team in the greater DMV area supporting the Army National Guard.

Responsibilities

• Plan and lead advanced penetration testing operations (Network Assistance Visits Persistent Penetration Testing) to emulate adversary threat models against Army networks.
• Execute complex network host and web application assessments to identify vulnerabilities lateral attack paths privilege escalation and control weaknesses.
• Design and conduct advanced phishing and socialengineering campaigns to evaluate user awareness and defensive effectiveness.
• Support Network Damage Assessments: validate suspected compromises determine adversary presence/scope/impact and provide technical findings to inform containment and remediation.
• Produce timely technical reports evidence bundles and executivelevel briefings to support incident response and leadership decisionmaking.
• Coordinate testing activities with cybersecurity SOC/CIRT operations and engineering teams to deconflict missions and enable rapid mitigation and retest.
• Translate assessment results into actionable recommendations: detection enhancements configuration changes and resilience improvements.
• Maintain pentest toolchains develop repeatable test procedures and mentor junior testers to build sustained offensive capability.

#ENOCS

Qualifications

• Minimum of 5 years with BS/BA; Minimum of 3 years with MS/MA; Minimum of 0 years with PhD

• Clearance: Active TS/SCI clearance.

• Candidate must meet ONE of the following:

  • Masters degree or Ph.D. in Computer Science Cybersecurity Data Science Information Systems Information Technology Software Engineering or a related field; OR
  • Relevant DoD/military training (documented advanced offensive/cyber operations training); OR
  • Relevant professional certification or equivalent experience (examples: CISSPISSEP; ISC2 CSSLP; GIAC GWAPT).

• Required experience and skills:

  • Offensive security redteam or penetration testing experience with at least 3 years leading complex highimpact assessments in enterprise or DoD environments.
  • Expert proficiency in reconnaissance exploitation postexploitation web application testing (OWASP) phishing/socialengineering tactics and evidence preservation.
  • Handson experience with advanced tooling (e.g. Burp Suite Metasploit Cobalt Strike custom exploit development) and validation of detection/response capability.
  • Proven ability to produce executivegrade reports technical evidence packages and decisiongrade remediation recommendations under time pressure.
  • Strong coordination skills for multiteam operations adherence to rules of engagement and safe execution in operational environments.

• Desired:

  • Prior DoD/ARNG CDAP red/blue team or Persistent Penetration Testing mission experience.
  • Background in malware analysis or exploit development and experience integrating findings into detection engineering and SOC tuning.

#ENOCS

Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the worlds leading mission capability integrator and transformative enterprise IT provider we deliver trusted highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land sea space air and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day our employees do the cant be done by solving the most daunting challenges facing our customers. Visit to learn how were keeping people around the world safe and secure.