Penetration Tester, Journeyman

We are seeking a highly skilled and innovative Penetration Tester to join our team in the greater DMV area supporting the Army National Guard.

Responsibilities

• Execute penetration testing activities per CDAP mission plans: reconnaissance exploitation attempts postexploitation validation and evidence collection.
• Conduct network host and application assessments to identify attack paths misconfigurations and control weaknesses aligned with adversary threat models.
• Support Network Assistance Visits and Persistent Penetration Testing events under senior guidance; perform validation tasks during Network Damage Assessments to check for compromise indicators.
• Perform web application testing phishing/socialengineering assessments and document results to evaluate defensive effectiveness.
• Collaborate with cybersecurity SOC/CIRT and operations teams to coordinate test schedules deconflict activities and support remediation and retesting.
• Produce technical notes evidence bundles preliminary findings and input for formal assessment reports and mission documentation.
• Capture detection gaps and recommended mitigations; translate test observations into detection opportunities and followon validation tasks.
• Maintain and validate penetration testing toolsets repeatable test procedures and workflow improvements for mission environments.

#ENOCS

Qualifications

• 2 years with BS/BA; 0 years with MS/MA; 6 years with no degree

• Clearance: Active TS/SCI clearance.

• Candidate must meet ONE of the following:

  • Bachelors degree in Computer Science Cybersecurity Data Science Information Systems Information Technology or Software Engineering; OR
  • Relevant DoD/military training (if applicable); OR
  • Relevant professional certification or equivalent experience (examples: CSC CSSLP GCSA GSEC Security).

• Required experience and skills:

  • Penetration testing vulnerability assessment redteam or offensive security experience.
  • Practical skills in reconnaissance exploitation postexploitation web application testing (OWASP) socialengineering assessments and evidence preservation.
  • Familiarity with common pentest tools and frameworks (Burp Metasploit Nmap etc.) and ability to document reproducible findings and remediation steps.
  • Ability to coordinate safely in operational environments follow rules of engagement and hand off findings to defenders for remediation and retest.
  • Strong technical writing for producing evidence bundles technical summaries and actionable recommendations.

• Desired:

  • Prior DoD/ARNG CDAP red/blue team or persistent penetration testing experience.
  • Experience mapping findings to detection engineering and supporting SOC/IDS tuning for improved coverage.

#ENOCS

Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the worlds leading mission capability integrator and transformative enterprise IT provider we deliver trusted highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land sea space air and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day our employees do the cant be done by solving the most daunting challenges facing our customers. Visit to learn how were keeping people around the world safe and secure.