Cybersecurity Penetration Tester, Mid in San Diego, CA at Booz Allen Hamilton Inc.

Date Posted: 9/23/2018

Job Snapshot

Job Description

Job Number: R0033090

Cybersecurity Penetration Tester, Mid

Key Role:

Work in a highly collaborative environment as part of a team performing comprehensive penetration testing and evaluation against target systems ranging from large-scale enterprise networks to weapon system platforms. Leverage a creative mindset and computer programming expertise to solve diverse problems as part of daily penetration testing tasks on both targeted and general engagements. Plan penetration methodology, perform Web penetration testing, internal and external security assessments, vulnerability discovery and exploitation, post exploitation impact analysis, and physical security. Plan, coordinate, and perform penetration testing technical assessments. Maintain communication between system owners and the test and evaluation team, including before, during, and after test events. Analyze test plans and perform management and administrative functions for the test and evaluation team, including data gathering, exploit approval, and report generation at the conclusion of test activities. Maintain test and evaluation team processes and procedures and manage the maintenance of the standardized testing platform.

Basic Qualifications:

-1+ years of experience with standard vulnerability assessment and security tools used to scan networks, servers, and applications, including Burp, Nikto, Zap, Nexpose, Nessus, Appdetective, Scuba, Metasploit, and equivalent

-1+ years of experience with one or more of the following: Web application security testing, network vulnerability assessments, network penetration testing, red teaming, security operations, or hunt operations

-1+ years of experience as a penetration tester

-Ability to obtain a security clearance

-BA or BS degree

Additional Qualifications:

-1+ years of experience with leading Cybersecurity testing events, including configuration analysis, vulnerability assessments, or penetration testing

-1+ years of experience with Linux or UNIX-based operating systems, including command line interfaces

-1+ years of experience with leading the development of technical documentation, including test plans, executive briefs, and test reports

-Experience with two or more of the following Cybersecurity tools: NMap, Tenable, Nessus, OpenVAS, Metasploit, Core Impact Pro, Burp Suite, or Nikto

-Experience with programming at least one of the following: PHP, Perl, Python, ruby, bash, C, or C++

-Experience with US Navy Afloat and Ashore systems

-Ability to produce high quality reports and recommendations for clients

-Secret clearance

-BA or BS degree in an IT, Cyber, or Engineering field preferred; MA or MS degree in an IT, Cyber, or Engineering field a plus

-IAT or IAM Level II and III Certifications, including CISSP, GSEC, CASP, CEH, or CISA

-Technical certifications, including MCSE, CCSE, CCSP, TICSA, KLCP, OSCP, LPT, and GPEN preferred


Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status—to fearlessly drive change.


Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.

Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.