Penetration Tester, Senior

The Opportunity:

Do you want to help solve the world’s most complex cyber problems? As a cyber professional, you know that understanding adversary tactics, techniques, and procedures is vital to producing the intel that enables the success of our mission partners.

At Booz Allen, you can share your skills and high-level expertise to inform strategies and mitigate the most pressing vulnerabilities. Here, you aren’t just deciphering reports. You’re telling the story to inform our mission partners about cyber risk and decisions that can impact defensive cyber operations.

As a senior penetration tester, you’ll help mission partners solve problems using the latest software like Core Impact, Cobalt Strike, Nessus, Burp Suite Pro, Powersploit, etc. You’ll work alongside multiple stakeholders to evaluate risk and make meaningful recommendations. You’ll evaluate systems and identify security gaps through the eyes of an adversary.

Booz Allen is committed to creating an environment where you can nourish your cyber career through mentoring, the opportunity to leverage new resources, and the ability to gain in-demand certifications to sharpen your skill set. With opportunities supporting both the private and public sectors across multiple geographies, your career is only limited by your own appetite for exploration.

Work with us to secure our systems, networks, and crucial infrastructures.

Join us. The world can’t wait.

You Have: 

  • 5+ years of experience with penetration testing, including applying adversarial and computer attack methods and system exploitation techniques
  • Experience with applying Linux, Windows, and virtual platforms security principles
  • Experience with Windows environments and Active Directory concepts
  • Experience with programming at least one of the following: Perl, Python, ruby, bash, C or C++, C#, or Java, including scripting and editing existing code
  • Experience with analyzing a company’s defenses and designing an effective attack plan
  • Secret clearance
  • HS diploma or GED

Nice If You Have:  

  • Experience with testing tools, including Nessus, Core Impact, Cobalt Strike, or Metasploit, such as or other C2 Framework), Burp Suite Pro, Bloodhound, and Powersploit
  • Experience with Active Directory enumeration, exploitation, and post exploitation
  • TS/SCI clearance
  • BS degree in Computer Engineering or CS
  • OSCP, OSCE, or OSEP Certification

Clearance:

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required

Compensation:
At Booz Allen, we celebrate your contributions, provide you with opportunities and choice, and support your total well-being. Our comprehensive benefit offerings include healthcare, retirement plan, insurance programs, commuter program, employee assistance program, paid and unpaid leave programs, education assistance, and childcare benefits.

The proposed salary range for this position in Colorado is 150,000 to 160,000. Final salary will be determined based on various factors.

Build Your Career: 

Rewarding work, fun challenges, and a ton of investment in our people—that’s Booz Allen cyber. When you join Booz Allen, we’ll help you develop the career you want. 

Competitions — From programming competitions at our PyNights (Python competition and learning events) to competing in CTFs, we’ve got plenty of chances for you to show off your skills. 

Paid Research — Have an innovative idea to explore or hypothesis to test? You can participate in challenges via our crowdsourcing platform, the Garage, and other programs to be awarded dedicated time and/or funding to advance your skills. 

Cyber University — CyberU has more than 5000 instructor-led and self-paced cyber courses, a free online library that you can access from just about anywhere—including your phone—and certification exam prep guides that include practical assessments to prepare you for your exam. 

Academic Partnerships — In addition to our tuition reimbursement benefit, we’ve partnered with University of Maryland University College to offer two graduate certificate programs in cybersecurity—fully funded without a tuition cap. 

Cyber University — CyberU has more than 5000 instructor-led and self-paced cyber courses, a free online library that you can access from just about anywhere—including your phone—and certification exam prep guides that include practical assessments to prepare you for your exam. 

Academic Partnerships — In addition to our tuition reimbursement benefit, we’ve partnered with University of Maryland University College to offer two graduate certificate programs in cybersecurity—fully funded without a tuition cap. 

Maker/Hackerspaces — Race drones, print 3D gadgets, drink coffee from our Wi-Fi coffee maker, and get hands-on training on tools and tech from in-house experts in our dedicated maker and hackerspaces.

We’re an equal employment opportunity/affirmative action employer that empowers our people to fearlessly drive change – no matter their race, color, ethnicity, religion, sex (including pregnancy, childbirth, lactation, or related medical conditions), national origin, ancestry, age, marital status, sexual orientation, gender identity and expression, disability, veteran status, military or uniformed service member status, genetic information, or any other status protected by applicable federal, state, local, or international law.

Not ready to apply? Join our talent community and sign up for job alerts.