Location: Virginia Beach,VA, USA
Imagine One is currently seeking multiple candidates for positions supporting the U.S. Navy at Naval Surface Warfare Center Dahlgren Division (NSWCDD). We are looking for Senior Penetration Tester to provide engineering support for Cyber Situational Awareness (SA), Cyber Command and Control (C2), Mission Assurance, and Homeland Defense in Virginia Beach, Virginia. Work will be performed on-site in Virginia Beach, Virginia.
Experience Requirements:
The Senior Penetration Tester shall have experience with technical processes and technical management processes in support of comprehensive test and evaluation associated with test support, operational verification of installations and support efforts for Developmental Test and Evaluation (DT&E), Operational Test and Evaluation (OT&E), and Penetration testing (PEN testing) to include the following duties:
Provide support by utilizing experience working with Entra ID (Azure AD), Active Directory, SSO, MFA, Azure application integration, Identity Federation
Provide support by utilizing experience in automation using PowerShell, PowerAutomate, Logic Apps, Graph API
Provide support by utilizing experience working with Microsoft Entra ID and Microsoft 365 in a hybrid environment
Provide support by utilizing experience extending or integrating on premises AD with Entra ID
Provide support by utilizing experience managing identity and access in Microsoft Entra ID
Provide support by utilizing experience conducting Red Team operations in an MDE environment
Provide support by utilizing experience with AWS, Cloud Audit, Serverless and Microservice Architecture
Provide support utilizing experience working with AWS services (such as EC2, S3, KMS, RDS) and security best practices relevant to those service
Provide support by performing web application and API penetration testing, and Cloud Security Audits
Provide support by utilizing experience with Web Services penetration testing (RESTful and SOAP) Web Authentication protocols (e.g., OAuth2, SAML, LDAP)
Providing support by writing proof of concept code to demonstrate the severity of a potential security issues
Provide support by utilizing working knowledge with scripting languages (e.g., Python, Perl, PHP, Ruby)
Provide support by utilizing working knowledge with Programming language (e.g., C, Java, Python, JavaScript)
Qualifications:
Minimum of 8 years with BS/BA; Minimum of 6 years with MS; Minimum of 3 years with PhD
Shall have a minimum of five (5) years of experience in penetration testing and/or offensive Cyber operations
Shall have demonstrated experience utilizing penetration tools
Shall have demonstrated experience in mimicking threat behavior
Demonstrated experience performing vulnerability assessments with the Assured Compliance Assessment Solution tool
Demonstrated experience with performing STIG assessments to include using SCAP benchmarks
Demonstrated experience utilizing packet analyzer tools such as Wireshark and tcpdump
Certifications: CEH or GSEC or Security+ Minimum certification as 541 (or similar as required by the Technical Instruction) at the Intermediate level per DoDD 8140.01, or successor
Offensive Security Certified Professional (OSCP) or Offensive Security Certified Expert (OSCE) or Offensive Security Exploitation Expert (OSEE) or Offensive Security Wireless Professional (OSWP) certification required
Ability to travel up to 10 percent
Security Requirements:
Imagine One offers a full package of benefits and competitive salary, excellent group medical, vision and dental programs. 401K savings plan; $4K annual tuition reimbursement ($5K if pursuing Master's degree); employee training, development and education programs; profit sharing; advancement opportunities; and much more!
Imagine One Technology & Management, Ltd., is an Equal Opportunity/Affirmative Action Employer. Protected veterans and individuals with disabilities encouraged to apply
ISO 9001:2015, ISO 20000-1:2018, ISO 27001:2013
CMMI Development and Services - Maturity Level 3
An Employee-Owned Business
*Imagine One “Contingent” offers for employment may stipulate that one or more requirements be satisfied before final commitment between candidate and Imagine One is established; namely, award of contract to the Imagine One Team. Contingent requirements vary and may also include, but not be limited to additional factors (i.e., the position still being available after negotiations with the Government; final approval of your qualifications by the Government; or ability to successfully acquire and/or transfer a DoD security clearance).