Senior Penetration Tester

Lead Penetration Tester

Belay Technologies is seeking a Lead Penetration Tester to join its intelligence team. The position requires expertise in penetration testing, web development, and a strong understanding of cyber security frameworks. The role will work with a high‑performing agile team using the Scaled Agile Framework (SAFe) to secure enterprise information systems and respond to security incidents.

• Perform internal and external penetration tests against systems to determine vulnerabilities and offer mitigation strategies.
• Perform web application penetration tests.
• Conduct vulnerability risk assessments.
• Execute physical penetration tests and social engineering analysis.
• Participate in cyber incident response as needed.
• Evaluate the impact of new developments on the operational security posture of IT systems.
• Review, test, and audit critical software.
• Formulate security compliance requirements for new system features.
• Identify and remediate security issues throughout the system.
• Audit and assess system security configuration settings using common methodologies and tools.
• Collaborate with development teams to enrich team‑wide understanding of vulnerabilities, attack vectors, and remediation approaches.
• Work closely with System Engineering, Test Engineering, and Integration teams to ensure that hardware and software architecture and implementations meet strict security requirements.
• Propose, assess, coordinate, implement, and enforce information system security policies, standards, and methodologies.
• Serve as a subject‑matter expert in security architecture, providing advice to Program Managers, customer technical experts, and internal program teams.

• Active FS poly from the MD customer, last poly within the past six years (no CCAs).
• Experience with penetration testing tools.
• Knowledge of web development and programming languages such as Java, XML, Perl, HTML, Python, Power Shell, C, and JavaScript.
• Extensive experience performing IT security risk assessments.
• Experience performing web application and physical penetration tests.
• Strong familiarity with web application tools:
  Burp Suite, Web Inspect, App detective.
• Strong familiarity with Kali.
• Strong familiarity with IPS/IDS solutions.
• Strong understanding of the Cyber Kill Chain methodology.
• Experience applying the Risk Management Framework.
• Experience with secure configurations of commonly used desktop and server operating systems.
• Ability to collaborate effectively with technical staff and customers to form mitigation strategies and plan for continuous modernization and legacy integration.
• Experience managing multiple projects simultaneously and adjusting to shifting priorities in resolving issues.

• Bachelor’s degree in a technical/information assurance field and at least 12 years of relevant experience.
• Certifications strongly preferred:
  • GIAC Web Applications Penetration Tester (GWAPT)
  • GIAC Penetration Tester (GPEN)
  • Certified Ethical Hacker (CEH)
  • Certified Information Security Manager (CISM)
  • Certified Web Application Defender (GWEB)
  • Certified Information Systems Security Professional (CISSP)
• Extensive experience developing/implementing integrated security services management processes, including network penetration testing, anti‑virus planning, risk analysis, and incident response.
• Extensive experience providing application development security support, including system security certifications and project evaluations for firewalls.

• 8 weeks paid leave: 4 weeks personal leave, 3 vacation days, birthday leave, 11 paid holidays, and optional up to 6 days through the volunteer program.
• 10% matching in 401(k) contributions vested on day one.
• $5,000 annual training/tuition stipend.
• Student loan repayment program.
• 100% company‑funded HSA.
• Comprehensive medical coverage (100% coinsurance).
• Dental coverage including orthodontia.
• Up to $420,000 in life insurance, premiums 100% company funded.
• Amazon Prime, gym reimbursement, monthly lunches, games and prizes.
• Pet adoption program, generous referral bonus program, and fun events.

Salary Range: $150,000 to $220,000.

We are an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, military/veteran status or other characteristics protected by law.