Penetration Tester Security Clearance

Overview

VTG is looking for multiple levels (Level 2, 3 &
4) of a Penetration Tester in Chantilly VA and Aurora CO. The position is contingent upon program award and the positions are located in Chantilly VA & Aurora CO. A Penetration Tester (Pen Tester) is a security professional who reviews and evaluates NRO ISs and recommends changes to the Government that can improve information confidentiality, integrity, and availability. Pen Testers are also responsible for performing security focused services to improve the security posture of NRO ISs.

Travel is estimated at 25% for pen testers (OCONUS travel 2x per year).

Level 2 (Intermediate) Functional Description – In addition to being responsible for performing basic reconnaissance and vulnerability scanning in accordance with established testing methodologies; identifies common vulnerabilities that can be potentially exploited, documents and reports findings. Possess basic scripting abilities and an understanding of network fundamentals and vulnerability scanning tools. The Level 2 Pen Tester is also responsible for conducting more complex penetration tests, exploring more complex vulnerability analysis including misconfigurations and zero‑day exploits, and developing more sophisticated exploitation techniques.

Leads penetration tests, mentoring junior testers, and providing technical guidance to stakeholders. Possess expertise in network protocols, application security, social engineering, and advanced scripting.

Level 3 (Senior) Functional Description – In addition to duties described in Level 2, the Pen Tester is responsible for designing and leading complex penetration tests, develops customized tools and methodologies; providing expert guidance on security best practices; identifying complex vulnerabilities, providing strategic security advice, and leading remediation efforts; collaborating with management to develop security policies, training other cybersecurity professionals, and staying abreast of emerging threats.

Possess extensive knowledge of cybersecurity frameworks, industry standards, and advanced security tools.

Level 4 (Subject Matter Expert) Functional Description – In addition to duties described in Level 3, the Pen Tester will possess additional years of experience as described in Table

A.5.5.1.

• Cyber Sec First Responder (CFR)
• Cisco Cert. Network Assoc. Cyber Ops (CCNA Cyber Ops)
• CompTIA Pen Test+
• CompTIA Cybersecurity Analyst (CySA+)
• Certified Hacking Forensic Investigator (CHFI)
• CCNA Security
• GIAC Forensic Analyst (GCFA)
• GIAC Certified Incident Handler (GCIH)
• SCYBER

All positions require: TS/SCI with Poly.

• Level 2 Penetration Tester –
  
  Education:
  
  Bachelor’s Degree or Higher and 3 years of Pen Tester Experience OR High School GED + 5 years Relevant Experience OR Associates Degree + 4 years Relevant Experience OR Masters or Higher + 2 years Relevant Experience.
• Level 3 Penetration Tester –
  
  Education:
  
  Bachelor’s Degree or Higher and 4 years of Pen Tester Experience OR High School GED + 9 years Relevant Experience OR Associates Degree + 7 years Relevant Experience OR Masters or Higher + 5 years Relevant Experience.
• Level 4 Penetration Tester –
  
  Education:
  
  Bachelor’s Degree or Higher and 7 years of Pen Tester Experience OR Masters or Higher + 6 years Relevant Experience.

All Levels:
Minimum Security+ certification.

VTG's estimated starting pay range is $150,000 – $195,000 annually, which is a general guideline and may vary depending on geographic location. When extending an offer, VTG also considers work experience, education, skill level and market considerations and may possibly include contractual requirements which could cause an offer to fall outside of this range.