Logo Red Team Penetration Tester

Overview

Sim Ventions, consistently voted one of Virginia's Best Places to Work, is looking for an experienced professional to join our team. As a Red Team Penetration Tester, you will be responsible for conducting penetration testing and offensive cybersecurity operations for U.S. Government and DoD systems. You will work collaboratively with Blue Team and Cybersecurity professionals to enhance overall cyber posture.

* Position is contingent upon award of contract, anticipated in August of 2026

Negligible

An ACTIVE Top Secret Clearance with SCI Eligibility is required for this position. Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information. US Citizenship is required to obtain a clearance.

• Five (5) years' experience in software engineering applied to program development; modeling and simulation applied to DoD or Information Technology systems.
• Linux and Windows
• Strong working knowledge of common Penetration Testing (PENTEST) tools:
  Kali, Metasploit, NMAP, Cobalt Strike
• Penetration Testing (PENTEST)
• Red Team Operations
• Tool/Software Development (exploits/malware, C2, reverse engineering, bug bounties)
• Python, C, C#, C++, Go, Perl, Power Shell
• Web Dev/Web App Dev/Web Penetration testing
• NSX, vCenter, vRealize Suite, Horizon View (VDI) and others
• PAN-OS
• Fire Power, Nexus, IOS, ASA
• ONTAP, Snap Mirror
• Active Directory
• Entra  (Azure AD), Active Directory, SSO, MFA, Azure application integration, Identity Federation
• Automation using Power Shell, Power Automate, Logic Apps, Graph API
• Microsoft Entra  Microsoft 365 in a hybrid environment
• Experience with Palo Alto, Cisco, VMware, Net App and Microsoft products
• Extending or integrating on-premises AD with Entra
• Managing identity and access in Microsoft Entra
• Experience conducting Red Team operations in an MDE environment
• Experience with AWS, Cloud Audit, Serverless and Microservice Architecture
• Experience working with AWS services (EC2, S3, KMS, RDS) and security best practices relevant to those services
• Experience with Web Services penetration testing (RESTful and SOAP) and Web Authentication protocols (eg OAuth2, SAML, LDAP)
• PHP, ASP, SQL databases, Java, HTML, No
  
  SQL
• Minimum certification one of the following:
  Security+, CCNA Security, CySA+, GICSP, SSCP
• Minimum certification as penetration tester and possess one of the following certificates:
  • Offensive Security Certs: OSCP, OSCE, OSEE, OSWP
• SANS Certs:
  • SEC
    560, SEC
    542, SEC
    660, SEC
    642, SEC
    564
• OSD Sponsored Cyber Operation Academy Course (COAC) graduates
• Capture the Flag (CTF) participation (DEFCON, OTW, Hack the Box, USS Secure CTFs)
• Security research resulting in a Common Vulnerabilities and Exposures (CVE)

• Debug and reverse engineer software.
• Analyze Windows Events and Linux syslogs, boot logs and dmesg logs.
• Program and debug Web 2.0, Java, Perl, Ada, C++, Tool Command Language (tcl/tk) scripts and graphical user interfaces (GUIs) using Microsoft Visual tool and Rational Clear Case for software configuration management.
• Recommend software modifications to systems to mitigate known vulnerabilities.
• Operate and administer computer systems running HP-UX, UNIX, Solaris, Linux and Microsoft Windows.
• Identify security flaws in compiled and human readable source code. Understand code utilizing Real Time VxWorks and Lynx OS, CORBA, firewalls and networking protocols.
• Understand how to implement NSA-approved encryption technologies and devices. Apply DISA STIGs.
• Apply virtual hosting and server technology in system architectures. Understand and apply deceptive technology such as honey pots in system architectures.
• Participate in Code Reviews. Perform Static Source Code Analysis. Author recommendations for improving software and code design.
• Contribute to a System Security Administrator and Operators Manual (SSAOM)

High School Diploma or GED equivalent

Compensation at Sim Ventions is determined by a number of factors, including, but not limited to, the candidate's experience, education, training, security clearance, work location, skills, knowledge, and competencies, as well as alignment with our corporate compensation plan and contract specific requirements.

The projected annual compensation range for this position is $90,000-$150,000 (USD). This estimate reflects the standard salary range for this position and is just one component of the total compensation package that Sim Ventions offers.

At Sim Ventions, we are committed to supporting the total well-being of our employees and their families. Our benefit offerings include comprehensive health and welfare plans to serve a variety of needs.

• Medical, dental, vision, and prescription drug coverage
• Employee Stock Ownership Plan (ESOP)
• Competitive 401(k) programs
• Retirement and Financial Counselors
• Health Savings and Health Reimbursement Accounts
• Flexible Spending Accounts
• Life insurance, short- & long-term disability
• Continuing Education Assistance
• Paid Time Off,…