Penetration Tester

Job Description:

The team is searching for a penetration tester to support the 48th Cyber Space Test Squadron, the United States Air Force, and the United States Space Force at Eglin Air Force Base, Florida. The Cybersecurity Penetration Test Team conducts security analysis and assessments on Air Force and Space Force systems to better understand cybersecurity vulnerabilities, characterize security risks, and make recommendations on corrective actions.

If you enjoy working in a fast-paced multi-disciplinary environment, learning new technology areas, this is the team for you. The team provides opportunities to advance your cybersecurity career and experience through on-the-job training, hands on testing, self-paced learning, and program and project management by working directly with experienced team members with many years in the cybersecurity field and professional certifications like OSCP, OSEP, OSWA, OSWE, OSED, OSCE, GCIH, GPEN, and/or GWAP. If you have a technical cyber-background and want to learn more about penetration and other cyber testing, this is the job for you.

We are looking for professionals with a cyber-background, who have strength in penetration testing field. We are also seeking technical experience working with Kali Linux and other penetration test tools. Additional experience can include vulnerability analysis, network/security engineering, network protocol structures, interpreted and compiled computer languages, and information technologies like Windows, Linux, Unix, Cisco, Databases, web servers, computer virtualization, containers, and cloud computing. With one or more cyber certifications in one of the listed areas and are highly motivated to learn the others. Position responsibilities can span from compliance testing to penetration testing, depending on skillset.

When executing test events, work hours can be extended and may vary. Test events are typically 1-2 weeks in length, with personnel currently spending 2-3 days in the office and 2-3 days per week teleworking, when not testing. Travel requirements are typically 1 week per month but varies.

This position provides cybersecurity support directly to the 48th Cyberspace Test Squadron at Eglin AFB, FL. This support includes the following:

Essential Duties and Responsibilities

• Conduct independent penetration testing, data collection, test automation, and reporting
• Develop test tools and strategies for cybersecurity testing in DOD
• Perform system security analysis on systems and/or software to understand and identify vulnerabilities
• Execute hands-on testing which include significant technical skills with multiple operating systems. (Windows, Linux, Unix, IOS (network)) as well as software/databases (SQL Server, Oracle)
• Provide technical guidance and expertise to test teams
• Document and communicate test results effectively to technical and non-technical user groups in written and oral formats
• Significant knowledge of Windows and Linux (including Kali) Operating Systems

At COLSA, people are our most valuable resource and centered at our core value. We invite you to unite your talents with opportunity and be a part of our “Family of Professionals!” Learn about our employee-centric culture and benefits here.

Required Experience:

One of the following combinations of education and experience:

• Bachelor's degree in a technical discipline and a minimum of 3-7 years of related experience
• Associate's degree in a technical discipline and a minimum of 7-11 years of related experience
• High school diploma and 9-15 years of related experience
• Active DoD SECRET clearance and be able to obtain and maintain a DoD Top Secret – (Single Scope Background Investigation). U.S. Citizenship
• Experience using modern penetration testing tools and methods
• Ability to identify and exploit web application vulnerabilities
• Analytical skills and problem-solving skills
• Good organization, decision making, and verbal and written communication skills
• Excellent self-initiative and self-motivation with the ability to work under minimal supervision
• Ability to work effectively in small and large team settings to solve complex problems
• Must be able to obtain DOD 8570 IAT Level 3 certification (CASP, CISSP, etc.) and Cyber Security Service Provider (CSSP) Analyst - Certified (CEH, GCIH, etc) within 6 months of hire, and maintain certification throughout employment.

Preferred Skills and Qualifications:

• Active DoD Top-Secret clearance highly desired
• Experience performing penetration test events
• Knowledge of source code vulnerability analysis
• Knowledge of network security/engineering
• Knowledge of common wired and wireless network protocol structures
• Experience using interpreted languages (Python, Ruby, JavaScript, PHP, etc.).
• Knowledge of compiled languages (C, C , Assembly, Java, etc.)
• Certifications: OSCP, OSEP, OSWA, OSWE, OSED, OSCE, GCIH, GPEN, and/or GWAP

Applicant selected will be subject to a government security investigation and must meet eligibility requirements for access to classified information. COLSA Corporation is an Equal Opportunity Employer, Minorities/Females/Veterans/Disabled. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, or national origin.