Jacobs Senior Penetration Tester (Cyber) - IRES - SAFB in Schriever AFB, Colorado
Senior Penetration Tester (Cyber) - IRES - SAFB
This position requires a Penetration Tester to proactively plan and conduct cyber penetration testing events on customer networks to improve enterprise-wide security posture. Candidate will plan penetration testing events to evaluate the exploitability of vulnerabilities present on the customer’s systems and networks and present to the customer for approval. Perform penetration testing events in accordance with the approved plans. Review penetration testing results and provide reports on successes and failures. Help define Policies and develop processes for penetration testing across the enterprise. Oversee the penetration testing program; to include maintaining authorizations, documenting and disseminating test results, updating policies and processes to stay in line with DoD requirements, testing and developing tool sets to perform testing, training and certification of penetration testing staff and providing briefings on the program and results to stakeholders across the organization. Work with personnel supporting the systems being tested to identify the indicators of penetration attempts and steps to remediate and mitigate the penetration attempts. Interpret higher-headquarters’ guidance to assist in the development of agency-wide policy. Support the development, establishment, review and update of CND procedures, processes, manuals, and other (CERT) documentation.
Requirements:BS Degree and 14 years general experience. 10 years related experience to include 8 years’ experience in the penetration testing field and practical experience in conducting penetration testing, red team operations, blue team operations and Advanced Persistent Threat identification and remediation. Cybersecurity experience is preferred, but IT experience/ expertise with servers, routers, firewalls, system patching, system hardening, tool/script development, advanced hardware/ software troubleshooting, COMSEC protocols/ procedures, and/or VDI is considered for cybersecurity experience. Must have a current DoD 8570.01-M IAT Level II certification with Continuing Education (CE). Must be able to obtain a DoD 8570.01-M CNDSP-Auditor certification (CEH, CFR, CSIH, GCFA, GCIH, SCYBER) within 30 days of hire. Must be a US citizen and have an active DoD Secret security clearance to start and be able to obtain a DoD Top Secret clearance. Advanced experience with security analysis and solutions in a WAN/LAN environment. Proven aptitude in oral and written communications, with excellent technical writing skills. Experience with most MS Office applications (Word, Excel, PowerPoint, and Visio). Must be willing to travel - infrequent and less than two weeks. Must be willing to provide training to other analysts, as needed.
Desired:Experience with Tier 2 CSSP or CERT, network, and system security policies and procedures. Experience with conducting security testing events across an Enterprise Network using commercial and open source penetration testing tools. Experience with other CND tools/applications, such as Network Security Manager, Bluecoat and Barracuda. Current DoD Top Secret clearance.
Jacobs is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status or other characteristics protected by law. Jacobs is a background screening, drug-free workplace.
Primary Location United States-Colorado-Schriever AFB
Travel Yes, 25 % of the Time
Req ID: AS00035E