Penetration Tester - R25-012

Why Choose VGI, a GRVTY Company

VGI, a GRVTY Company, started with a simple, American idea: we do things not because they are easy but because they are hard. VGI, a GRVTY Company, exists to answer challenges. We do it for customers in defense, intelligence, homeland security—anyone whose job it is to advance America’s strategic position. The size of the challenge we face demands new skills, new backgrounds, and new thinking. That’s what we’re here to deliver. And when you work shoulder to shoulder with brilliant people tackling the most high-stakes challenges, it’s invigorating. Our culture is built on collaboration, mission-focused innovation, and a commitment to excellence, where every challenge we answer opens the door to a new possibility.

The toughest national security challenges demand vision and ingenuity, not just resources. We deliver mission and technical expertise to outpace our adversaries. We’re purpose-built to tackle the most entrenched, systemic national security issues around the world.

We partner with our customers to help them overcome challenges in every corner of technology and defense—including the ones still being explored. Our growing capabilities create complementary advantages, giving on-the-ground operations the edge they need to succeed. We muster everything we have to answer every challenge presented, every day of our lives.

At VGI, a GRVTY Company, we believe that when our employees thrive, our company thrives. That’s why we offer a comprehensive and competitive benefits package designed to support your well-being, growth, and work-life balance.

• Robust health plan including medical, dental, and vision

• Health Savings Account with company contribution

• Annual Paid Time Off and Paid Holidays

• Paid Parental Leave

• 401k with generous company match

• Training and Development Opportunities

• Award Programs

• Variety of Company Sponsored Events

JOB DESCRIPTION AND RESPONSIBILITIES:

• Seeking a penetration tester for a customer mission system. The successful candidate will perform vulnerability assessments and penetration testing following the customers prescribed scope statement with authorities derived from the customers Enterprise cyber security organization. The ideal candidate must display familiarity with Windows and Linux Mobile operating systems and be able to conduct network and security vulnerability analysis.
• Specifically, the candidate will analyze mission systems to help assess vulnerability to compromise from adversaries. The successful candidate must have prior experience with scope defined penetration testing using mainly open source tools.
  Penetrate desktops, servers, applications, operating systems, and security systems to gain root/admin access
• Provide black-box penetration testing utilizing tools and techniques to conduct cybersecurity evaluations for highly specialized network communication systems
• Modify open source exploits to bypass/evade antivirus, firewalls, hardened systems, and IDS/IPS systems
• Modify computer/system/network attacks, exploits, and Metasploit modules to create variations that evade detection
• Perform reconnaissance, privilege escalation persistence, lateral movement, and payload generation for multiple targets
• Hide digital artifacts and communications to evade antivirus, firewalls, IDS/IPS systems, Wireshark, and TCPDump

REQUIRED SKILLS AND QUALIFICATIONS:

• 3-5 years of exploit development, computer/network security, or network traffic analysis using analytical tools
• Experience with Kali Linux and Metasploit tools
• Experience with programming/scripting: Python, PowerShell , Ruby, C, JavaScript, etc.
• DESIRED SKILLS AND QUALIFICATIONS:

• Degree in Computer Science, Engineering, Computer Forensics, Network Security, or equivalent technical experience
• Expert knowledge of networking components/devices and various OS/applications in Linux and Windows environments
• At least one of the following certifications: CISSP, OSCP, CEH, CEPT, GPEN, EnCE, GASF, GSFE
• Demonstrated experience in three or more specific areas to include: analysis, network engineering, networking security, penetration testing, red teaming, hardware engineering, software reverse engineering, and computer exploitation.

Education

• Bachelor’s degree (or equivalent) in Cybersecurity, Information Security, IT, EE, Network Engineering, Computer Science, or related field

Clearance- TS or TS/SCI

WORK LOCATION: Dulles, VA

TRAVEL: 0%

KEY WORDS: GPEN, OSCP

VGI, a GRVTY Company, is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran and will not be discriminated against on the basis of disability.

Anyone requiring reasonable accommodations should email [email protected] with requested details. A member of the HR team will respond to your request within 2 business days. Please review our current job openings and apply for the positions you believe may be a fit. If you are not an immediate fit, we will also keep your resume in our database for future opportunities.