Back to jobs

NIH - PENETRATION TESTER

cfocussoftware
Full-timesenior

Job description

cFocus Software seeks a Penetration Tester to join our program supporting the National Institutes of Health (NIH). This position is fully remote. This position requires a Public Trust or the ability to obtain a public trust clearance. Qualifications: • Public Trust Clearance • B.S. Computer Science, Information Technology, or a related field • 5+ years of experience conducting penetration testing or offensive cybersecurity operations. • Experience performing enterprise penetration testing. • Experience with network and application security assessments. • Experience documenting technical security findings. • Ability to obtain and maintain NIH suitability/background investigation. • Active OSCP, OSEP, GPEN, GXPN, CEH, PenTest+, or CISSP Duties: • Conduct enterprise penetration testing activities including: • Perform internal and external network penetration testing. • Conduct web application penetration testing. • Execute infrastructure security testing. • Perform cloud penetration testing. • Conduct operating system security assessments. • Perform wireless security testing. • Assess Active Directory security. • Conduct application security testing. • Simulate real-world cyberattacks using industry-standard offensive security methodologies. • Perform controlled exploitation activities to identify security weaknesses. • Validate effectiveness of implemented security controls. • Identify attack paths and privilege escalation opportunities. • Document technical findings and supporting evidence. • Prepare comprehensive penetration testing plans • Provide Red Team Support