Apply on Employer Site

Motorola Solutions · 4 hours ago

Penetration Tester (US REMOTE)

United States

Full-time

Remote

Mid, Senior Level

$115K/yr - $130K/yr

2+ years exp

Motorola Solutions is a global leader in critical communications and cybersecurity. They are seeking a Cyber Penetration Tester to provide consultative services that evaluate the effectiveness of cybersecurity controls across various networks and products, ensuring public safety and compliance with relevant standards.

Cyber SecurityTelecommunicationsVideo

Growth Opportunities

No H1B

U.S. Citizen Only

Responsibilities

Proficiency in executing comprehensive web application penetration testing is required

Understand and safely use various open-source penetration testing tools and when appropriate, emulating hacker tactics, techniques, procedures (TTPs)

Develop comprehensive and accurate reports and presentations for various consumers of penetration testing results

Experience with security testing and configuration review of major cloud platforms (e.g., AWS, Azure) preferred

Familiarity with cloud computing concepts and security models, including IaaS, PaaS, and serverless architectures

Understanding and practical application of the MITRE ATT&CK framework for analyzing adversary TTPs

Estimated workload is 3-4 assessments per quarter, consisting of 1-2-week assessments including report writing, maintaining a 70% billable utilization

Qualification

Web Application Penetration TestingPenetration Testing ToolsCloud Security TestingMITRE ATT&CK FrameworkNetwork Penetration TestingScripting PerlScripting PythonScripting RubyC# DevelopmentASP.NET DevelopmentJava DevelopmentUnix/Linux/Mac/Windows OSSocial Engineering AssessmentsExploit DevelopmentReverse EngineeringSource Code ReviewWireless Security TestingClient Interface SkillsAI Integration in PentestingTechnical Documentation

Required

Bachelor's degree (or equivalent years' experience 5+ in a Cyber role) in a technical field

Minimum of one (Pentest+, CEH, OSCP, OSWE and/or GPEN) certification required

2-5 years' experience in at least three of the following: Network penetration testing and manipulation of network infrastructure, Web Application Penetration Testing, Email, phone, or physical social-engineering assessments, Shell scripting or automation of simple tasks using Perl, Python, or Ruby, Developing, extending, or modifying exploits, shellcode or exploit tools, Developing applications in C#, ASP, .NET, Objective C, Go, or Java (J2EE), Reverse engineering malware, data obfuscators, or ciphers, Source code review for control flow and security flaws, Strong knowledge of tools used for wireless, web application, and network security testing, Thorough understanding of network protocols, data on the wire, and covert channels, Solid understanding of Unix/Linux/Mac/Windows operating systems, including bash and PowerShell

Must be able to obtain background clearance as required by government customer

Must be a U.S. citizen with the ability to obtain necessary security clearance as required by government contract

Legal authorization to work in the U.S. indefinitely is required. Employer work permit sponsorship is not available for this position

Preferred

CEH, Pentest+, OSCP, OSCE, OSWE or SANS certification

Ability to travel up to 50%

Ability to successfully interface with clients (internal and external)

Ability to document and explain technical details in a concise, understandable manner

Ability to integrate Artificial Intelligence into the pentesting workflow to include vulnerability discovery, exploitation and assessment documentation generation

Ability to manage and balance a team and your own time among multiple tasks