Apply on Employer Site

Leidos · 20 hours ago

Penetration Tester

Ashburn, VA

Full-time

Onsite

Mid, Senior Level

$87K/yr - $157K/yr

3+ years exp

Leidos is a company that focuses on innovative solutions and services, and they are seeking a highly skilled Penetration Tester to join their team supporting the CBP Security Operations Center. The role involves conducting comprehensive security assessments of CBP FISMA systems to identify vulnerabilities and provide actionable recommendations to enhance security posture.

ComputerGovernmentInformation ServicesInformation TechnologyNational SecuritySoftware

No H1B

U.S. Citizen Only

Responsibilities

Conduct penetration testing activities aligned with CBP and industry best practices

Perform internal and external web application, network, and infrastructure pentest assessments using commercial and open-source tools

Execute testing operations safely and in accordance with defined operational guidelines

Produce detailed reports outlining findings and actionable remediation recommendations

Partner with SOC, engineering, and security teams to validate and remediate vulnerabilities

Support tool development, methodology improvements, and team-wide knowledge sharing

Assist in verifying Bug Bounty findings and remediations

Qualification

Penetration TestingVulnerability AssessmentIncident DetectionMalware AnalysisKali LinuxMetasploitBurp Suite ProCobalt StrikeTenable NessusOSCPAnalytical SkillsCommunication SkillsProblem-Solving Skills

Required

Bachelors' degree from an accredited college in a related discipline, or equivalent experience/combined education, with 3 to 5(T3)/ 5 to 8 (T4) years of professional experience; or 3 to 5 years of professional experience with a Masters' degree

3(T3) /5(T4) years in Pen Testing and Vulnerability Assessment, with specific emphasis on web application and enterprise network environments

3-5 (T3) 5-8(T4) years of professional experience in incident detection and response, malware analysis, or cyber forensics

Specific experience (1-3 years for T3) or (3-5 years for T4) in at least 1 of the following specialties: Network pentesting, Web application pentesting, Active directory pentesting, Mobile application pentesting, Cloud infrastructure pentesting, RF pentesting

Experience with 1-3 (T3) 3-5(T4) of the tools listed below: Kali Linux, Metaspoilt, Burp suite pro, Cobalt Strike / Sliver, Tenable Nessus, Tenable Security Center, Bloodhound, BladeRF / HakRF, Hak5 equipment, Wireshark / tcpdump, Prowler, Scoutsuite

At least one pentesting certification: OSCP, GPEN, CRTO, OSWP, GWAPT, AWS Solutions Architect Associate

In addition to specific security clearance requirements all CBP SOC employees are required to successfully complete a CBP Background Investigation to support this program

Preferred

CISSP

GISF

GXPN

OSCE

OSEE

AWS Certified Security - Specialty

Certified Kubernetes Administrator (CKA)

Ability to brief senior government leadership on pentesting requirements and results

Red Team operator experience

Experience creating and updating SOPs

Analytical and Problem-Solving Skills

Communication Skills

Company

Leidos

Glassdoor3.9

Leidos is a Fortune 500® innovation company rapidly addressing the world’s most vexing challenges in national security and health.

Founded in 1969

Reston, Virginia, USA

10001+ employees

https://www.leidos.com/

Funding

Current Stage

Public Company

Total Funding

unknown

2025-02-20Post Ipo Debt

2013-09-17IPO

Leadership Team

James Carlini

Chief Technology Officer

Theodore Tanner

Chief Technology Officer

Recent News

Fortune

Fortune 500 Power Moves: Which executives gained and lost power this week

2025-12-20

MarketScreener

Leidos Names Theodore Tanner Chief Technology Officer

2025-12-16

Benzinga.com

Citigroup, Leidos Holdings And More On CNBC's 'Final Trades'