Kratos Defense and Security Solutions · 5 hours ago

Senior Penetration Tester

United States

Full-time

Remote

Senior Level

$135K/yr - $165K/yr

5+ years exp

Maximize your interview chances

ConsultingCyber Security

Insider Connection @Kratos Defense and Security Solutions

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Generate deliverables, confirm scope, and execute with minimal oversight.

Promote an inclusive, learning-focused team by sharing knowledge, promoting best practices, and collaborating to reach consensus on our approach to tactical issues.

Work with the team to devise novel tests and scenarios for various penetration tests of emerging technologies.

Consistently produce high quality, client ready deliverables.

Develop and implement automation solutions, new tools, or processes to eliminate wasted effort and allow our team to focus on the important issues that require finesse and expertise.

Research cybersecurity incidents, threats and vulnerabilities to keep up to date.

Adhere to projects/tasks, scheduling, and quality control by monitoring penetration test execution.

Reviews reporting to ensure it thoroughly breaks down and explains all weaknesses and vulnerabilities, their attack vectors and remediation steps in a clear and concise manner.

Create proofs of concept, documentation, and evidence can be easily followed by customer points of contact.

Provide recommendations for new technologies and system designs according to test results.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

OSCPOSWAOSEDGXPNCEPTLPTGWAPTCMWAPTCRTOPCCNPCASP+CISSPCSSLPCISSP-ISSEPGPENPentest+GCFACHFICCNA Cyber OpsCEHGCEDPenetration testingNetwork testingWeb application testingOpen Source IntelligenceCloud Configuration TestingNetwork Testing & ExploitationWeb Application ExploitationWeb API testingMobile Applications testing

Required

One or more of the following certifications: OSCP, OSWA, OSED, GXPN, CEPT, LPT, GWAPT, CMWAPT, and CRTOP or other certifications approved on a case-by-case basis.

One or more of the following R311 Certifications: CCNP, CASP+, CISSP, CSSLP, CISSP-ISSEP, GPEN, Pentest+, GCFA, CHFI, CCNA Cyber Ops, CEH, or GCED.

Five years with direct, full time penetration testing experience with at least (2) years of experience leading penetration testing engagements.

Preferred

Advanced experience and knowledge of general network testing skills and web application testing, to include: Open Source Intelligence Gathering, Cloud Configuration Testing, Network Testing & Exploitation, Web Application Exploitation, and Web API testing (REST & SOAP).

Functional knowledge or experience of one or more types of specialized testing, to include: Mobile Applications; Desktop Applications (Mac, Linux, or Windows); Red Team Social Engineering; Physical Bypass.

An understanding or experience with the FedRAMP framework and its requirements for penetration testing.

Advanced knowledge of commonly used penetration testing tools and some ability to write scripts or develop rudimentary new tools as needed.

Qualified candidates should be prepared to use and test new technologies with little notice through effective research and study strategies.

Comfortable mentoring others on tools, concepts, and methods for conducting penetration testing.