Skip to main content
Go

Cyber Penetration Tester

Apply Now
Businesses Raytheon Intelligence & Space Clearance type Top Secret - Current Relocation eligible No Ability to Telecommute No telecommuting Job ID 178791BR Most Recent Date Posted 09/15/2021 City Greenbelt State MD Country United States
Raytheon Intelligence & Space (RIS) – Cybersecurity, Training & Services (CTS) is seeking a cleared and seasoned Cyber Penetration Tester to fulfill a U.S. Federal Agency’s mission to ensure security measures and safeguards are in place to thwart threat attacks and prevent unauthorized access.

* A TS security clearance is required.


Work Location: Beltsville, Maryland

Job Description:
Conducts network or software vulnerability assessments and Red Team penetration testing utilizing reverse engineering techniques. Perform vulnerability analysis and exploitation of applications, operating systems or networks. Identifies intrusion or incident path and method. Isolates, blocks or removes threat access. Leverage the MITRE ATT&CK framework to develop threat models and methodologies in building operational engagement plans. Create test cases each individual TTP found in ATT&CK as well as custom and more advanced variants to assess the organization’s coverage across a spectrum of intrusion sets and scenarios. Develop and use malware, pivoting, escalating privileges to test the organization’s security effectiveness

Responsibilities:

Perform specific activities that include, but not limited to the following:
  • Plan, communicate, coordinate and perform penetration tests and security assessments at application, system and enterprise levels.
  • Interface and coordinate with system owners to establish targets for testing, test schedule, test goals, and rules of engagement
  • Devises plans and scenarios for various types of penetration tests and automate the simulation of tactics, techniques, and procedures used by advanced cyber threat actors
  • Conduct penetration test in accordance with NSA INFOSEC Assessment Methodology (IAM) and INFOSEC Evaluation Methodology (IEM)
  • Performs reconnaissance, threat modeling, vulnerability identification, authorized exploitation, and post-exploitation cleanup
  • Maintain log of testing activities to support test report write-up
  • Documents targets, test plan, scenarios tested, findings, test evidence and recommendations in penetration test report and present results to customer leadership
  • Perform information technology security research to remain current on emerging technology trends and develop exploits for disclosed and undisclosed vulnerabilities
  • Develop and maintain penetration testing SOPs.
  • Performs off-hours work as necessary.
  • Occasionally travel within CONUS and OCONUS

Required Skills:

  • Ability to assess information of network threats such as scans, computer viruses or complex attacks
  • Perform information technology security research to remain current on emerging technology trends and develop exploits for disclosed and undisclosed vulnerabilities
  • Contributes to developing and implementing tools for penetration testing and early warning of weaknesses or possible incidents building on methodologies as promulgated by NIST, ISO, etc. to ensure useful, measurable, and repeatable methods applied to quantifying risk
  • Selects, installs, and configures security testing platforms and tools or develop tools and procedures for penetration tests
  • Performs penetration testing using standard penetration tools (Metasploit, Nmap, Nessus, Burp Suite, etc.)
  • Experience with SIEMS (such as NetWitness, Splunk, SumoLogic, QRadar)
  • Experience with packet analysis to include: HTTP Headers & Status codes, SMTP Traffic & Status codes, FTP Traffic & Status Codes
  • Knowledge of and practical experience of integration of COTS or open source tools
  • Excellent written and verbal communication skills
  • Proficiency with MS Office Applications
  • Must be able to work collaboratively across teams and physical locations
  • Working knowledge of WAN/LAN concepts and technologies
  • Knowledge of the following:
    • Operating System Hardening
    • Vulnerability Assessment testing
    • Identification and Authentication schemes
    • Public Key Infrastructure and Identity Management
    • WAN/LAN, firewalls, routers and security appliances
    • Cross Domain Solutions
    • Reverse Engineering
    • Security engineering
    • Cloud and hybrid Cloud environment
    • Mobile technologies

Required Certifications: Possess one or more of the following:

  • LPT Master, CEPT, CMWAPT, CRTOP, GXPN
  • Preferably OSCP/E

Desired Certifications: Possess one or more of the following:

  • GIAC Security Expert (GSE)
  • Global Industrial Cyber Security Professional (GICSP)
  • Certified SCADA Security Architect (CSSA)

Required Education and Experience:

Bachelor of Science Degree in Cyber Security, Computer Science, Computer Engineering or related field. Must have a minimum of 5+ years’ experience and a Bachelor's degree.

Clearance requirement: Active TS and the ability to attain TS/SCI clearance




Due to a customer requirement, as a condition of employment for this position, the successful candidate will be required to obtain and provide proof of COVID-19 vaccination prior to commencing employment or submit to regular COVID testing.

178791
Raytheon Technologies is An Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age or any other federally protected class.
Apply Now

Your Saved Jobs

You have not saved any jobs.

Recently Viewed Jobs

You have no recently viewed jobs.

Sign Up for Job Alerts

Get the latest career opportunities as soon as they become available.

Interested InSearch for a category and select one from the list of suggestions. Search for a location and select one from the list of suggestions. Finally, click “Add” to create your job alert.

  • Computer Engineering, Greenbelt, Maryland, United StatesRemove
  • Computer Science, Greenbelt, Maryland, United StatesRemove
  • Cyber, Greenbelt, Maryland, United StatesRemove
  • Engineering Technology, Greenbelt, Maryland, United StatesRemove
  • Security, Greenbelt, Maryland, United StatesRemove
  • Engineering, Greenbelt, Maryland, United StatesRemove
  • All, Greenbelt, Maryland, United StatesRemove
  • SAS Information Security Analyst, Greenbelt, Maryland, United StatesRemove