Logo
VTG Defense

VTG Defense is hiring: Red Team Operator (RTO) Penetration Tester in Sully Squar

VTG Defense, Sully Square, VA, United States

Save Job

Overview

TUNUVA Technologies (a wholly owned subsidiary of VTG) is seeking a skilled Red Team Operator to conduct adversarial testing and technical evaluations of customer Information Systems (IS), including cloud-based environments. The role focuses on identifying vulnerabilities, simulating real-world attack scenarios, and delivering actionable remediation strategies to enhance system confidentiality, integrity, and availability.

What will you do?

Key Responsibilities

  • Execute adversarial engagements targeting customer systems, facilities, and cloud infrastructure
  • Perform red team penetration testing, including cloud exploitation scenarios
  • Develop and execute realistic threat scenarios across hybrid and cloud-native environments
  • Support IC community exercises and maintain lab environments
  • Review RMF/ICD 503 documentation and generate compliance reports
  • Research vulnerabilities, threat intelligence, and cloud-specific attack vectors
  • Communicate findings and recommendations to stakeholders
  • Participate in briefings, test coordination, and lessons learned sessions

Do you have what it takes?

Requirements

  • TS/SCI with Poly required
  • Level 1-4 roles available, based on experience and education:
    • Level 1: 0-3 years (Bachelor's or equivalent experience)
    • Level 2: 3+ years
    • Level 3: 5+ years
    • Level 4: 8+ years
  • Required Qualifications
    • Cybersecurity experience in red teaming, penetration testing, or threat hunting
    • Hands-on experience with cloud exploitation and testing (AWS, Azure, GCP)
    • Strong understanding of:
      • Network protocols and troubleshooting
      • Operating systems (Windows, Linux, etc.)
      • Exploits, vulnerabilities, and TTPs
      • Penetration testing methodologies (MITRE ATT&CK, OWASP)
    • Familiarity with tools and services used in offensive security
    • Ability to incorporate threat intelligence into attack scenarios
    • Experience testing within cloud environments or exploiting cloud technologies
    • Excellent communication and problem-solving skills
    • Willingness to obtain certifications (Security+, CEH, PenTest+, OSCP, GPEN)

    Desired Qualifications

    • Scripting and coding (Python, PHP, Ruby)
    • Virtualization and containerization (Docker, Kubernetes)
    • ICS/SCADA systems security
    • RMF/ICD 503 compliance
    • Experience with COTS/GOTS technologies
    • Technical project management
    • Cloud security certifications (e.g., AWS Certified Security - Specialty, Azure Security Engineer Associate)
#J-18808-Ljbffr