Logo
WarCollar Industries, LLC

Penetration Tester Job at WarCollar Industries, LLC in Sully Square

WarCollar Industries, LLC, Sully Square, VA, United States

Save Job

Join to apply for the Penetration Tester role at WarCollar Industries, LLC

1 month ago Be among the first 25 applicants

Join to apply for the Penetration Tester role at WarCollar Industries, LLC

Job Description

The Red Team conducts advanced adversary emulation operations to challenge assumptions and emulate offensive threat actors targeting or attacking the client. As a Red Team member, you will participate in the design and execution of campaign-based security operations for target networks, spanning a varying array of targets. Successful team members must be capable of evaluating environments, applications, systems or processes to discover weaknesses, and subsequently leverage those discoveries into actionable real-world attack strategies. To succeed in this role the candidate will possess breadth and depth of knowledge in security of operating systems, networking and protocols, firewalls, databases and middleware applications, forensics, scripting and programing. All red team members are expected to continuously improve their tradecraft through research, to add breadth and depth to their knowledge as part of the Red Team.

Job Description

The Red Team conducts advanced adversary emulation operations to challenge assumptions and emulate offensive threat actors targeting or attacking the client. As a Red Team member, you will participate in the design and execution of campaign-based security operations for target networks, spanning a varying array of targets. Successful team members must be capable of evaluating environments, applications, systems or processes to discover weaknesses, and subsequently leverage those discoveries into actionable real-world attack strategies. To succeed in this role the candidate will possess breadth and depth of knowledge in security of operating systems, networking and protocols, firewalls, databases and middleware applications, forensics, scripting and programing. All red team members are expected to continuously improve their tradecraft through research, to add breadth and depth to their knowledge as part of the Red Team.

,

Required Skills

  • TS//SCI with CI Polygraph
  • Bachelors' Degree or industry equivalent work experience in IT, Computer Engineering or a similar field
  • Relevant, recent and verifiable experience in information security and adversary simulation
  • Detailed knowledge of global cyber threats, threat actors, and the tactics, techniques and procedures used by cyber adversaries, specifically those targeting the financial services sector
  • 5+ years experience in two or more of the following areas:
  • Network penetration testing and manipulation of network infrastructure
  • Web application penetration testing assessments
  • Email, phone, or physical social-engineering assessments
  • Developing, extending, or modifying exploits, shell code or exploit tools
  • Experience with Red, Blue, or Purple teaming exercises
  • Experience in large scale information technology implementations and operations preferred
  • Industry certifications such as OSCP, OSCE, OSWE, GPEN, GCIH, GWAPT, or GXPN

,

Desired Skills

  • Engagement in all phases of Red Team security operations
  • Work within the Red Team to perform physical exploitation, network exploitation and social engineering assessments against authorized targets
  • Perform network reconnaissance and open source intelligence gathering
  • Configure and safely utilize attack tools, tactics, and procedures against authorized client targets
  • Develop scripts, tools, or methodologies to enhance the client's red teaming capabilities
  • Help to execute the Red Team strategy to further enhance the client's security posture
  • Effectively communicate findings and strategy to client stakeholders including technical staff, executive leadership, and legal counsel
  • Ability to deliver clear, concise and professional verbal and written reports and presentations to both technical and executive audiences
  • Provide risk-appropriate and pragmatic recommendations to correct identified flaws, vulnerabilities and misconfigurations
  • Provide guidance to advance the defensive capabilities of the client's network operations and defense team and its subsequent ability to defend client networks
  • Understand business processes, internal control risk management, IT controls and related standards
  • Identify and evaluate complex business and technology risks, internal controls which mitigate risks, and related opportunities for internal control improvement
  • Understand clients' business environment and basic risk management approaches
  • Build and nurture positive working relationships with internal clients with the intention to exceed their expectations

,

About WarCollar Industries

COVID-19 Vaccination Policy:

Prospective and/or new employees will be required to adhere to the customer’s vaccination policy.

About Us

WarCollar Industries, LLC is a veteran-owned small business. We maintain a team of cybersecurity experts committed to protecting complicated data and distribution systems and providing decision makers with the most accurate assessment of residual risk possible. We work with our clients to solve the toughest challenges in the ever-evolving digital landscape. Services include network defense, computer network attack, secure network design, penetration testing and vulnerability assessment. WarCollar enables its clients to find, fix, stop, and ultimately solve cybersecurity problems across their entire enterprise.

WarCollar offers generous benefits including: Medical insurance premium coverage; PTO based on billable hours; federal holidays plus your birthday; matching 401k, education reimbursement plus paid training days; performance bonuses; referral bonuses; government shutdown protection; monthly team building events plus two major social events annually.

WarCollar Industries, LLC is an equal opportunity employer. WarCollar does not discriminate in employment based upon race, color, religion, sex (including pregnancy and gender identity), national origin, political affiliation, sexual orientation, marital status, disability, genetic information, age, membership in an employee organization, retaliation, parental status, status as a protected military veteran, or other non-merit factor.

Seniority level

  • Seniority level

    Mid-Senior level

Employment type

  • Employment type

    Full-time

Job function

  • Job function

    Information Technology

  • Industries

    Computer and Network Security

Referrals increase your chances of interviewing at WarCollar Industries, LLC by 2x

Sign in to set job alerts for “Penetration Tester” roles.

Cybersecurity Engineer/Analyst (Junior Level | 1-2 years exp.)

Leesburg, VA $105,000.00-$140,000.00 1 week ago

Cybersecurity Engineer/Analyst (Junior Level | 1-2 years exp.)- Fairfax County

Washington, DC $110,000.00-$125,000.00 1 week ago

Mid-Level Cybersecurity Analyst/Engineer

Washington DC-Baltimore Area $60.00-$63.00 6 days ago

Washington DC-Baltimore Area $145,000.00-$180,000.00 1 day ago

Washington DC-Baltimore Area $130,000.00-$175,000.00 1 day ago

Cybersecurity Engineer/Analyst (Intermediate-Level | 3-4 years exp.)

2027452 Cyber Security Engineer $215,000.00

Bethesda, MD $10,000.00-$215,000.00 10 hours ago

Security (SOC) Analyst, Secret Clearance Required

Herndon, VA $70,000.00-$76,000.00 1 month ago

HVA Assessment Operator / Penetration Tester (AES Certified)

Information Security Analyst (SOC 2 Compliance)

Fairfax, VA $92,400.00-$115,000.00 1 month ago

Washington, DC $130,000.00-$180,000.00 1 week ago

Arlington, VA $66,000.00-$106,000.00 1 day ago

Cybersecurity Engineer (SOAR) [JOB ID 20250725]

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr