Booz Allen Hamilton
Penetration Tester, Mid
Booz Allen Hamilton, Huntsville, Alabama, United States, 35824
Your growth matters to us - explore our career development opportunities.A PLACE WHERE YOU BELONG
Bring your whole self to work in our culture of respect and inclusivity.SUPPORT YOUR WELLBEING
Learn how we’ll support you as you pursue a balanced, fulfilling life.YOUR CANDIDATE JOURNEY
Discover what to expect during your journey as a candidate with us.PENETRATION TESTER, MID
Key Role:Support remote and onsite testing efforts of a client's network to expose weaknesses in security. Maintain baseline system security according to organizational policies. Monitor and evaluate the effectiveness of the enterprise's cybersecurity safeguards to ensure that they provide the intended level of protection. Work with stakeholders to resolve computer security incidents and vulnerability compliance. Identify, assess, and recommend cybersecurity or cybersecurity-enabled products for use within a system, and ensure that recommended products follow the organization's evaluation and validation requirements.Basic Qualifications:2+ years of experience conducting penetration testing of client network environmentsExperience identifying and exploiting vulnerable services using custom or publicly available exploitsExperience using a basic scripting language, including Python, Ruby, Perl, or BashKnowledge of TCP/IP networkingKnowledge of Linux and Windows system administrationKnowledge of Microsoft Active Directory fundamentals and exploitationKnowledge of fundamental computer security concepts and terminology, including host and network-based firewalls, AV and EDR software, and common web application vulnerability typesAbility to communicate technical concepts to non-technical audiences in written reports and presentations clearlyBachelor's degree and 1+ years of experience with cybersecurity, or 5+ years of experience with cybersecurity in lieu of a degreeSecret clearanceAdditional Qualifications:Knowledge of common AV/EDR bypass techniquesKnowledge of basic red team tactics, techniques, and procedures (TTPs) to conduct adversarial emulation activities while avoiding detection from security monitoring and detection tools and SOC analystsOSCP or GPEN CertificationClearance:Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.CompensationAt Booz Allen, we celebrate your contributions, provide you with opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care. Our recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values.Salary at Booz Allen is determined by various factors, including but not limited to location, the individual’s particular combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability and organizational requirements. The projected compensation range for this position is $60,300.00 to $137,000.00 (annualized USD). The estimate displayed represents the typical salary range for this position and is just one component of Booz Allen’s total compensation package for employees.Identity StatementAs part of the application process, you are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud.Work ModelOur people-first culture prioritizes the benefits of flexibility and collaboration, whether that happens in person or remotely.If this position is listed as remote or hybrid, you’ll periodically work from a Booz Allen or client site facility.If this position is listed as onsite, you’ll work with colleagues and clients in person, as needed for the specific role.EEO CommitmentWe’re an equal employment opportunity/affirmative action employer that empowers our people to fearlessly drive change – no matter their race, color, ethnicity, religion, sex (including pregnancy, childbirth, lactation, or related medical conditions), national origin, ancestry, age, marital status, sexual orientation, gender identity and expression, disability, veteran status, military or uniformed service member status, genetic information, or any other status protected by applicable federal, state, local, or international law.
#J-18808-Ljbffr
Bring your whole self to work in our culture of respect and inclusivity.SUPPORT YOUR WELLBEING
Learn how we’ll support you as you pursue a balanced, fulfilling life.YOUR CANDIDATE JOURNEY
Discover what to expect during your journey as a candidate with us.PENETRATION TESTER, MID
Key Role:Support remote and onsite testing efforts of a client's network to expose weaknesses in security. Maintain baseline system security according to organizational policies. Monitor and evaluate the effectiveness of the enterprise's cybersecurity safeguards to ensure that they provide the intended level of protection. Work with stakeholders to resolve computer security incidents and vulnerability compliance. Identify, assess, and recommend cybersecurity or cybersecurity-enabled products for use within a system, and ensure that recommended products follow the organization's evaluation and validation requirements.Basic Qualifications:2+ years of experience conducting penetration testing of client network environmentsExperience identifying and exploiting vulnerable services using custom or publicly available exploitsExperience using a basic scripting language, including Python, Ruby, Perl, or BashKnowledge of TCP/IP networkingKnowledge of Linux and Windows system administrationKnowledge of Microsoft Active Directory fundamentals and exploitationKnowledge of fundamental computer security concepts and terminology, including host and network-based firewalls, AV and EDR software, and common web application vulnerability typesAbility to communicate technical concepts to non-technical audiences in written reports and presentations clearlyBachelor's degree and 1+ years of experience with cybersecurity, or 5+ years of experience with cybersecurity in lieu of a degreeSecret clearanceAdditional Qualifications:Knowledge of common AV/EDR bypass techniquesKnowledge of basic red team tactics, techniques, and procedures (TTPs) to conduct adversarial emulation activities while avoiding detection from security monitoring and detection tools and SOC analystsOSCP or GPEN CertificationClearance:Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.CompensationAt Booz Allen, we celebrate your contributions, provide you with opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care. Our recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values.Salary at Booz Allen is determined by various factors, including but not limited to location, the individual’s particular combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability and organizational requirements. The projected compensation range for this position is $60,300.00 to $137,000.00 (annualized USD). The estimate displayed represents the typical salary range for this position and is just one component of Booz Allen’s total compensation package for employees.Identity StatementAs part of the application process, you are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud.Work ModelOur people-first culture prioritizes the benefits of flexibility and collaboration, whether that happens in person or remotely.If this position is listed as remote or hybrid, you’ll periodically work from a Booz Allen or client site facility.If this position is listed as onsite, you’ll work with colleagues and clients in person, as needed for the specific role.EEO CommitmentWe’re an equal employment opportunity/affirmative action employer that empowers our people to fearlessly drive change – no matter their race, color, ethnicity, religion, sex (including pregnancy, childbirth, lactation, or related medical conditions), national origin, ancestry, age, marital status, sexual orientation, gender identity and expression, disability, veteran status, military or uniformed service member status, genetic information, or any other status protected by applicable federal, state, local, or international law.
#J-18808-Ljbffr