Alpha Omega Integration, LLC
Penetration Tester
Alpha Omega Integration, LLC, Vienna, Virginia, 22184
Description Job Title: Penetration Tester Clearance Required: DHS Public Trust Work Location: Remote; Washington, DC metro area preferred Alpha Omega is seeking a qualified Penetration Tester. As a Penetration Tester, you will join our growing cybersecurity team supporting our federal customer and advancing best practices to navigate AI cybersecurity risks. As a technical subject matter expert, you will conduct a variety of penetration testing exercises to systems to determine cyber weaknesses. You will utilize a risk-based approach to evaluate the findings and will be responsible for writing up detailed summaries of the vulnerability and suggested remediations. You will provide technical assessments of all layers of the enterprise stack as required by the specific application/system being tested; the candidate will have a breadth of experience in a variety of technologies. The candidate will not necessarily have deep experience in all domain areas but should have a good understanding of how the various layers of an enterprise application stack interact with one another. You will work directly with system admin teams as well ISSOs to discuss findings and verify that their remediation efforts are adequate through following up penetration testing. Key Responsibilities: Conduct penetration testing using approved tools and best practices Test AI models and applications, including GenAI models and applications Collaborate with Policy team members to develop technical standards for testing AI models and applications Create detailed reports including the findings and suggested remediations Perform security research to remain current on emerging technology trends Conduct risk-based assessments based on penetration testing findings and brief the same to senior leadership Ability to review and suggest changes to Rules of Engagement to ensure outcome provides desired results Work with system teams and ISSOs on understanding of findings and remediation guidance Manage and support development of pen testing SOPs Design scenarios for testing based on TTPs used by threat actors Required Qualifications: Education: No degree: 9 years relevant exp Bachelors: 5 years relevant exp Masters: 3 years relevant exp Experience/Skills: Experience with packet analysis Familiarity with standard web security vulnerabilities (e.g., SQL injection, XSS, CSRF) Skills in network-level security testing to assess Experience with hardening and remediation Experience conducting code reviews to identify risks & weaknesses Team-player that can effectively collaborate and communicate with cross-functional stakeholders Excellent written and verbal communication skills Experience documenting assessment findings and explaining risks to system stakeholders, including senior leaders General understanding of cloud environments and API security Preferred Qualifications: 3 years using Standard penetration testing suites (Metasploit, nmap, burp suite, KaliLinux, etc.) Familiarity with common types of AI models (e.g., supervised, unsupervised, reinforcement learning) and their specific vulnerabilities. Working proficiency in Python an asset. Familiarity of AI-related cybersecurity threats (Data poisoning, model tampering, extraction, etc.) and methods to test for model vulnerabilities Perform work after-hours as testing requires Familiarity with MITRE ATT&CK framework Working knowledge of various enterprise technology stacks used to build applications in the cloud Working knowledge and experience in AWS and Azure GovClouds Certifications: 1 relevant certification required (Penetration Tester Cert strongly preferred) Salary and Benefit Information: The likely salary range for this position is $81,000 - $140,000. This is not, however, a guarantee of compensation or salary. There are multiple factors that are considered in determining final pay for a position, including, but not limited to, relevant work experience, skills, certifications and competencies that align to the specified role, geographic location, education and certifications as well as contract provisions regarding labor categories that are specific to the position and could fall outside of this range. Joining the Alpha Omega team entitles you to participate in all retirement benefits, plans of deferred compensation, health and insurance benefits, and other such benefits as set forth in the company's policy and benefits manuals. See below, to name a few: PTO including paid parental, military, and bereavement leave Eleven (11) paid Federal holidays, five of which are floating holidays (as designated by the company's holiday schedule each year) Health and Dental Insurance (including 100% employer paid premiums for employee coverage under the HDHP health plan) Life Insurance, STD/LTD term disability coverage, with employer paid premiums 401 (k) plan with a match that is 100% vested after you complete two years of service FSA/DFSA/HSA flexible benefit plans Annual Tuition & Professional Development Reimbursement benefit We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most. Culture and Values: Alpha Omega's Core Values are (H) harmony, (E) engagement, (A) accountability, (R) resourcefulness, and (T) tenacity - collectively they are an acrostic reminder of the values that guide the work we do. We have H.E.A.R.T. We foster a culture that recognizes and rewards hard work. Our H.E.A.R.T. program invites colleagues and managers from across the organization to recognize each other for living out our core values. Spotlighted employees enjoy a detailed nomination about their core-values-aligned actions which are then shared with their manager. Our Company: Alpha Omega is an award-winning Federal IT Solutions provider. Since our inception in 2016, we have grown our revenues to $140 million and our employee population to almost 500 people located across the U.S. At the heart of Alpha Omega's mission lies a comprehensive approach to addressing the most critical domains shaping our world today. Through strategic partnerships and cutting-edge technology, the company is committed to delivering mission-enabling solutions that transcend boundaries and propel progress in key areas. We deliver mission-focused solutions in our domain areas of national security, foreign affairs and climate science leveraging our expertise in cybersecurity, data and AI, and digital modernization. Our consistent growth has fostered a series of accolades including Inc. 5000 and WashingtonTechnology's Fast 50 awards for five consecutive years, Virginia Business Best Places to Work seven years in a row, and USA Today and Washington Post Top Workplaces. Alpha Omega places significant emphasis on bolstering national security efforts in collaboration with key government agencies such as the Department of Homeland Security (DHS). Through our National Security domain, we provide innovative solutions and strategic partnerships, the company is committed to safeguarding America's safety and prosperity. From implementing advanced cybersecurity protocols to strengthening critical infrastructure resilience, Alpha Omega's contributions are instrumental in defending the nation against evolving threats. Furthermore, our dedication extends to protecting the interests of our service members within the Coast Guard, recognizing their integral role in the broader national security framework. This comprehensive approach underscores Alpha Omega's unwavering commitment to ensuring the safety and security of the United States. Climate science is integral to our national security strategy, as it provides crucial insights into environmental threats that can destabilize regions, exacerbate conflicts, and compromise vital resources essential for the safety and stability of our nation. Moreover, Alpha Omega recognizes the urgency of addressing climate change and its far-reaching implications. Through initiatives like the integration of advanced climate modeling within National Oceanic and Atmospheric Administration (NOAA) and supporting agricultural production and conservation efforts within the United States Department of Agriculture (USDA), the company actively contributes to the fight against climate crisis. By leveraging technology to drive sustainability and resilience, Alpha Omega underscores its commitment to preserving our planet for future generations. In addition to its domestic endeavors, our Foreign Affairs domain is deeply engaged in navigating complex foreign affairs and promoting U.S. diplomacy on the global stage. Through collaboration with the U.S. Department of State and other international partners, the company advances national interests while fostering cooperation and mutual understanding. By leveraging technological innovation, Alpha Omega strengthens America's position as a global leader and promotes stability in an increasingly interconnected world. Application Deadline: January 13, 2025 Alpha Omega Integration, LLC (Alpha Omega) is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class. We are committed to the development of a creative, diverse, and inclusive work environment. Black, Indigenous, and People of Color (BIPOC), LGBTQIA, women, people over 40, and differently abled individuals are strongly encouraged to apply. LI-Remote LI-SR dice Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR 60-1.35(c)