cFocus Softwareorporated logo

NIH - Penetration Tester

cFocus Softwareorporated
4 days ago
Full-time
Remote
United States
Penetration Tester
cFocus Software seeks a Penetration Tester to join our program supporting the National Institutes of Health (NIH). This position is fully remote. This position requires a Public Trust or the ability to obtain a public trust clearance.
Qualifications:
  • Public Trust Clearance
  • B.S. Computer Science, Information Technology, or a related field
  • 5+ years of experience conducting penetration testing or offensive cybersecurity operations.
  • Experience performing enterprise penetration testing.
  • Experience with network and application security assessments.
  • Experience documenting technical security findings.
  • Ability to obtain and maintain NIH suitability/background investigation.
  • Active OSCP, OSEP, GPEN, GXPN, CEH, PenTest+, or CISSP

Duties:
  • Conduct enterprise penetration testing activities including:
    • Perform internal and external network penetration testing.
    • Conduct web application penetration testing.
    • Execute infrastructure security testing.
    • Perform cloud penetration testing.
    • Conduct operating system security assessments.
    • Perform wireless security testing.
    • Assess Active Directory security.
    • Conduct application security testing.
    • Simulate real-world cyberattacks using industry-standard offensive security methodologies.
    • Perform controlled exploitation activities to identify security weaknesses.
    • Validate effectiveness of implemented security controls.
    • Identify attack paths and privilege escalation opportunities.
    • Document technical findings and supporting evidence.
  • Prepare comprehensive penetration testing plans
  • Provide Red Team Support