JOB SEARCH

SEARCH
apply

Cyber Penetration Tester-20002289

Location: International Posting
US Citizenship Required for this Position: Yes
Relocation Assistance: Yes
Clearance Type: SCI
Number of Openings : 2
Shift : 1st Shift
Description

Are you interested in expanding your career through experience and exposure, all while supporting a mission that seeks to ensure the security of our nation and its allies If so, then Northrop Grumman is the place for you. As a leading global security company, we provide innovative systems, products and solutions to our customers worldwide. We are comprised of diverse professionals that bring different perspectives and ideas, understanding that the more experiences we bring to our work the more innovative we can be. As we continue to build our workforce we look for people that exemplify our core values, leadership characteristics, and approach to innovation.

 

Northrop Grumman is seeking a motivated Cyber Penetration Tester to join our team in support of the U.S. Army Regional Cyber Center - Europe (RCC-E) services contract in Wiesbaden, Germany.

 

Job Duties:

  • Work as a member of the Cyber Defense Assessment Program team to increase the security posture of customer networks

  • Utilize offensive toolsets such as Metaspolit and Kali Linux to safely analyze and penetration test production networks and systems, documenting steps and procedures to produce usable vulnerability assessments for the customer

  • Identify and investigate vulnerabilities, asses exploit potential, and document findings and remedies for presentation to facilitate mitigations on customer systems

  • Perform planning, execution, and documentation of penetration testing missions in accordance with Red Team methodologies

  • Perform web application testing using tools such as Burp Suite, Zap Proxy, Skipfish and Nikto, and open source toolsets

  • Travel to customer sites to perform network security evaluations, penetration tests, and brief customers on findings

  • Perform daily cyber threat research and present findings to the organization to maintain knowledge of current adversary tactics, techniques and procedures and how to apply them. Brief staff and leadership on these findings

  • Perform open-source intelligence gathering to prepare for missions

  • Draft reports of vulnerabilities to increase customer situational awareness and improve the customers cyber security posture

  • Must have a solid understanding of networking protocols, their uses, and their potential misuses

  • Programming experience in one or more languages is desired

  • Experience with one or more scripting languages such as PowerShell, Bash, Python or Perl is desired

  • Assist all sections of the Defensive Cyber Operations team as required in performing Analysis, System Administration, and other duties as assigned

  • Ability to work independently as well as part of a team

  • Strong written and verbal communication skills required

  • What You'll Get To Do:

    • Conduct network or software vulnerability assessments and penetration testing utilizing reverse engineering techniques

    • Perform vulnerability analysis and exploitation of applications, operating systems or networks. Identify intrusion or incident path and method

    • Isolate, block or remove threat access

    • Evaluate system security configurations. Evaluate findings and performs root cause analysis

    • Perform analysis of complex software systems to determine both functionality and intent of software systems

    • Resolve highly complex malware and intrusion issues

    • Contribute to the design, development and implementation of countermeasures, system integration, and tools specific to Cyber and Information Operations

    • Prepare and present technical reports and briefings

    • Perform documentation and vetting of identified vulnerabilities for operational use

Qualifications

Basic Qualifications:  

  • Education: Bachelor of Science/Arts Degree in Engineering or Computer Science or Science or Business Administration or Mathematics plus 3 years of specialized experience, or an Associate's degree plus 7 years of specialized experience, or a major certification plus 7 years of specialized experience, or 11 years of specialized experience.
  • Must possess an in-depth understanding of penetration testing methodology, including recon, exploit, persistence, etc. (to include physical penetration testing).
  • Must be fluent in all aspects of government and corporate communications media to include all MS Office products and MS Project
  • Must possess the following Specialized Certifications:
    • DoD 8570 IAT II (SSCP, CCNA-Security, GSEC, Security+ CE)
    • DoD 8570 CSSP Auditor (CEH, CySA+, CISA, GSNA)
  • Ability to obtain within 6-months of hire a current computing environment certification such as GPEN, MCSA, RHCSA, CCNA, etc. 
  • An active TS/SCI Clearance. US citizenship required.
     
    Preferred Qualifications:
  • Offensive Security OSCP
  • Army Certified Penetration Tester (or Instructor)
  • DoD 8570 IAT III (CISSP, CASP, CISA, GCED, GCIH)
  • Familiarity with AR 25-50
  • Fluency in one or more programming and/or scripting language (e.g. Python, C#)
  • Must have a demonstrated ability to produce written deliverables and brief senior leadership
  • Must be a self-starter with excellent judgment, capable of independent decision making

 

Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO/AA and Pay Transparency statement, please visit www.northropgrumman.com/EEO. U.S. Citizenship is required for most positions.

 

 

 

 

 

 

Job ID: 20002289

What's great about
Northrop Grumman

  1. Be part of a culture that thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work..
  2. Use your skills to build and deliver innovative tech solutions that protect the world and shape a better future.
  3. Enjoy benefits like flexible work schedules, education assistance and paid time off.
SCI Required
Yes, 10 % of the Time
No - Teleworking not available for this position