Penetration Tester, Mid (TS/SCI Clearance)
Role details
Job location
Tech stack
Job description
Praescient Analytics is seeking a highly motivated Penetration Tester to join our cybersecurity team in Arlington, VA, supporting the Department of War (DoW) Chief Digital and Artificial Intelligence Office's (CDAO) War Data Platform (WDP)-formerly known as Advana., * Comprehensive Security Testing: Perform various types of penetration tests, including network, web application, and social engineering assessments. Use a combination of advanced manual techniques and automated tools to discover and safely exploit vulnerabilities.
Risk Assessment & Reporting: Evaluate overall system risk based on testing findings; develop detailed, actionable technical reports mapping out exploitation paths and their potential mission impact.
Remediation & Collaboration: Partner with network engineering, software development, and AI engineering teams to build, track, and execute robust remediation plans; support incident response activities with deep technical insights when necessary.
Methodology Evolution: Participate in the continuous development, refinement, and maintenance of internal penetration testing methodologies, custom testing tools, and baseline vulnerability assessment standards.
Threat Intelligence Integration: Support the organization's broader threat intelligence ecosystem by actively sharing insights, novel attack chains, and defensive gaps discovered during offensive assessments., * Real opportunity for career growth in an environment where your achievements will be celebrated
- Constant collaboration with numerous teams to ensure client success
- A team that respects and embraces your ideas and expertise
- Coworkers that are motivated by pursuing excellence, rather than the prospect of personal gain
- A workplace dedicated to supporting and bettering public safety and government agencies
Requirements
Experience: Minimum of 3 years of hands-on experience in offensive security, ethical hacking, vulnerability research, or penetration testing.
Technical Depth: Deep familiarity with web application security frameworks (OWASP Top 10), cloud infrastructure security, network routing/protocols, and common scripting languages (e.g., Python, PowerShell, Bash) for tool customization.
Required Certifications (Must possess at least ONE of the following):
- CompTIA Cloud+
- GIAC Certified Enterprise Defender (GCED)
- GIAC Certified Incident Handler (GCIH)
- GIAC Industrial Cyber Security Professional (GICSP)
- GIAC Security Essentials (GSEC)
- CompTIA PenTest+
- CompTIA Security+
Preferred Certifications:
- Certified Computer Examiner (CCE) or CyberSec First Responder (CFR)
- Certified Information Systems Auditor (CISA) or Certified Information Security Manager (CISM)
- Certified Information Systems Security Officer (CISSO)
- Certified Penetration Testing Engineer (CPTE)
- CompTIA CyberSecurity Analyst (CySA+)
- Federal IT Security Professional-Auditor (FITSP-A)
- GIAC Cloud Security Automation (GCSA)
- GIAC Penetration Tester (GPEN)
- GIAC Systems and Network Auditor (GSNA)
Benefits & conditions
Pulled from the full job description
- 401(k) matching
- Paid time off
- Paid holidays, The projected compensation range for this position is $90,000.00 to $130,000.00 (annualized USD)., * Very competitive salary based on qualifications and experience
- Comprehensive, Company paid healthcare for you (We pay your premiums and deductibles)
- 401(k) with company match
- Travel & performance incentives
- 3 weeks paid time off (plus Federal Holidays)
- $5K annual training allowance