Red Team Penetration Tester IV

The Naval Surface Warfare Center Dahlgren Division (NSWCDD) Dam Neck Activity’s (DNA) work is focused on providing engineering, acquisition, logistical, and Cybersecurity (CS) support to the Navy, Marine Corps, Special Warfare Coalition, and Joint Forces for programs including but not limited to Common Total Ship Computing Environment (TSCE), Atlanta Weapon System (AtWS), NAVSEA Red Team, National Cyber Range Complex (NCRC), surface and sub training systems, and Risk Management Framework (RMF) Support for Explosive Ordinance Disposal (EOD).

With the growing number of breaches of tactical and non-tactical computer systems, there is an increasing need to focus on the engineering aspects of CS. CS continues to be approached as compliance-based and this has not addressed significant shortcomings and vulnerabilities in the security of naval warfare systems and other service warfare systems. CS requirements must be included during the design, development, and sustainment phases of systems acquisition to ensure they are secure and Cyber-resilient throughout their Life-Cycle. Additionally, previously designed, and fielded systems must be evaluated on an engineering basis to determine potential changes to their design or supportability approaches.

Each have a requirement for CS engineering services that includes requirements for: analysis, secure design, Test and Evaluation (T&E), systems analysis and assessment, and Life-Cycle management.

FILLING THIS POSITION IS CONTINGENT UPON AWARD

• Bachelor of Science in Computer Science, or Bachelor of Science in Computer Engineering
• Must have one of the following:
  • Offensive Security Certified Professional (OSCP), or Offensive Security Certified Expert (OSCE), or Offensive Security Exploitation Expert (OSEE), or Offensive Security Wireless Professional (OSWP) certification
• Must currently possess a DoD Top Secret clearance
• Must currently possess Current CSSP Auditor certification
• Ten (10) years of full-time professional experience conducting penetration testing and/or offensive Cyber operations including demonstrated experience in each of the following areas:
  • Developing and utilizing penetration tools such as Metasploit, NMAP, Kali Linux, Cobalt Strike
  • Mimicking threat behavior
  • Utilizing various operating systems (Linux, Windows, MAC OS)
  • Utilizing Active Directory
  • Exploit development
  • Identifying gaps in tools and development techniques
  • Three scripting or programming languages (python, C++, Java, Rust, Assembly, etc.)

• Advanced Cyber Networking Certifications
• Cisco Certified Network Professional (CCNP) certification
• CCIE (Cisco Certified Internetwork Expert)
• CISSP (Certified Information Systems Security Professional)

SRC IS A CONTRACTOR FOR THE U.S. GOVERNMENT, THIS POSITION WILL REQUIRE U.S. CITIZENSHIP AS WELL AS, A U.S. GOVERNMENT SECURITY CLEARANCE AT THE TOP SECRET / SCI LEVEL

• 50-75% CONUS and OCONUS travel may be required

Scientific Research Corporation is an advanced information technology and engineering company that provides innovative products and services to government and private industry, as well as independent institutions. At the core of our capabilities is a seasoned team of highly skilled engineers and scientists with multidisciplinary backgrounds. This team is challenged daily to provide cutting edge technology solutions to our clients.

SRC offers a generous benefit package, including medical, dental, and vision plans, 401(k) with a company match, life insurance, vacation and sick paid time off accruals starting at 10 days of vacation and 5 days of sick leave annually, 11 paid holidays, tuition reimbursement, and a work environment that encourages excellence and more.

We strongly believe in the abundance of differences among individuals. We value different points of view and appreciate diverse perspectives. We truly believe this is what makes our organization inclusive and more responsive to the needs of our diverse customers.

Scientific Research Corporation is an equal opportunity employer that does not discriminate in employment.

All qualified applicants will receive consideration for employment without regard to their race, color, religion, sex, age, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other protected characteristic under federal, state or local law.