Quality Assurance Specialist in a family - owned company producing technical components. Conducting quality inspections and coordinating quality management processes.
About the role
- Penetration Tester at AttainX performing AWS, Azure, and on-prem assessments for federal clients. Conducting exploitation, red teaming, and RMF-based security assessments.
Responsibilities
- Support Security Assessment and Authorization initiatives for a Government client.
- Protocol analysis, vulnerability discovery and exploitation, post exploitation impact analysis, and physical security.
- Perform manual and automated firmware analysis on target devices.
- Perform pen tests, fuzzing and custom exploit attacks against client systems.
- Review deployment architectures, topologies and conops for compliance with regulatory security mandates.
- Produce security reports suitable for submission to regulatory bodies.
- Conduct hands-on technical testing beyond automated tool validation, including full exploitation and leveraging of access within multiple environments.
- Conduct scenario-based security testing, or red teaming to identify gaps in detection and response capabilities.
- Conduct research and testing in support of client requirements.
- Design, implement, and integrate security solutions.
- Design, develop and support the company’s line of technology products.
- Analyze information security systems and applications and recommend/develop security measures.
- Rely on experience and judgment to plan and accomplish goals and perform complicated tasks.
Requirements
- A minimum of 5 years of proven penetration testing and ethical hacking experience.
- Hands-on experience in penetration testing across AWS, Azure, and On-Premise environments.
- At least 5 years of recent experience (within the last 6 years) in applying IT security concepts, methodologies, principles, procedures and using industry-standard IT security tools (e.g. Burp Suite, Metasploit, Wireshark).
- At least 5 years of recent experience (within the last 6 years) with enterprise architecture methodologies, concepts, procedures, principles, and tools.
- At least 5 years of recent experience (within the last 6 years) in contingency planning and backup and recovery best practices and application of NIST guidance in this area.
- At least 5 years of recent experience (within the last 6 years) in using technical testing tools (Tenable Security Center, ArcSight, IBM Big Fix, etc.).
- At least 5 years of recent experience (within the last 6 years) in conducting penetration testing or the ability to bring in a penetration tester when required.
- At least 5 years of performing assessments of Federal Information Systems using the Risk Management Framework.
- Possess at least one of the following professional Certifications required by DOC Enterprise Cybersecurity Policy (ECP) Annex C-1: Controls Assessor; Certified Information Systems Security Professional (CISSP); Certified Information Systems Auditor (CISA); GIAC Certified Incident Handler (GCIH); GIAC Systems and Network Auditor (GSNA); Electronic Commerce Council Certified Ethical Hacker (CEH); ISC2 Certified in Governance, Risk and Compliance (CGRC); Security Certified Network Professional (SCNP); Security Certified Network Architect (SCNA).
- Proficiency in verbal and written communications.
- Proficiency in interview skills.
- Proficiency in interpersonal skills.
- Proficiency in handling multiple tasks concurrently.
- Proficiency in project and time management.
- Ability to adjust to changing priorities.
- Ability to work in a cohesive team-oriented environment.
- Must be a US Citizen able to obtain and maintain a Moderate Public Trust.
- Reside within a commutable distance of Silver Spring, MD to work onsite as required.
Benefits
- Competitive compensation and benefits
- Paid vacation
- Medical
- Dental
- Vision
- Matching 401K plan
- Tuition/training reimbursement
- Long & Short-Term Disability
Job title
Job type
Experience level
Salary
Degree requirement
No Education Requirement
Tech skills
Location requirements
Quality Assurance Engineer improving software quality for Binance Wallet, collaborating with the product team and writing automated tests. Engaging in unique projects within the blockchain ecosystem.
Salesforce QA Engineer ensuring quality for critical integration in AI - powered customer communications platform. Designing automated frameworks to maintain Salesforce package robustness and enhance user experience.
Automation QA Engineer responsible for manual and automated testing in a consulting environment. Collaborating with teams to design and integrate test automation frameworks and strategies.
QA Lab Technician handling administrative and laboratory duties at Vibrant Ingredients. Responsible for sample preparation, testing, and reporting results in a laboratory setting.
Group Technology Manager overseeing Technology Delivery Quality Assurance & Risk Governance at Truist. Responsible for technology governance and compliance activities across the organization.
QA Tester enhancing quality in games at FuturLab, an award - winning game studio. Focus on executing tests, logging defects, and improving user experience.
Senior QA Engineer with strong test automation expertise for financial technology solutions. Join a company valuing innovative and collaborative problem - solving in QA methodologies.
Admissions Team Lead overseeing operations in Cedars - Sinai Patient Access Contact Center. Coaching team members and ensuring quality of patient registration and flow.
Analyst in Quality Assurance supporting Quality Assurance activities within Information Technology at Fulton Bank. Collaborating with stakeholders to review requirements and assess the quality of solutions.