Enterprise Cybersecurity Penetration Tester
About The Position
Enterprise Cybersecurity Penetration Tester The Opportunity: Are you ready to make a meaningful impact at Booz Allen? As a pivotal member of our Enterprise Cybersecurity (ECS) Red Team, you will take on a specialized role as a penetration tester, working directly with new products in development to identify vulnerabilities and reinforce our security posture. This unique opportunity allows you to lead dynamic penetration testing and product assessments, uncovering weaknesses and strengthening the security foundations of our organization. You will thrive in a fast-paced environment where cutting-edge offensive security intersects with strategic advising which drives innovative analysis and actionable solutions for the Booz Enterprise. You’ll design and execute end-to-end red and purple team exercises, adhering to established rules of engagement, to reveal and address gaps in our security posture. Your expertise will be applied across cloud native and mobile platforms, ensuring our defenses are resilient and agile. You’ll translate complex security concepts to both technical and non-technical stakeholders, including senior executives, making your voice heard at every level. Join a passionate team of cybersecurity professionals at the forefront of research, fostering a culture of innovation, knowledge sharing, and continuous improvement. Embark on a career where your skills and curiosity will help shape the future of security at Booz Allen. Due to the nature of work performed within this facility, U.S. citizenship is required. Join us. The world can't wait.
Requirements
- 3+ years of experience conducting penetration tests and security assessments on new or evolving products
- Experience successfully launching secure products to market and driving adoption among record of target user groups
- Experience independently leading organized product security testing engagements while fostering strong team collaboration
- Experience with vulnerability enumeration and exploitation frameworks, including Burp Suite Pro, Metasploit, or Cobalt Strike
- Knowledge of front-end and back-end frameworks commonly used in modern web development
- Ability to write comprehensive product security assessment reports and communicating findings to clients and senior leadership
- Ability to mentor junior-level staff in the latest techniques for product penetration testing and security assessments
- Bachelor’s degree in information security, computer science, product, or application security
- U.S. citizenship is required
Nice To Haves
- Experience with testing cloud-hosted solutions
- Knowledge of Active Directory, Azure, and Amazon Web Services
- Knowledge of programming languages such as JavaScript, Python, and PHP
- Ability to operate in a fast-paced work environment, multi-task, and handle truncated delivery deadlines
- Possession of excellent oral and written communication skills
- Offensive Security Certified Professional (OSCP) Certification
Responsibilities
- Lead dynamic penetration testing and product assessments to uncover weaknesses.
- Strengthen the security foundations of the organization.
- Design and execute end-to-end red and purple team exercises.
- Apply expertise across cloud native and mobile platforms.
- Translate complex security concepts to technical and non-technical stakeholders.
- Mentor junior-level staff in the latest techniques for product penetration testing and security assessments
Benefits
- health
- life
- disability
- financial
- retirement benefits
- paid leave
- professional development
- tuition assistance
- work-life programs
- dependent care
- recognition awards program
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
