Parsons Corporation Senior Penetration Tester/Web Analyst- Remote in Adelphi, Maryland

Senior Penetration Tester/Web Analyst- Remote

Location:

Adelphi, Maryland, United States

Requisition #:

44366

Post Date:

Ready to use your expertise on a wide variety of difficult defense security assignments, applying analytical techniques as part of a team that tackles national defense challenges?Y ou will apply technical and functional expertise to conduct external assessments of public-facing information systems. Assessment methodologies include identification of infrastructure and technologies in use and ensuring the maximum protection of systems from an adversarial perspective - performing development based on the needs of customer technologies.

Parsons is now hiring fully qualified a Senior Penetration tester/ Web Analyst, experienced in utilizing analysis methods and practices with a passion for providing systems support on a variety of highly complex tasks. Parsons is a leader in the world of defense and cyber security. Working for Parsons will put your industry expertise to work and continue to propel your career forward as a Senior Penetration Tester/Web Analyst.

  • Responsibilities include but are not limited to:

  • Assist customers with meeting compliance to Department of Defense (DoD) requirements by emulating adversarial activity on public-facing services.

  • Maintain in-depth technical knowledge of adversarial activity in order to replicate similar tactics, techniques, and procedures (TTPs) during assessments.

  • Assess subscribers’ security posture through the use of automated tools and manual techniques to identify and verify security vulnerabilities.

  • Use creative approaches to identify vulnerabilities that are commonly missed in security assessments, and automated tools.

  • Trigger vulnerabilities and identify specific, meaningful risks to subscribers based on business and mission impact.

  • Provide detail-oriented technical assistance with remediation and mitigation efforts, often in the form of verbal and/or written communication.

  • Create comprehensive assessment reports that clearly identify root cause and remediation strategies.

  • Interface with client personnel to gather information, clarify scope and investigate security controls.

  • Collaborate with other team members and counterpart CND organizations to facilitate information sharing and provide direct support to the Team Lead, as necessary.

Qualifications

·Able to conduct Web Application Penetration Tests using Automated and Manual Methods.Able to work independently and in team settings.

·Strong report writing and communication skills to both Team Lead and customers supported.

·Strong familiarity with the following: OWASP Web App Top 10, PTES and NSA Vulnerability and Penetration Testing Standards, NIST 800-53.

·Prior use of various web application assessment tools and procedures, including Burp Suite Professional, Nikto, WhatWeb, DirBuster, SQLMap, etc.

·Deep understanding of common penetration/vulnerability assessment tools such as nmap, Tcpdump, Nessus, ACAS, Kali Linux, Metasploit, Acunetix, HP WebInspect, Burpsuite Professional, Arachni, w3af, etc.

·Strong Understanding of web application programming languages (HTML, JavaScript, PHP, etc.)

·Ability to create custom tools and scripts for job functions using scripting languages (Windows/*nix), Bash, Python, Perl or Ruby, etc.

·Fundamentals of network routing switching, vulnerability management, assessing network device configurations, and operating systems (Windows/*nix).

·Experience with evaluating the security posture common enterprise web application Content Management Systems (CMS’s) such as ColdFusion, WordPress, Joomla, Drupal, SharePoint, etc.

·Security+, C|EH, OSCP certifications preferred initially, required within six (6) months of hire.

  • Applicants selected for employment will be subject to a Federal background investigation and must meet additional eligibility requirements for access to classified information or materials.

Ready for action? We’re looking for the kind of people who see this opportunity and don’t hesitate to act. Parsons is a leader in the world of technical services. We hire people with a broad set of technical skills who have proven experience tackling some of the greatest challenges. Take your next step and apply today.

Parsons Referral Plan

Maybe this opportunity isn’t the right fit for you, but you know someone who is? Why not join our Parsons external referral program? When you refer other top professionals and they are hired, you are rewarded with an incredible financial incentive. Help us find top talent!

Parsons is a technology-driven engineering services firm with more than 70 years of experience in the engineering, construction, technical, and professional services industries. The corporation is a leader in many diversified markets with a focus on infrastructure, defense, and construction. Parsons delivers design/design-build, program/construction management, systems design/engineering, cyber/converged security, and other professional services packaged in innovative alternative delivery methods to federal, regional, and local government agencies, as well as to private industrial customers worldwide.

All across the world, at every time of day, Parsons is keeping people moving toward a brighter, safer world. For more about Parsons, please visit.

My Profile

Create and manage profiles for future opportunities.

My Submissions

Track your opportunities.

Similar Listings

Adelphi, Maryland, United States

Cybersecurity

Requisition #:45745

Adelphi, Maryland, United States

Cybersecurity

Requisition #:44370

Adelphi, Maryland, United States

Cybersecurity

Requisition #:44721

Parsons Careers. All rights reserved.

Sign up for email alerts and be the first to know of our new opportunities.

Get Social with Us!