Job Application for Penetration Tester at Dark Wolf Solutions

New

Dark Wolf is actively seeking an experienced Penetration Tester to join our innovative team. This individual will play a critical role in assessing and enhancing the security of various products, including hardware, software, and embedded systems. This role demands a deep understanding of penetration testing methodologies and advanced exploit development, focusing on identifying and mitigating vulnerabilities across a wide range of technologies. As a Junior Product and Hardware Security Penetration Tester, you will have the chance to work on cutting-edge technologies and contribute to the enhancement of security across a wide range of products. If you possess a strong background in penetration testing and a passion for cybersecurity, we encourage you to apply for this pivotal role. This position is set to be supported in a hybrid work environment out of the DC Metro area. Key responsibilities include, but are not limited to:

Conducting comprehensive penetration testing on hardware, software, and network components.
Performing advanced vulnerability scanning and assessments on all components.
Performing a Cybersecurity evaluation of the product under test to identify vulnerabilities that would negatively impact the Confidentiality, Integrity, or Availability of system data or functionality.
Analyzing software, firmware, hardware, and/or RF components within the system.
Opining on the impact and level of effort required to exploit the identified vulnerabilities as well as providing information on a high-level remediation strategy.
Developing and executing exploits and proof-of-concept (PoC) attacks to demonstrate the impact of identified vulnerabilities.
Analyzing and reverse engineering firmware and embedded systems to identify security weaknesses.
Testing and assessing the security of secure boot processes and Trusted Execution Environments (TEE).
Conducting web application security assessments, focusing on OWASP Top Ten vulnerabilities and API security testing.
Performing manual verification of vulnerabilities, assessing their risk and exploitability.
Engaging in wireless and RF security testing, including penetration testing on Wi-Fi, Bluetooth, and Zigbee networks.
Utilizing Software Defined Radio (SDR) for protocol reverse engineering and testing.
Reporting detailed findings, documenting case details, and providing actionable recommendations for remediation to enhance product security based on system analysis.
Planning and executing full-scale, cross-domain vulnerability assessments, network penetration testing, and phishing/social engineering campaigns.

Required Qualifications:

Bachelor’s degree in Cybersecurity, Information Technology, Computer Engineering, or a related field
Minimum of 2+ years’ experience in three or more specific areas to include: intelligence analysis, network engineering, networking security, penetration testing, red team operations, hardware engineering, software engineering, exploit development, reverse engineering, vulnerability assessment, physical security assessments, or social engineering
Proficiency with cloud technology and deployments across Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform (GCP)
Proficiency in the testing and assessment of mobile operating systems, embedded systems, and/or IoT devices
Experience in drafting reports, documenting case details, and summarizing findings and recommendations based on system analysis
Experience performing advanced vulnerability scanning and assessments on all components
Experience conducting web application security assessments, focusing on OWASP Top Ten vulnerabilities and API security testing
Demonstrated strong written and verbal communication skills
Strong understanding of NIST 800-53 frameworks
US Citizenship and an active security clearance at a minimum of the Secret Level

Desired Qualifications:

Familiarity with NIST 800-171 Revision 2
Proven ability to develop and execute complex exploits and PoC attacks
Strong analytical skills and experience in firmware, binary exploitation, and embedded systems testing
Advanced knowledge of Software Defined Radio (SDR) and protocol reverse engineering
Active professional certifications such as CEH, OSCP, PNPT, GPEN, or similar security/pen testing certifications

The salary range for this position is $130,000.00 - $145,000.00 commensurate on experience and technical skillset.

We are open to considering a variety of levels of experience for these projects and potential for 1099 hourly opportunity.

We are proud to be an EEO/AA Employer Minorities/Women/Veterans/Disabled and other protected categories.

In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification from upon hire.

Create a Job Alert

Interested in building your career at Dark Wolf Solutions? Get future opportunities sent straight to your email.

First Name

Last Name

Country

Phone

Location (City)

Resume/CV*

Accepted file types: pdf, doc, docx, txt, rtf

School

Select...

Degree

Select...

Discipline

Select...

Start date month

Select...

Start date year

End date month

Select...

End date year

LinkedIn Profile

Website

Are you legally authorized to work in the United States without sponsorship?

Select...

Do you currently hold an active security clearance?

Select...

What is the highest level of security clearance you currently hold?

Select...

Where did you hear about us?

Voluntary Self-Identification: For government reporting purposes, we ask candidates to respond to the below self-identification survey. Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiring process or thereafter. Any information that you do provide will be recorded and maintained in a confidential file. As set forth in Dark Wolf Solutions’s Equal Employment Opportunity policy, we do not discriminate on the basis of any protected group status under any applicable law. Gender:

Select...

Voluntary Self-Identification For government reporting purposes, we ask candidates to respond to the below self-identification survey. Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiring process or thereafter. Any information that you do provide will be recorded and maintained in a confidential file. As set forth in Dark Wolf Solutions’s Equal Employment Opportunity policy, we do not discriminate on the basis of any protected group status under any applicable law. Are you Hispanic/Latino?

Select...

If you believe you belong to any of the categories of protected veterans listed below, please indicate by making the appropriate selection. As a government contractor subject to the Vietnam Era Veterans Readjustment Assistance Act (VEVRAA), we request this information in order to measure the effectiveness of the outreach and positive recruitment efforts we undertake pursuant to VEVRAA. Classification of protected categories is as follows: A "disabled veteran" is one of the following: a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or a person who was discharged or released from active duty because of a service-connected disability. A "recently separated veteran" means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service. An "active duty wartime or campaign badge veteran" means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense. An "Armed forces service medal veteran" means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985. Veteran Status:

Select...

Form CC-305 OMB Control Number 1250-0005 Expires 05/31/2023 Voluntary Self-Identification of Disability Why are you being asked to complete this form? We are a federal contractor or subcontractor required by law to provide equal employment opportunity to qualified people with disabilities. We are also required to measure our progress toward having at least 7% of our workforce be individuals with disabilities. To do this, we must ask applicants and employees if they have a disability or have ever had a disability. Because a person may become disabled at any time, we ask all of our employees to update their information at least every five years. Identifying yourself as an individual with a disability is voluntary, and we hope that you will choose to do so. Your answer will be maintained confidentially and not be seen by selecting officials or anyone else involved in making personnel decisions. Completing the form will not negatively impact you in any way, regardless of whether you have self-identified in the past. For more information about this form or the equal employment obligations of federal contractors under Section 503 of the Rehabilitation Act, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp. How do you know if you have a disability? You are considered to have a disability if you have a physical or mental impairment or medical condition that substantially limits a major life activity, or if you have a history or record of such an impairment or medical condition. Disabilities include, but are not limited to: Autism; Autoimmune disorder, for example, lupus, fibromyalgia, rheumatoid arthritis, or HIV/AIDS; Blind or low vision; Cancer; Cardiovascular or heart disease; Celiac disease; Cerebral palsy; Deaf or hard of hearing; Depression or anxiety; Diabetes; Epilepsy; Gastrointestinal disorders, for example, Crohn's Disease, or irritable bowel syndrome; Intellectual disability; Missing limbs or partially missing limbs; Nervous system condition for example, migraine headaches, Parkinson’s disease, or Multiple sclerosis (MS); Psychiatric condition, for example, bipolar disorder, schizophrenia, PTSD, or major depression. Disability Status:

Select...

Penetration Tester

Required Qualifications:

Desired Qualifications:

Apply for this job