Cyber Penetration Tester


Location Pin Icon
Greenway Ctr Dr, MD

Job Description

As posted by the hiring company

Job Overview:

Date Posted:



United States of America


MD312: 7474 Greenway Ctr Dr Greenbelt

Raytheon Intelligence & Space (RIS) – Cybersecurity, Training & Services (CTS) is seeking a cleared and seasoned Cyber Penetration Tester to fulfill a U.S. Federal Agency’s mission to ensure security measures and safeguards are in place to thwart threat attacks and prevent unauthorized access.

* An active TS security clearance is required.

Work Location: Beltsville, Maryland

Job Description:
Conducts network or software vulnerability assessments and Red Team penetration testing utilizing reverse engineering techniques. Perform vulnerability analysis and exploitation of applications, operating systems or networks. Identifies intrusion or incident path and method. Isolates, blocks or removes threat access. Leverage the MITRE ATT&CK framework to develop threat models and methodologies in building operational engagement plans. Create test cases each individual TTP found in ATT&CK as well as custom and more advanced variants to assess the organization’s coverage across a spectrum of intrusion sets and scenarios. Develop and use malware, pivoting, escalating privileges to test the organization’s security effectiveness


Perform specific activities that include, but not limited to the following:

  • Plan, communicate, coordinate and perform penetration tests and security assessments at application, system and enterprise levels.
  • Interface and coordinate with system owners to establish targets for testing, test schedule, test goals, and rules of engagement
  • Devises plans and scenarios for various types of penetration tests and automate the simulation of tactics, techniques, and procedures used by advanced cyber threat actors
  • Conduct penetration test in accordance with NSA INFOSEC Assessment Methodology (IAM) and INFOSEC Evaluation Methodology (IEM)
  • Performs reconnaissance, threat modeling, vulnerability identification, authorized exploitation, and post-exploitation cleanup
  • Maintain log of testing activities to support test report write-up
  • Documents targets, test plan, scenarios tested, findings, test evidence and recommendations in penetration test report and present results to customer leadership
  • Perform information technology security research to remain current on emerging technology trends and develop exploits for disclosed and undisclosed vulnerabilities
  • Develop and maintain penetration testing SOPs.
  • Performs off-hours work as necessary.
  • Occasionally travel within CONUS and OCONUS

Required Skills:

  • Ability to assess information of network threats such as scans, computer viruses or complex attacks
  • Perform information technology security research to remain current on emerging technology trends and develop exploits for disclosed and undisclosed vulnerabilities
  • Contributes to developing and implementing tools for penetration testing and early warning of weaknesses or possible incidents building on methodologies as promulgated by NIST, ISO, etc. to ensure useful, measurable, and repeatable methods applied to quantifying risk
  • Selects, installs, and configures security testing platforms and tools or develop tools and procedures for penetration tests
  • Performs penetration testing using standard penetration tools (Metasploit, Nmap, Nessus, Burp Suite, etc.)
  • Experience with SIEMS (such as NetWitness, Splunk, SumoLogic, QRadar)
  • Experience with packet analysis to include: HTTP Headers & Status codes, SMTP Traffic & Status codes, FTP Traffic & Status Codes
  • Knowledge of and practical experience of integration of COTS or open source tools
  • Excellent written and verbal communication skills
  • Proficiency with MS Office Applications
  • Must be able to work collaboratively across teams and physical locations
  • Working knowledge of WAN/LAN concepts and technologies
  • Knowledge of the following:
    • Operating System Hardening
    • Vulnerability Assessment testing
    • Identification and Authentication schemes
    • Public Key Infrastructure and Identity Management
    • WAN/LAN, firewalls, routers and security appliances
    • Cross Domain Solutions
    • Reverse Engineering
    • Security engineering
    • Cloud and hybrid Cloud environment
    • Mobile technologies

Required Certifications: Possess one or more of the following:

  • Preferably OSCP/E

Desired Certifications: Possess one or more of the following:

  • GIAC Security Expert (GSE)
  • Global Industrial Cyber Security Professional (GICSP)
  • Certified SCADA Security Architect (CSSA)

Required Education and Experience:

Bachelor of Science Degree in Cyber Security, Computer Science, Computer Engineering or related field. Must have a minimum of 5+ years’ experience and a Bachelor's degree.

Clearance requirement: Active TS and the ability to attain TS/SCI clearance

Due to a customer requirement, as a condition of employment for this position, the successful candidate will be required to obtain and provide proof of COVID-19 vaccination prior to commencing employment or submit to regular COVID testing.

Relocation Eligible: No

Sign On Bonus Eligible: No

Beltsville, MD




Raytheon Technologies is An Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age or any other federally protected class.

Privacy Policy and Terms:

Click on this link to read the Policy and Terms