Cyber Security Penetration Tester (644820)

  • 02/19/2018

Job Description


Department of Homeland Security (DHS), Security Operations Center (SOC) Support Services is a US Government program responsible to monitor, detect, analyze, mitigate, and respond to cyber threats and adversarial activity on the DHS Enterprise. The DHS SOC has primary responsibility for monitoring and responding to security events and incidents detected at the Trusted Internet Connection (TIC) and Policy Enforcement Point (PEP) and is responsible for directing and coordinating detection and response activities performed by each Component SOC. Direction and coordination are achieved through a new shared DHS incident tracking system and other means of coordination and communication.<?xml:namespace prefix = "o" />

The DHS SOC Support Service Program has a critical need for a Penetration Tester. This is a full time funded position based in Washington DC.


The DHS ESOC is responsible for pen testing resources and support for public facing sites as well as high value assets within the department. The Pen Tester will establish a pen testing program for use throughout DHS, Completes hands on pen testing capabilities, Communicates recommended solutions for addressing findings from a pen test

This is a big growth area for us and our customer over the next several years and so this role is also very strategic. This position location is located at Elizabeth’s USCG Headquarters in Washington, DC.



Basic Qualifications:
Bachelors’ degree from an accredited college in a related discipline, or equivalent experience/combined education, with 8 to 12 years of professional experience; or 6 to 10 years of professional experience with a Masters’ degree.
Must have a Secret Clearance with the ability to get TS/SCI. In addition to specific security clearance requirements all Department of Homeland Security SOC employees are required to obtain an Entry on Duty (EOD) clearance to support this program.
5 years in Pen Testing and Vulnerability Assessment
7 years of professional experience in incident detection and response, malware analysis, or cyber forensics.
Experience with any three of the seven tools listed below:
• Kali Linux
• Metaspoilt
• Burp suite
• Cobalt Strike
• Tenable Nessus
• Web Inspect
• Scuba
• Appdetective

Must have one of the following Certifications: SANS, GPEN, GWAPT, GISF, GXPN, OSCP, OSCE, OSWP, OSEE, CISSP
Desired Qualifications: Understanding of Cyber Kill Chain amp; Intelligence Defense.

Leidos Overview:
Leidos is a global science and technology solutions leader working to solve the world’s toughest challenges in the defense, intelligence, homeland security, civil, and health markets. The company’s 33,000 employees support vital missions for government and commercial customers. Headquartered in Reston, Virginia, Leidos reported pro forma annual revenues of approximately $10 billion for the fiscal year ended January 1, 2016 after giving effect to the recently completed combination of Leidos with Lockheed Martin's Information Systems Global Solutions business (IS GS). For more information, visit The company’s diverse employees support vital missions for government and commercial customers. Qualified women, minorities, individuals with disabilities and protected veterans are encouraged to apply. Leidos will consider qualified applicants with criminal histories for employment in accordance with relevant Laws. Leidos is an Equal Opportunity Employer. JBLeidos ICJBMeta