Stage 2 Security is looking for a Penetration Tester in Washington – Apply Here!

Deal Score0
Deal Score0

About S2:

S2 eliminates risks of separate red- and blue-teams by creating continuously optimized cybersecurity for the modern, constant-threat landscape. Our centralized adversary simulation, detection and response platform, Mage, uses advanced tradecraft to provide continuous red team-as-a-service. With Mage, we find weaknesses before adversaries do, so that every threat is an opportunity for improvement. Deployed as-a-service, S2 makes advanced real-time cybersecurity accessible for all organizations. With smart automation and continuous testing, we help you focus on the most imminent and most critical risks to your enterprise.

S2 is a Small Business that is focused solely on cybersecurity and specializes in Adversary Simulation, Protection and Prevention services. We were founded by cybersecurity experts trained by the National Security Agency (NSA) who were joined by senior cybersecurity entrepreneurs with proven expertise within the Federal Government. We are a growing community of cyber professionals seeking like-minded individuals who are passionate about cybersecurity, seek innovation in our everyday work, hold ourselves and those around us accountable, and have a will to win.

S2. Relentlessly secure.

Stage 2 Security (S2) is seeking experienced Cloud Penetration Testers with a background in multiple penetration testing disciplines and a focus in cloud and mobile application testing. This individual will play a key role in conducting penetration tests as one of the core capabilities of S2. The penetration tester will execute simulated attacks against client information technology systems to demonstrate susceptibility to such attacks by an adversary, including advanced persistent threats (APTs). Qualified candidates must be able to assess target systems, identify vulnerabilities, safely exploit those vulnerabilities, and effectively communicate the risk to the client.  

 Responsibilities: 
•  Conduct security reviews of cloud environments (AWS, Azure, and GCP)
• Develop a mobile application testing capability
• Assist with web application, mobile application, network, wireless, and operational technology penetration tests  
• Use common penetration testing and red-team tools, tactics, techniques, and procedures 
• Utilize custom penetration testing tools, frameworks, and infrastructure 
• Assess risk of discovered vulnerabilities based on likelihood and severity of exploitation 
• Deliver technical reports on detailed findings and vulnerability remediation recommendations 
• Collaborate with clients throughout an assessment on status and vulnerability information 

Requirements:   

This position requires strong technical, communications, and problem-solving skills and the ability to engage and interact with numerous teams. The ideal candidate will have a passion for security, ability to think outside of the box, and be attentive to detail.  Candidates should be able to demonstrate deep competency in most of the requirements listed below: 
• Education: Bachelor’s Degree in Cybersecurity or related field preferred 
• Prior Experience: At least 2 years of experience related to conducting penetration tests or red-team assessments 
• Experience using and securing cloud environments (AWS, Azure, GCP)
• Experience using and exploiting operating systems including Windows and Linux 
• Experience with advanced exploitation methods or exploitation development 
• Experience conducting cyber operations and exploitation 
• Understanding of common scripting languages 
• Familiarity with Security Content Automation Protocols (SCAP), Common Vulnerabilities and Exposures (CVE), Common Vulnerability Scoring System (CVSS), Common Weakness Enumeration (CWE), or Common Platform Enumeration (CPE) 
• Understanding US Government Configuration Baseline (USGCB), Security Technical Implementation Guides (STIGs), NSA Guides, National Checklist Program (NCP) or Common Secure configurations 
• Excellent written and verbal communication skills, demonstrating the ability to effectively convey technical information to both technical and non-technical audiences 
• One or more of the following certifications are required: 
• AWS / Azure / GCP certifications
• Offensive Security Certified Professional (OSCP) – preferred
• Offensive Security Certified Expert (OSCE)
• Offensive Security Wireless Professional (OSWP)
• Offensive Security Web Expert (OSWE)
• Certified Ethical Hacker (CEH)
• EC-Council Certified Security Analyst (ECSA)
• Certified Ethical Hacker (CEH) Practical
• EC-Council Certified Security Analyst (ECSA) Practical
• Licensed Penetration Tester (LPT) Master
• CompTIA PenTest+
• GIAC Certified Incident Handler (GCIH)
• GIAC Penetration Tester (GPEN)
• GIAC Web Application Penetration Tester (GWAPT)
• GIAC Exploit Researcher and Advanced Penetration Tester (GXPN)
• GIAC Assessing and Auditing Wireless Networks (GAWN)

No third-party candidates will be considered

The Benefits:

S2 is a small business where people come first, and we know and care about each and every employee. This drives us to provide the best possible benefits and we believe that the benefits we offer are a notch above the rest.

The Benefits at S2 include:
• Medical & dental insurance premiums are 100% paid by S2 for the employee and eligible dependents
• Up to $100 per month reimbursed for mobile phone expenses
• Up to $50 per month reimbursed for home Internet access
• Expenses paid for approved work-related trainings & conferences
• Eligibility to participate in our 401k program after 90 days of employment
• Competitive salary, which is paid semi-weekly (twice per month)
• Participation in S2 Unlimited PTO Program
• 11 paid government holidays annually
• 10 paid sick days

Stage 2 Security welcomes and encourages diversity in the workplace regardless of race, gender, religion, age, sexual orientation, gender identity, disability, or veteran status.

If you are looking to make an impact, Stage 2 Security is the place for you.

Powered by JazzHR

Apply Here

The Tech Career Guru
We will be happy to hear your thoughts

Leave a reply

Tech Jobs Here
Logo