Penetration Tester

The Penetration Tester conducts internal and external penetration testing to analyze and evaluate attempts to compromise the application on all the major and minor GNMA applications.

Responsibilities

• Configure, run, and monitor automated security testing tools.

• Perform manual penetration testing of client systems, web sites, and networks to identify and exploit vulnerabilities.

• Use comprehensive knowledge of techniques, tools, and standards to build test plans and methodologies.

• Conduct Security Testing and Evaluation to measure effectiveness of client Service Provider's security control environment.

• Perform manual validation of vulnerabilities

• Compile, draft, review, develop, and deliver input for reports on all aspects relevant to information security activities, processes, and associated documentation.

• Apply knowledge of industry standard software and hardware tools to recommend solutions to meet customer penetration testing.

• Apply expertise in planning, organizing, and prioritizing work, meeting deadlines, managing multiple tasks and working independently.

Required Qualifications:

• CompTIA PenTest+, EC-Council Certified Ethical Hacker (CEH), or Certified Penetration Tester (CPT)

• Experience conducting internal/external penetration testing to analyze and evaluate attempts to compromise applications

• Experience providing report of the results, to include material weaknesses and other significant deficiencies

Desired Qualifications:

• Certified Expert Penetration Tester (CEPT), Certified Cloud Penetration Tester (CCPT), Certified Mobile and Web Application Penetration Tester (CMWAPT), or Global Information Assurance Certification (GIAC) Penetration Tester (GPEN)

• Knowledge and experience using the Cybersecurity Asset Management (CSAM) or similar Vulnerability Management System(s)

• Experience testing cloud service offerings

• GNMA or HUD experience

Applicants selected for this position will be subject to a government security investigation and must meet eligibility requirements for access to classified information. Please note that only US Citizens are eligible for a security clearance.

About Us

Paragon is a Veteran Owned Small Business (VOSB) with offices near Scott AFB, Illinois and Vienna, Virginia, providing client-centric, enterprise governance management, cybersecurity services, and comprehensive information technology services management solutions to our clients. Our tagline is "Innovation, Value, and Excellence."

Paragon consistently delivers value-added, client-centric, enterprise governance management, cybersecurity services, and comprehensive information technology services management solutions to our clients. Our team of dedicated professionals provide superior services and support to you while fostering a climate of trust, innovation, efficiency, and customer return on investment with integrity, commitment, and excellence in all that we do. To help us carry out this mission, our people are trained professionals who boost our customers' knowledge and innovation using technology, teamwork, and education.

We offer a comprehensive suite of benefits, which include medical, dental, and vision plans, Flexible Spending accounts, life insurance, short- and long-term disability, matching 401k, tuition reimbursement plans, and much more.

Paragon is an Equal Opportunity Employer and does not discriminate in employment opportunities or practices on the basis of: race, color, religion, gender, national origin, age, sexual orientation, gender identity, disability, veteran status, or any other characteristic protected by country, regional, or local law.

VEVRAA Federal Contractor participating in eVerify.