Title: Penetration Tester
Type: In-Person (Virginia) Skillbridge Internship
Company: FTI
FTI provides mission-tailored, technology-enabled services and solutions, driven by deep subject matter expertise across multiple domains. Our offerings include data analytics, modeling and defensive/resilient cyber solutions to enhance the ability of the Department of Defense, Intelligence Community and the Federal Government to make the best decisions possible, in support of national interests.
Through our charitable donation and volunteer efforts, FTI is proud to support veteran through: Honor Flight (Dayton, OH), Honor Foundation, Troopster, and Feeding America.
Role Responsibilities:
Capable of conducting penetration tests on applications, systems, and network utilizing proven/formal processes and industry standards
Work with the Cyber Test Engineers and SMEs to generate specific test objectives for incorporation into the overall test plan
Conduct cooperative vulnerability penetration assessments and adversarial assessments in accordance with DoD guidance
Attend site visits and conduct manual examination of system and network configurations, system logs, and devices
Observe, collect, and analyze Cyber OT&E test data
Generate Cyber OT&E deficiency sheets and final report with established timeline including specified report artifacts in accordance with COMOPTEVFOR Cyber OT&E policies, processes and procedures using established templates
Employee ethical hacking expertise to exploit discovered vulnerabilities and misconfigurations associated with but not limited to operating systems (Windows, Linux, etc.), protocols (HTTP, FTP, etc.), and network security services (PKI, HTTPS, etc) to accomplish test objectives
Develop and utilize program specific testing methodology for threat emulation and vulnerability validation
Support cyber toolset development, improvement and validation
Support development and execution of TTPs for penetration testing/Red Teaming
Skills & Experience:
Bachelor’s degree in Computer Science, Mathematics, Engineering or related fields or relevant years of experience.
Penetration testing experience.
Certified Ethical Hacker (CEH) certification.
OSCP Certification (It can be acquired within 6 months of being hired).
Proficient in at least one Operating Systems to include: Windows, Linux and Unix variants, embedded and Real-Time Operating Systems.
Proficient in at least one of the following scripting languages: PowerShell, Bash, Python, Ruby.
Proficient in multiple offensive tools/technologies to include: Metasploit, Cobalt Strike, Core Impact, Burp Suite, SDR, Wireless, Intercepting Proxies, etc.
Not currently accepting applicants