Senior level penetration tester

fusionx
Company: FusionX, LLC
Location: Washington D.C. Metro Area
Description: FusionX has an immediate opening for senior/expert level penetration tester to join its fast growing team. Ideally, candidates will be located in the Washington DC, metro area; however we are open to applications from candidates elsewhere in the continental United States.

FusionX wholly consists of and exclusively hires senior (10+ years experience) level talent, who have already established their place in the industry and information security community and are looking for the next challenge. Successful candidates will be joining a team of industry experts who are driven by a strong desire to push the envelope as it relates to security research, innovation and providing our clients with simulated cyber attacks of the type which they have not been previously exposed. In addition to involvement in day-to-day client activities, FusionX team members are expected and must have the ability to proactively contribute to company research projects, including vulnerability research and exploit development activities. FusionX team members are typically allocated 25% of their time to support these efforts

 

Responsibilities: As a member of our highly talented services team, you will be given the opportunity to execute simulated attacks in a variety of customer settings, including the digital assets of high net worth individuals, some of the nations most critical infrastructures and largest financial institutions. We strive to maintain a positive working environment of highly skilled, confident, experienced security professionals who continually learn from one another and develop together as one of the industries more formidable security assessment teams.
Qualifications:
  • At least ten years in a security consulting role
  • At least ten years experience performing network penetration testing
  • At least five years experience performing application security assessments
  • Must have over four years experience project managing security assessment projects

Required Skills:

  • Intimately familiar with networking fundamentals (all OSI layers)
  • Familiar with common internet protocol (IP) packet structures
  • Understanding of application design principals
  • Knowledge of web application exploitation methodologies
  • Ability to independently research new vulnerabilities in software products
  • Familiar with fundamentals of software exploitation on modern operating systems
  • Current knowledge of common threats as they relate to specific industries
  • Ability to read: C, C++, C#, Objective C, PHP, Java, X86 ASM
  • Fundamental understanding of OS internals, memory allocators etc
  • Must have the ability to perform targeted penetration tests without use of automated tools
  • Knowledge of IDS/IPS/HIDS/HIPS evasion techniques
  • Excellent written skills, articulating highly technical topics to a wide range of audiences
  • Good organizational and inter-personal skills communicating with clients

Desired Skills:

  • Experience scoping engagements and developing technical proposals
  • Experience developing C, C++, PHP+MySQL, Java
  • Experience reverse engineering of malware, disk and memory forensics

OtherRequirements:

  • Must be able to pass a seven year commercial background investigation with no major incidents
  • Must be prepared to travel up to 40% of time, both domestically and internationally
Citizenship:
Clearance Required:
Contact: benoit.flippen@fusionx.com