Receive alerts when this company posts new jobs.

Similar Jobs

Job Details

KeyLogic is seeking outstanding candidates with industry experience to join our expanding team!

at keylogic

Posted: 10/2/2019
Job Reference #: 1135
Categories: Other/General
Keywords: company

Job Description

KeyLogic is seeking outstanding candidates with industry experience to join our expanding team!

Fairmont, WV

Job Code:

KeyLogic has an immediate need for a NASA IV&V Penetration Tester with our NASA team.

At the NASA IV&V Facility, we support NASA's IV&V Program, delivering analysis and verification & validation of safety-critical and mission-critical software for a number of important NASA programs, including both human and robotic exploration as well as earth and space science collection platforms.

The successful candidate will learn to work independently and as a member of a team in one or more of these IV&V projects or other IV&V Program functional areas.

The IV&V Penetration Tester will be responsible for simulating real-life cyber attacks with the goal of helping an organization improve its security posture. This is a highly technical hands-on role that will utilize development, system administration and creativity skills. It is an opportunity for a team player to enhance a world-class team and learn new skills.

  • Conduct host/network/application penetration testing as a member of a technical team
  • Perform full-scope penetration tests (discovery and exploitation of vulnerabilities) on network infrastructure, services, systems and desktop/web applications
  • Test the exploitation of security policies and access controls in restricted/secure environments (e.g. GPO bypass, privilege escalation and A/V evasion)
  • Possess ability to review, modify and develop programs or scripts in Assembly, C++, C#, VBS, Python, Perl, Ruby, PowerShell, Bash, JavaScript, Java, PHP and other languages to exploit systems/applications, analyze data, configure systems and automate tasks
  • Work extensively from the Windows and UNIX/Linux command line (e.g. Bash and PowerShell)
  • Review custom applications source code for security flaws and vulnerabilities
  • Possess ability to test, identify and exploit vulnerabilities in web applications without the use of scanning tools
  • Research and formulate recommendations for vulnerabilities
  • Employ extensive use of Microsoft Office main tools: Word, Excel, PowerPoint and Visio to prepare plans, reports, diagrams, tables, briefings, etc.
  • Be able to present, demonstrate, explain and document operational impact of a particular vulnerability or the combination of many vulnerabilities and flaws
  • Develop proof-of-concept examples and scenarios for reports and live demonstrations
  • Create/document tactic, techniques and procedures (TTP) to train and expand/share knowledge with customers and team members
  • Ability to develop presentations and reports, document findings accurately; attention to detail is a vital skill
  • Excellent communication and interpersonal skills; ability to convey findings in a tactful manner with the technical proficiency level appropriate to the skills and/or understanding of the audience.
  • Critical thinking skills are a must

Position Qualifications:                         

  • Active DoD SECRET clearance is required with the ability to be cleared up to TS/SCI 
  • 3 years hands-on experience as a penetration tester; ICS/SCADA, Cloud Computing, reverse engineering and exploit development are a plus
  • Penetration Test experience and knowledge beyond Metasploit Frameworks and vulnerability scanning tools
  • Bachelors degree in Engineering, Applied Science or similar technical discipline is required  
  • Must have a thorough knowledge beyond common network ports and protocols
  • Penetration Test certifications like GXPN, OSCP, OSCE are a plus

About KeyLogic:

KeyLogic is a highly successful provider of professional and engineering services. We specialize in solutions that enable our customers to make better decisions for their organization. KeyLogic’s  performance has earned the company a solid reputation for high standards, proactive solutions, and an outstanding commitment to the customer, best exemplified by the fact we have never had a one-time federal customer — all of our customers have provided repeat business. This has led us to achieve significant growth every year since our founding in 1999.

At KeyLogic, we're known for our extraordinary commitment to the success of the organizations we serve. Our client list includes the Department of Defense (DoD), where we provide services for the Defense Information Systems Agency (DISA) and the U.S. Army and Navy, Environmental Protection Agency (EPA), Departments of Labor (DOL), Energy (DOE), Transportation (DOT) and Treasury (including the Internal Revenue Service (IRS)), General Services Administration (GSA), and the National Aeronautics and Space Administration (NASA).

KeyLogic has successfully attained a Capability Maturity Model Integration for Development (CMMI-DEV) Maturity Level 3 Rating. CMMI-DEV is a process improvement approach for software engineering and organizational development that provides organizations with the essential best practices needed to meet business goals. Only three-percent of small and medium federal contractors have achieved CMMI Maturity Level 3. KeyLogic joins this distinguished group. 

KeyLogic Systems is an Equal Opportunity/Affirmative Action Employer - Minorities/Females/Protected Veterans/Disabled.


<< Back to Job Listing