Job Description

TCI has an immediate need for an Application Security Tester in Falls Church, VA. This is not a Corp2Corp opportunity. This is a long-term contract opportunity with the probability of becoming permanent. In addition to competitive, market-rate based pay, TCI provides all our Consultants with Comprehensive Medical/Dental Insurance, 401k, Life Insurance and Long-Term Disability benefits.
Please note that this position requires a DoD Public Trust Security Clearance.

SEEKING LOCAL CANDIDATES ONLY
RESPONSIBILITIES
  • Engage in Payment Card Industry (PCI) penetration testing, processes and procedures for a small subset of the client’s application. Provide technical security assessments of applications and infrastructure, security design reviews as well as risk assessments.
  • This is a hands-on role, requiring technical skills from the hardware to the application layer.
  • Plan, communicate, coordinate and perform PCI penetration testing, application testing, and security assessments at application, system and enterprise level.
  • Develop Rules of Engagement, scoping documents and reports.
  • Perform manual PCI penetration tests and validation of vulnerability scan results.
  • Develops automation/scripts for replicating vulnerability validation and penetration tests.
  • Devises plans and scenarios for various types of penetration tests.
  • Documents vulnerabilities, relevant exploits, and remediations in final vulnerability assessment report.
  • Perform information technology security research to remain current on emerging technology trends and develop exploits for disclosed and undisclosed vulnerabilities.
  • Contributes to developing and implementing tools for penetration testing and early warning of weaknesses or possible incidents building on methodologies as promulgated by NIST, ISO, etc. to ensure useful, measurable, and repeatable methods applied to quantifying risk.
  • Selects, installs, and configures security testing platforms and tools or develop tools and procedures for penetration tests.
  • Performs penetration testing using standard penetration tools (Metasploit, Nmap, Nessus, Burp Suite, etc.).
  • Performs off-hours work as necessary.
REQUIREMENTS
  • Candidates must have 3-5 years of PCI Pen testing experience.
  • Must be eligible to obtain a sensitive clearance - Position of Public Trust - and may be required to obtain a higher security clearance.
  • Excellent communication and interpersonal skills
CERTIFICATIONS: (One or more required)
  • CompTIA Security +
  • CPTE - Certified Penetration Testing Engineer or CEH - Certified Ethical Hacker
  • Certified Information System Security Professional (CISSP)
  • Or other comparable certification
Desired Skills:
  • Experience with cyber security development projects and programs for U.S. Government and/or commercial clients.
  • Experience with process development and deployment.
  • Experience with the following technologies: Nessus, Tenable SecurityCenter, IBM AppScan.
  • Experience with three or more of the following: Security COTS integration, Operating System Hardening, Vulnerability Assessment testing, Identification and Authentication schemes, Public Key Infrastructure and Identity Management, Cross Domain Solutions, Reverse Engineering, Security engineering, Mobile Technologies, Cloud Computing.
  • Bachelor’s Degree in related field. Or in lieu of degree, equivalent experience in military, civil, or corporate areas will be considered.

Application Instructions

Please click on the link below to apply for this position. A new window will open and direct you to apply at our corporate careers page. We look forward to hearing from you!

Apply Online