Network Penetration Tester

​

Key Role:

​

Work with a wide variety of clients, including Fortune 100 companies, to identify security vulnerabilities through offensive security operations. Interface directly with client leadership and technical security staff to lead network penetration testing, application testing, and red and purple team engagements in a wide variety of scenarios. Work with a team of 10+ seasoned security testing professionals to enhance existing service offerings and security testing capabilities and conduct hands-on technical testing. Conduct planning, reconnaissance, and exploitation within multiple environments, including complex Active Directory and mixed Windows and Nix environments. Develop comprehensive and accurate reports and presentations for both technical and executive audiences. Identify and communicate findings and strategy effectively to client stakeholders, including technical staff, executive leadership, and legal counsel. Apply security testing and penetration testing techniques and mindset to a wide range of projects, become part of a team of security enthusiasts that perform cutting-edge research, and promote an environment of innovation and knowledge sharing. Due to the nature of work performed within this facility, U.S. citizenship is required.

• Work with a wide variety of clients, including Fortune 100 companies, to identify security vulnerabilities through offensive security operations.
• Interface directly with client leadership and technical security staff to lead network penetration testing, application testing, and red and purple team engagements.
• Work with a team of 10+ seasoned security testing professionals to enhance existing service offerings and security testing capabilities.
• Conduct planning, reconnaissance, and exploitation within multiple environments.
• Develop comprehensive and accurate reports and presentations for both technical and executive audiences.
• Identify and communicate findings and strategy effectively to client stakeholders.
• Apply security testing and penetration testing techniques to a wide range of projects.

Basic Qualifications:

​

• Experience with conducting offensive security testing
• Experience working in a Windows environment and with Active Directory attack path enumeration
• Experience with security vulnerability identification and exploitation
• Experience with network vulnerability assessments, web application security testing, network penetration testing, red teaming, security operations, or threat hunt
• Experience reporting vulnerabilities and developing recommendations
• Knowledge of using, administering, and troubleshooting, including Kali and Ubuntu as an attack platform
• Ability to perform, oversee, and provide feedback on network penetration testing services
• HS diploma or GED

​

Additional Qualifications:

​

• Experience with working in a commercial or professional services environment
• Experience deploying attacker infrastructure in cloud environments
• Bachelor's degree in Computer Science or similar field
• CISSP, CEH, OSCP, CRTO, GPEN, GXPN, OSCE, OSWE, GCIH, or GWAPT Certification
• Ability to obtain OSCP or CRTO Certification within one year of hire date

Compensation

​

At Booz Allen, we celebrate your contributions, provide you with opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care. Our recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen’s benefit programs. Individuals that do not meet the threshold are only eligible for select offerings, not inclusive of health benefits. We encourage you to learn more about our total benefits by visiting the Resource page on our Careers site and reviewing Our Employee Benefits page.

​

Salary at Booz Allen is determined by various factors, including but not limited to location, the individual’s particular combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability and organizational requirements. The projected compensation range for this position is $60,400.00 to $137,000.00 (annualized USD). The estimate displayed represents the typical salary range for this position and is just one component of Booz Allen’s total compensation package for employees. This posting will close within 90 days from the Posting Date.

​

Identity Statement

​

As part of the application process, you are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud.

​

Work Model

​

Our people-first culture prioritizes the benefits of flexibility and collaboration, whether that happens in person or remotely.

​

• If this position is listed as remote or hybrid, you’ll periodically work from a Booz Allen or client site facility.
• If this position is listed as onsite, you’ll work with colleagues and clients in person, as needed for the specific role.

​

Commitment to Non-Discrimination

​

All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, local, or international law.

The Opportunity:

​

Are you looking for an opportunity to share your experience in devices, implanting security systems, and identifying tools to safeguard our nation? As a Cybersecurity Engineer, you can identify the tool, security system, device, or application needed to assess vulnerabilities and recommend the best solution and security strategy. We need your experience to lead the development and implementation of security solutions that will protect our military.

​

On our team, you’ll troubleshoot and analyze complex challenges for customers using your knowledge of network and security devices, applications, and identifying tools. You’ll use your curiosity for technology and market trends to further research and develop security solutions. Using your knowledge and experience in Palo Alto, F5 devices, FireEye, FireEye EX, and FireEye NX, you’ll assess security threats and implement infrastructure controls.

​

In this role, you’ll closely impact defense clients by protecting DoD infrastructure. With mentoring, challenging hands-on problem-solving, and opportunities to learn new tools and skills, we focus on growing as a team to make the best solutions for our customers.

​

Work with us as we secure and protect defense clients for the better.

• Develop relationships quickly and easily with other teams, communicating the complexities of security with a wide variety of audiences, including senior management.
• Implement infrastructure and cybersecurity controls, including enhanced detection and vulnerability capabilities and improved event correlation in large enterprises.
• Perform risk and vulnerability assessments in network, system, and application areas, and leverage big data analytics and traditional security event types to identify advanced threats or indicators of compromise.

You Have:

​

• 5+ years of experience selecting, implementing, or validating security controls in an enterprise environment, compliant with RMF on DoD systems
• 3+ years of experience implementing SCAP, STIG, or hardening of multi-tier applications
• Experience leading, communicating, and coordinating with multiple government groups, contractor partners, and program office representatives in the resolution of issues
• Experience with cybersecurity requirements and policies, RMF, or Army ATO processes
• Experience assisting in the development and maintenance of security policies, or evaluating assessment documentation and providing written recommendations for authorization
• Experience supporting DevOps teams with Secure Software Development Lifecyle best practices
• Knowledge of ISSE duties as outlined in DoDI 8500.01 and DoDI 8510.01 for assigned systems and applications
• Secret clearance
• Bachelor’s degree in Cybersecurity, Science, Technology, Engineering, or Mathematics and 5+ years of experience with cybersecurity, or 8+ years of experience with cybersecurity in lieu of a degree
• DoD Directive 8570.01-M for Information Assurance Technical Level 2 or higher Certification

​

Nice If You Have:

​

• Experience selecting and helping apply security controls in a Cloud environment
• Experience building security controls for a DevSecOps pipeline
• Top Secret clearance
• DoD Directive 8570.01-M IASAE-III Certification such as ISSEP, ISSAP, or CCSP Certification
• Amazon Web Service (AWS), Microsoft Azure, or Google Cloud Provider Certification

Clearance:

​

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.

​

Compensation

​

At Booz Allen, we celebrate your contributions, provide you with opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care. Our recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen’s benefit programs. Individuals that do not meet the threshold are only eligible for select offerings, not inclusive of health benefits. We encourage you to learn more about our total benefits by visiting the Resource page on our Careers site and reviewing Our Employee Benefits page.

​

Salary at Booz Allen is determined by various factors, including but not limited to location, the individual’s particular combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability and organizational requirements. The projected compensation range for this position is $84,600.00 to $193,000.00 (annualized USD). The estimate displayed represents the typical salary range for this position and is just one component of Booz Allen’s total compensation package for employees. This posting will close within 90 days from the Posting Date.

​

Identity Statement

​

As part of the application process, you are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud.

​

Work Model

​

Our people-first culture prioritizes the benefits of flexibility and collaboration, whether that happens in person or remotely.

• If this position is listed as remote or hybrid, you’ll periodically work from a Booz Allen or client site facility.
• If this position is listed as onsite, you’ll work with colleagues and clients in person, as needed for the specific role.

​

Commitment to Non-Discrimination

​

All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, local, or international law.

Company Overview

​

Company URL: https://www.berkleytechnologyservices.com/

​

Berkley Technology Services (BTS) is a dynamic company committed to providing world class IT services. We offer a unique culture, enabling our team members to be at the forefront of technology while delivering high quality solutions. We are looking for outstanding individuals who will bring unique perspectives, insight, and innovation to our teams. BTS, a member company of W. R. Berkley Corporation, has facilities in Des Moines, Iowa and Wilmington, Delaware.

​

Our functions include working with various third parties to develop, integrate, and support insurance systems of WRBC's operating units. BTS strives to provide these functions in a holistic manner including helpdesk support, system connectivity, and operational support. Additional responsibilities include coordinating communications regarding best practices for our supported systems and researching innovative technologies. At BTS, there are opportunities associated with being a part of an established and empowering corporation while maintaining a positive personal working environment. Additionally, we provide a competitive compensation and benefits package including a casual dress code. BTS is constantly growing and expanding to meet the changing demands of one of the most successful insurance organizations in the world. Visit us at berkley-bts.com to learn more information.

​

The Company is an equal employment opportunity employer.

• Systems Planning and Implementation: Actively participate in the planning and implementation of IAM systems, infrastructure, and related hardware and software in response to customer requests and organizational requirements.
• Programming/Scripting: Perform system-level programming/scripting to facilitate the management of supported applications and technologies, including Okta Expression Language (EL) and PowerShell.
• System Management: Conduct configuration, integration, maintenance, performance management, security management, failure analysis and recovery, and user support.
• IAM Technology Deployment: Lead IAM technology deployment projects, such as Okta, Auth0, and Microsoft Entra ID, ensuring deployments fulfill user needs and comply with security standards.
• API Management: Build, analyze, operate, and scale API management solutions to protect customer and workforce data, services, and applications.
• Security Standards: Emphasize security standards and user needs fulfillment in the deployment of IAM solutions, including MFA, RBAC, fine-grained authorization, passwordless authentication, and B2B/B2C scenarios.
• Emerging Technologies: Research emerging IAM technologies, including new products, services, protocols, and standards to inform procurement and development strategies.
• Governance, Risk, and Compliance (GRC): Develop and implement GRC strategies to ensure IAM solutions comply with regulatory requirements and industry standards. Conduct risk assessments and audits to identify and mitigate potential security risks.
• Vendor Liaison: Serve as a liaison to vendors (e.g., Okta, Auth0, Microsoft) to facilitate problem resolution.
• Project Leadership: Lead projects, working directly with Project Management, Account Management, and Customer teams.
• Mentorship: Mentor and cross-train technical staff, peers, and subordinate team members in IAM technologies and best practices.
• Development Standards: Provide guidance on development standards and quality expectations.
• Collaboration: Collaborate with technical staff, including project managers, to deliver customer-centric solutions, including presenting design and deployment strategies.
• Policy Development: Develop and oversee the implementation of policies and procedures to ensure system provisioning and maintenance is consistent with company goals, industry best practices, and regulatory requirements.
• Account Management: Manage end-user accounts, permissions, and access rights in accordance with best practices regarding privacy, security, and regulatory compliance.
• ITIL Standards: Participate and adhere to defined ITIL standards for incident, request, and change management.
• Documentation: Document problems and resolutions for future reference, as well as platform configurations and standards.
• Communication: Maintain excellent communication skills, particularly across functional technical areas.

Required Qualifications

• IAM design, administration, and support for a minimum of 5 years.
• Experience with Okta, Auth0, and Microsoft Entra ID for a minimum of 3 years.
• Ability to design IAM solutions aligned with Zero Trust, identity governance, and adaptive authentication.
• Strong understanding of SSO, SAML, OAuth/OIDC, adaptive authentication, MFA, RBAC, and fine-grained authorization.
• Experience in API management and protecting customer and workforce data, services, and applications.
• Proficiency in JavaScript (Node.js preferred): Strong understanding of web security fundamentals to mentor application teams, extend IAM workflows, and automate tasks.
• Strong knowledge of security frameworks: Familiar with OWASP, NIST, and other industry-standard security principles.
• IAM Solution Design: Ability to design IAM solutions aligned with Zero Trust and Identity governance
• Proficiency in scripting with Okta Expression Language (EL) and PowerShell.
• Knowledge of GRC strategies and experience in conducting risk assessments and audits.
• Familiarity with CI/CD pipelines and tools such as Ansible, GitHub, Terraform, and Jenkins.
• Experience working in a hybrid multi-cloud environment with Azure and AWS.
• Must be able to work irregular hours as needed and participate in the on-call rotation to meet business needs
• Ability to sit at a desk and work on a computer for extended periods of time
• May occasionally lift and/or move up to 10 pounds
• Vision abilities required by this job include close vision and ability to adjust focus
• Bachelor’s degree from a four-year college or university or a combination of equivalent education and work experience.

​

Preferred Qualifications

• Relevant certifications such as Okta Certified Professional, CISSP, and Microsoft Certified: Identity and Access Administrator Associate (SC-300) highly preferred

Sponsorship not Offered for this Role