Job Description
About the position Newberry Group is a performance-driven government services and solutions firm that provides security compliance, program governance, consulting, and customized solutions for public sector clients nationwide. T he strength of our company is a direct reflection of our highly skilled and talented workforce. We are seeking a skilled project-based Penetration Tester to join our team in support of the US Department of Agriculture. This role involves simulating real-world cyberattacks to identify vulnerabilities in systems, networks, and applications, ensuring compliance with security standards and strengthening the clientβs overall security posture. This position is project-based/part-time and expected to last sixty to ninety days. This is a telecommute position with the potential for some domestic travel. The applicant must reside in the United States and be eligible to obtain a Public Trust clearance. Responsibilities β’ Plan and Execute Penetration Tests β’ Conduct black-box, gray-box, and white-box testing on applications, networks, and cloud environments. β’ Perform Vulnerability Assessments β’ Use automated tools and manual techniques to identify and validate security weaknesses. β’ Exploit and Document Findings β’ Simulate attacks to demonstrate potential impact and provide detailed technical reports with remediation steps. β’ Collaborate with Security and IT Teams β’ Work closely with stakeholders to prioritize fixes and verify remediation through retesting. β’ Stay Current on Emerging Threats β’ Continuously research new vulnerabilities, attack vectors, and security tools to maintain cutting-edge expertise. Requirements β’ Strong understanding of network protocols , web application security , and operating systems . β’ Proficiency with penetration testing tools (e.g., Metasploit, Burp Suite, Nmap). β’ Familiarity with compliance frameworks (e.g., NIST , ISO 27001 , PCI DSS ). β’ Excellent analytical and problem-solving skills. β’ Ability to write clear, actionable reports for technical and non-technical audiences. β’ 2β5 years in cybersecurity roles, with at least 1 year focused on penetration testing. Nice-to-haves β’ CEH (Certified Ethical Hacker) β’ OSCP (Offensive Security Certified Professional) β’ CPT (Certified Penetration Tester) β’ Experience in red team engagements or security audits is a plus. Apply tot his job
Apply tot his job
Apply To this Job