Penetration Engineers (Jr. to Sr. Levels)

Location: DC/MD/VA Metro Area
Job Code: Cyber Security BU
# of openings: 10

Description

Blue Canopy Group is seeking multiple Jr., Mid and Sr.  Levels Security Engineer/Penetration Engineers to support multiple Cyber Security Programs in Washington, DC and Northern, VA locations

 

The Security Engineer/Penetration Testers (Jr. to Sr. Levels) will be responsible for performing “Black Hat” related hacking techniques on internal database systems, testing the security posture of systems, educating the client on the inherent risks, and providing meaningful hardening and mitigation strategies. This will include Oracle and other database penetration tests and hands-on technical security evaluations and implementations.  Additionally, these individuals will be expected to develop subject matter expertise or focused capabilities in the topics of Database security and OSI Layer 7 application security.

 

Demonstrated technical experience with:

Ø  “Black Hat” style hacking techniques

Ø  Database Penetration Testing

Ø  Oracle

Ø  SQL

Ø  Other Databases

 

Responsibilities:

Ø  Conduct Database penetration tests

Ø  Conduct “Black Hat” related hacking techniques on internal systems

Ø  Conduct logical security audits and hands-on technical security evaluations and implementations

Ø  Develop subject matter expertise of focused capabilities in the topics of database security and database application and development security

Ø  Continually review, enhance and document database operating documentation, policies, and procedures

Ø  Proactively monitor the database systems and events to ensure secure services with minimum downtime and optimized performance

 

Required Qualifications: (based on levels of Junior to Senior experience)

Ø  1-5+ years of experience in Database administration

Ø  Progress with Microsoft, Oracle or MySQL Database Administrator Certification

Ø  1-5+ year of penetration testing experience

Ø  1-5+ year experience administrating internal and external database security

Ø  Knowledge of Oracle RDBMS 9/10x environments OR Microsoft SQL Server 2008/2005 OR MySQL 4/5x including installation, backup, restore and tuning

Ø  Familiarity with scripting in UNIX shell, PERL, or Python

Ø  1-5+ year experience in database design, performance monitoring and tuning, capacity planning, database backup and recovery, and SQL statement tuning

Ø  Strong database disaster recovery, architecture planning, implementation experience, and troubleshooting skills

Ø  Experience looking for security issues such as Cross Site Scripting, SQL Injection, Cookie Manipulation, Buffer Overflows, etc.

Ø  Familiarity with penetration testing tools such as BackTrack, Nessus, nmap, MetaSpolit, BurpSuite, vulnerability scanning tools, tcpdump, wireshark, Nikto, etc.

Ø  Excellent written and oral communication skills

Ø  Self motivated and able to work in an independent manner

Ø  Bachelor’s degree in an IT related field  or equivalent education or work experience

Ø  Must be able to obtain “Public Trust” level clearance. (SF-85 and SF-86 submission required).

 

Other Qualifications:

Ø  Familiarity with National Institute of Standards and Technology (NIST) Special Publications

Ø  Working knowledge of TCP/IP ports and protocols

Ø  Familiarity with web proxy tools such as Paros and/or Burp

Ø  Database administration, device configuration hardening and compliance verification experience

Ø  CISSP, GIAC, GWAPT, GPEN, CEH, or CCNA certification a plus

Ø  Advanced degree in an IT related field a plus

Ø  Knowledge of applied cryptographic protocols

Ø  Familiarity with XML, SOAP, and Ajax

Ø  Ability to conduct source code reviews.

 

About Blue Canopy Group:

“Blue Canopy was named and recognized number 28 out of 50 for mid-sized companies as a 2014 Top Workplace in the Greater Washington Area” 

Blue Canopy CEO Winner of Greater Washington Ernst & Young Entrepreneur of the Year Award - October 2012

 

·         Founded in 2001

·         In 2003, formed a wholly owned subsidiary, BC Fed Group, for classified work

·         Recipient of Washington Technology´s Fast 50 Government Contractors Award

·         Measured in the highest customer satisfaction percentile by Dun & Bradstreet

·         Two time award recipient of Inc. Magazine´s 500 fastest-growing privately held companies in the United States

·         Recognized by Gartner for our industry leading IP built for end to end IT management and formalized a joint venture on our solutions for technology around governance, performance management and project management

·         Deliver information security, technology integration, and enterprise performance management services as well as program management to Federal clients as well as Fortune 1000 companies

·         Large percentage of workforce supports National Security initiatives for DOD and Intelligence Community

 

Blue Canopy, LLC is an Equal Opportunity Employer.

 



Previous Applicants:

If you do not remember your password click here.

Back to Search Results

New Search


Powered By Taleo