Penetration Tester Expert

  • Tysons, VA, USA
  • Offensive Operations (O2)
  • Full-Time
  • Hybrid
  • 200,000-250,000 USD / Year
Apply now Refer
Job Description:

Offensive Technical Solutions (OTS) is looking for an experienced Penetration Tester to join our Offensive Operations (O2) department. In this role, you will conduct full-scope assumed breach and grey-box engagements. You will operate with high autonomy to uncover and exploit critical weaknesses in complex hybrid-cloud environments, sophisticated Active Directory architectures, and proprietary web applications. This role focuses on the identification and exploitation of high-impact vulnerabilities.


Requirements

  • Active TS/SCI with polygraph

Core Responsibilities

  • Conduct long-term assessments into Active Directory, including Certificate Services (ADCS), targeting complex misconfigurations
  • Maintain positive operational control of internal network devices with a variety of C2s including Sliver, Empire, Cobalt Strike, and in-house software
  • Identify and exploit misconfigurations across AWS and Azure environments. Focus on bypassing cross-account trust boundaries, escalating privileges via overly permissive IAM roles, and exploiting CI/CD pipelines
  • Execute complex lateral movement and credential harvesting using Kerberoasting, NTLM relaying, and forest trust manipulation. Use tools like BloodHound to map and exploit close attack paths
  • Conduct testing of modern web stacks (React, Next.js) and microservices. Identify sophisticated programmatic and business logic flaws while evading popular commercial WAF solutions
  • Translate technical findings into reports for stakeholders, providing actionable remediation paths for system owners. Were focused on organizational impact first

Desired Qualifications

  • Documented CVEs and/or bug bounty experience
  • Documented tool/exploit development
  • Certifications are not a strict requirement
  • Certifications like OSCE3, OSEP, OSED, OSWP, OSCP, CRTO, CRTL, CWEE, CAPE, CPTS, CWES, GXPN, and GPEN are a plus
  • Five (5) plus years in offensive security space, e.g. qualified operator, penetration tester, red team operator. Experience and skill trumps time.

Benefits

  • We offer competitive compensation, medical benefits, and learning and development opportunities
  • Our comprehensive benefits package includes healthcare, retirement, continuing education, and time off
  • We want you to learn with us that's why we offer financial assistance for certifications and conferences