Penetration Tester (Ethical Hacker)

About the position Newberry Group is a performance-driven government services and solutions firm that provides security compliance, program governance, consulting, and customized solutions for public sector clients nationwide. T he strength of our company is a direct reflection of our highly skilled and talented workforce. We are seeking a skilled project-based Penetration Tester to join our team in support of the US Department of Agriculture. This role involves simulating real-world cyberattacks to identify vulnerabilities in systems, networks, and applications, ensuring compliance with security standards and strengthening the client’s overall security posture. This position is project-based/part-time and expected to last sixty to ninety days. This is a telecommute position with the potential for some domestic travel. The applicant must reside in the United States and be eligible to obtain a Public Trust clearance. Responsibilities • Plan and Execute Penetration Tests • Conduct black-box, gray-box, and white-box testing on applications, networks, and cloud environments. • Perform Vulnerability Assessments • Use automated tools and manual techniques to identify and validate security weaknesses. • Exploit and Document Findings • Simulate attacks to demonstrate potential impact and provide detailed technical reports with remediation steps. • Collaborate with Security and IT Teams • Work closely with stakeholders to prioritize fixes and verify remediation through retesting. • Stay Current on Emerging Threats • Continuously research new vulnerabilities, attack vectors, and security tools to maintain cutting-edge expertise. Requirements • Strong understanding of network protocols , web application security , and operating systems . • Proficiency with penetration testing tools (e.g., Metasploit, Burp Suite, Nmap). • Familiarity with compliance frameworks (e.g., NIST , ISO 27001 , PCI DSS ). • Excellent analytical and problem-solving skills. • Ability to write clear, actionable reports for technical and non-technical audiences. • 2–5 years in cybersecurity roles, with at least 1 year focused on penetration testing. Nice-to-haves • CEH (Certified Ethical Hacker) • OSCP (Offensive Security Certified Professional) • CPT (Certified Penetration Tester) • Experience in red team engagements or security audits is a plus. Apply tot his job

Apply tot his job

Apply To this Job