ABOUT THE ROLE
A-LIGN employs a business model that builds on the best of what the largest corporate security firms have to offer, such as the ability to offer high quality professionals a variety of project experience with high profile clients. What sets us apart is that we have eliminated time reporting, chargeability goals, and sales pressure.
As a pen tester with A-LIGN, you will be part of a dedicated pen testing team whose sole purpose is to test and improve the security of our clients’ systems and data, across a wide range of industries. The team utilizes a broad range of tools and is constantly evolving to discover new vulnerabilities and security weaknesses.
Your responsibilities will include planning and executing penetration testing under the direction of a member of the management team.
REPORTS TO: Managing Consultant
PAY CLASSIFICATION: Full-Time
RESPONSIBILITIES
-
Execute internal, external, wireless, and web application pen tests
-
Execute social engineering tests, including phishing, vishing, and physical
-
Execute vulnerability scans and assessments
-
Compile and write client reports
-
Navigate the Kali system from the command line only
-
Create, modify, move, and write files and documents from the command line only
-
Create and write Bash scripts from the command line
-
Reimage devices and virtual machines with Kali Linux
MINIMUM QUALIFICATIONS
EDUCATION
Currently pursuing a degree in cybersecurity, management information systems, computer science, or combination of skills and experience.
EXPERIENCE
Experience working on cloud infrastructure, system administration, network administration, security operations. Experience performing network and application pen tests.
CERTIFICATIONS
One of the following certifications:
- OSCP/eCPPT or other related penetration testing certifications.
- eWPT or other applicable web app cert.
SKILLS
- Hands on experience performing penetration testing from a network layer to web application layer including competition of a quality report
- Hands on experience with CTF and exploitation tools, HackTheBox profile a plus
- Background and understanding on networking, firewalls, and subnets
- Previous IT Administrator experience working with both Windows and Linux systems
- Security Operations/Incident Response experience a plus, but not required
- Active member of any other security focused community
- Understanding of security best practices
- Thrives in a fast-paced environment
- Excellent communication skills
- Ability to work individually as well as collaboratively
- A high degree of motivation
- A security focused mindset
- Understanding and experience with AWS, Azure, and GCP
Strong desire to learn penetration testing from the ground up including:
- Internal and External testing both cloud and legacy
- Wireless, and web applications and API
- Mobile Application testing
- Social engineering tests (phishing, vishing, and physical)
- Vulnerability scans and assessments
- Compile and write client reports
- Utilize Kali Linux and security tools within the distro
- Create, modify, move, and write files and documents from the command line only
- Create and write Bash scripts from the command line
- Reimage devices and virtual machines with Kali Linux
BENEFITS
- Employer Paid Life Insurance and Disability Insurance
- Generous Paid Time Off Plan
- Virtual Employment
- Technology Allowance
- Paid Office Closure December 24-January 1
- Paid Holidays Schedule
- Certification Reimbursement
HOW DO WE EVALUATE CANDIDATES?
We are looking for individuals who can demonstrate they have the knowledge, skills, and abilities that are needed to perform their job successfully. These core competencies include:
-
Knowing My Organization – Do you demonstrate an understanding of A-LIGN’S product/service offerings? Are you able to leverage organizational values in how work is accomplished?
-
Focusing on Customers – Do you understand and anticipate customer needs? Are you able to develop a positive relationship with the customers? Do you provide high-quality products and services to exceed expectations?
-
Showing Resilience – Do you convey a clear sense of self-confidence to influence future events? Are you able to stay calm and composed under pressure? Do you effectively resolve conflicts and disagreements?
-
Engendering Confidence and Trust – Do you instill confidence and trust by demonstrating dependability and reliability? Do you portray trustworthiness by being open and honest?
-
Processing Details – Do you ensure projects are completed on time by keeping work on schedule? Are you able to thoroughly work on tasks and provide high quality work? Do you follow rules and established processes to minimize risks?
-
Structuring Tasks – Do you plan your work and set clear priorities? Are you able to uphold ethical standards and fulfill commitments while maintaining high levels productivity and output?
ABOUT A-LIGN
A-LIGN is the leading provider of high-quality, efficient cybersecurity compliance programs. Combining experienced auditors and audit management technology, A-LIGN provides the widest breadth and depth of services including SOC 2, ISO 27001, HITRUST, FedRAMP, and PCI. A-LIGN is the number one issuer of SOC 2 and HITRUST and a top three FedRAMP assessor. To learn more, visit a-lign.com.
Come Work for A-LIGN!
Apply online today at A-LIGN.com and learn about life at A-LIGN by following our Careers at A-LIGN LinkedIn!
A-LIGN is an Equal Opportunity Employer! Minorities, women, disabled, and veterans encouraged to apply!