IT Security Penetration Tester (Certified Ethical Hacker (CEH) or Comptia Pentest+)

Global Information Services
Tallahassee, FL
12 Feb 2025

Vacancy expired!

Please DO NOT Apply unless YOU:1)

Are available to Start in Mar 2023 and work 100% on-site from day one.2) have all the Required skill set and have worked as a "IT Security Penetration Tester (Certified Ethical Hacker (CEH) or Comptia Pentest+)" in a large & Complex IT Environment. Prefer Public Sector Environment3) can meet the min required experience • At least 2 years of experience in conducting penetrations tests on internal and external enterprise application systems.• Certified Ethical Hacker (CEH) or Comptia Pentest+ certified with proven work experience.• At least 4 years of combined IT and security work experience with a broad range of exposure to systems analysis, networking, application development, database design, and administration.• Technical knowledge of routers, firewalls, Windows server, application development (.NET, SAP), and security systems.• Knowledge of Common Vulnerabilities and Exposures (CVE) and Common Vulnerability Scoring System (CVSS). 4) can provide at least 3 verifiable experience ((i.e., names, e-mail addresses, phone numbers of contact person(s), description of work performed, dates of hire, etc.) from completed and/or substantially completed jobs that closely match this request + fill out a skill Matrix5) can agree to provide a criminal history record check. The Criminal history record checks must be conducted through the state crime bureau in each state where the consultant indicates residence, employment, education and/or training over the past ten years. YOUR STATUS WILL ALSO BE VERIFIED USING E-VERIFY SYSTEM.6) Are able to sign a form stating submission with our company, current with Child Support obligations and Tax obligations.7) Can come for a Mandatory F-2-F interview at your own cost OR agree to a MS Teams interview if out of town candidate.8) have a Competitive Rate

US citizens and those authorized to work in the US are encouraged to apply. We are unable to sponsor H1b candidates at this time.

NOTE: GIS will utilize the U.S. Department of Homeland Security's E-Verify system to verify the employment eligibility of all persons employed during the term of the Contract

Note to Consulting Companies : ANY CONSULTANT’S RESUME YOU SEND ME “MUST” BE ON YOUR COMPANY’S PAYROLL, NO H1-VISA TRANSFER, NO PRO-MARKETING, NO SISTER COMPANY RESUMES.

The resume should have the DIRECT contact info and email of the candidate otherwise the candidate will NOT be considered.

ALL H1 candidates including those onWOULD need to provide I-797 (no exceptions).Each staff member assigned to this project must have a background screening that is equivalent to a Level Two (2) screening standard.This is a fixed fee/hourly based project which is inclusive of travel, lodging, per diem expenses and all other costs associated with the completion of the associated tasks.

Mandatory Experience• At least 2 years of experience in conducting penetrations tests on internal and external enterprise application systems.• Certified Ethical Hacker (CEH) or Comptia Pentest+ certified with proven work experience.• At least 4 years of combined IT and security work experience with a broad range of exposure to systems analysis, networking, application development, database design, and administration.• Technical knowledge of routers, firewalls, Windows server, application development (.NET, SAP), and security systems.• Knowledge of Common Vulnerabilities and Exposures (CVE) and Common Vulnerability Scoring System (CVSS).• Experience in working with third parties to coordinate, monitor, respond to and coordinate cyber security threats, incidents, and mitigations and responses.• In-depth knowledge of parameter manipulation, session hijacking, and cross-site scripting.• Ability to communicate technical information verbally and in writing.• Ability to establish and maintain effective working relationships with different teams.• Experience working independently and as a project team member in security administration.• Experience developing security administration reports including access review documents.

Education/Certifications: All Consultants must have earned a bachelor’s degree in Computer Science, Management Information Systems (MIS), or other technology related field or equivalent work experience of one (1) year system’sexperience for each year of education required.

Preferred Experience: • Information Security Certifications: CISSP, CISA, CISM, CCIE Security, CompTIA, etc.• Experience in IT security related to application development and code reviews• Experience as a project team leader in security administration

Required Duties and Responsibilities of Consultant shall include but are not limited to:• Performs security penetration testing and assessments of enterprise infrastructure components, network, and applications.• Research and document the Department's system, network structure, and possible penetration sites.• Assesses infrastructure components for compliance with statutory and regulatory requirements.• Performs vulnerability scanning and provides guidance on the mitigation of vulnerabilities• Performs security assessments of new technologies, new applications, workstations, networks, and network devices prior to implementation.• Conducting penetration tests once new security features have been implemented.• Communicates methods employed and findings upon completion of assessments.• Prepares penetration testing reports.• Provides direct support to the business and IT staff for security related issues.• Creation and maintenance of security related documentation.• Security support off-hours work as required, including weekends, holidays, and 24/7 on call responsibilities.

Work TimeframesThe selected individuals will occupy a full time position, working up to 40 hours per week. Standard work times will be (or approximately) standard business hours (8a – 5p Monday-Friday). Due to new hardware installations, upgrades and maintenance, weekend and/or after hours work may be required on an exception basis. We do not anticipate overtime, but if required, the pay would be the hourly rate, not time and a half.

"When replying please make sure to list your (All Inclusive) Compensation requirements ".Note : This is a Full Time ON SITE Contract Position with NO REMOTE options allowed # of positions = 1ESTIMATED Start date : Mar 2023

No phone calls please.Local Citizens are encouraged to ApplyNo relocation assistance provided.ONLY Candidates with an exact match will be contactedCandidates should be authorized to work in the US.
  • ID: #49156174
  • State: Florida Tallahassee 32301 Tallahassee USA
  • City: Tallahassee
  • Salary: Depends on Experience
  • Job type: Contract
  • Showed: 2023-02-12
  • Deadline: 2023-04-11
  • Category: Systems/networking