Job Description We are seeking a Full Time Penetration Tester to join our team! You will be responsible for conducting network penetration testing and web application security testing across production and development environments. You will also be responsible for technical testing beyond automated tool validation, including full exploitation and leveraging of access within multiple environments. You will conduct scenario-based security testing/red-teaming to identify gaps in detection and response capabilities of client networks and develop comprehensive and accurate reports and presentations for both technical and executive audiences. You will communicate findings and strategy to client stakeholders including technical staff. This position will require occasional travel to the client site located in Washington, DC. Qualifications: 5+ years of experience in two or more of the following: network vulnerability assessments, web application security testing, network penetration testing or red teaming exercises. Experience with Windows environments and Active Directory concepts Experience with various tools, including Burp Suite Pro, Metasploit, Empire, BloodHound, Nessus, WebInspect, AppDetective, Knowledge of application, database and web server design and implementations Knowledge of open security testing standards and projects, including OWASP Ability to clearly convey results in formal technical reports and deliver briefings to senior client staff Ability to obtain a security clearance required Additional Qualifications: Experience with programming at least one of the following: Perl, Python, Ruby, Bash, C, PHP, SQL or Java Experience with assembly languages or reverse engineering Experience with wireless LAN security and offensive wireless techniques and tools BS degree in Computer Engineering, Computer Science or a related technical field DoD-8570 Certification OSCP, OSCE or OSWE or SANS Certifications All applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information. Trafford Security is a leading provider of comprehensive cybersecurity services from cutting edge penetration testing to audit and compliance consulting services. We are currently expanding our role with new and existing clients located in Washington, DC and across the country and we are looking for highly qualified, passionate pen testers.