RIS has an immediate job opening for a Cyber Penetration Tester to support a US Federal Agency contract to enable mission accomplishment by performing autonomous penetration testing to ensure appropriate security controls and safeguards are in place and function as intended for the designated systems.The penetration test are conducted in accordance with NSA INFOSEC Assessment Methodology (IAM) and INFOSEC Evaluation Methodology (IEM), and includes discovery activities, attack planning, test follow through, and detailed reporting on test scenarios, findings, and recommendations. Identify current and emerging threat trends, threat actors using a variety of cyber threat intelligence sources. Provide technical assessments of cyber threat actor use of cyber vulnerabilities, exploits, payloads, access infrastructures, and mission platforms. Conduct all-source research on cyber threat actors and intrusion sets (eg, APTs); evaluate both technical and Intel reporting for cyber threat activities of interest. Conduct detailed analysis of incidents, threats, vulnerabilities, tactics, techniques and procedures (TTP), and other malicious and non-malicious indicators. Must have a current TS/SCI security clearance Work Location: Rosslyn, VA Job Description: Conducts network or software vulnerability assessments and penetration testing utilizing reverse engineering techniques. Perform vulnerability analysis and exploitation of applications, operating systems or networks. Identifies intrusion or incident path and method. Isolates, blocks or removes threat access. Evaluates system security configurations. Evaluates findings and performs root cause analysis. Performs analysis of complex software systems to resolve both functionality and intent of software systems. Resolves highly complex malware and intrusion issues. Contributes to the design, development and implementation of countermeasures, system integration, and instruments specific to Cyber and Information Operations. May prepare and presents technical reports/ briefings. May perform documentation, vetting and utilizing identified vulnerabilities.Job Responsibilities:Shall perform activities including:A cents € cents Develop and maintain a multi-year schedule for penetration testing activitiesA cents € cents Interface and coordinate with 3rd party organizations performing penetration testing for DS/CTS/CMOA cents € cents Interface and coordinate with system owners to establish targets for testing, test schedule, test goals, and rules of engagement A cents € cents Lead efforts that document and design improvement strategies for discovered vulnerabilities and monitoring gapsA cents € cents When authorized, exploit known vulnerabilities against Department systems in a controlled manner to ensure Department defenses can detect exploitationA cents € cents Plan and coordinate Department participation in support of each specific penetration testA cents € cents Design, perform and report on penetration testing of systems to satisfy the NIST 800-53 CA-8 security control and using methodologies that may include, NIST SP 800-115, Penetration Testing Execution Standard (PTES), and Information Systems Security Assessment Framework (ISSAF)A cents € cents Produce reports and conduct administration briefings on test activities, scenarios, results and recommendationsA cents € cents Stay abreast of current attack vectors and unique methods for exploitation of computer networksA cents € cents Develop unique exploit code and attack vectors to conduct penetration testsA cents € cents Render expertise and guidance to other cyber security programs regarding intrusion methodsRequired Skills:A cents € cents Experience with network intrusion detection and response operations (Protect, Defend, Respond and Sustain methodology)A cents € cents Experience in the detection, response, mitigation, and/or reporting of cyber threats affecting client networks and one or more of the following:A cents € cents Experience in computer intrusion analysis and incident response A cents € cents Working knowledge of Intrusion detection/protection systemsA cents € cents Knowledge and understanding of network devices, multiple operating systems, and secure architecturesA cents € cents Working knowledge of network protocols and common services A cents € cents System log analysisA cents € cents Experience responding to and resolving situations caused by network attacksA cents € cents Ability to assess information of network threats (scans, computer viruses or complex attacks)A cents € cents Perform information technology security research to remain current on emerging technology trends and develop exploits for disclosed and undisclosed vulnerabilities A cents € cents Contributes to developing and implementing instruments for penetration testing and early warning of weaknesses or possible incidents building on methodologies as promulgated by NIST, ISO, etc. to ensure useful, measurable, and repeatable methods applied to quantifying risk A cents € cents Selects, installs, and configures security testing platforms and resources or develop instruments and procedures for penetration testsA cents € cents Performs penetration testing using standard penetration resources (Metasploit, Nmap, Nessus, Burp Suite, etc.)A cents € cents SIEM content Analysis, Development and TestingA cents € cents Experience with SIEMS (such as NetWitness, Splunk, SumoLogic, QRadar)A cents € cents Experience with EDR solutions (Carbon Black, Crowdstrike, FireEye, SentinelOne)A cents € cents Familiarity with packet analysis to include: HTTP Headers & Status codes, SMTP Traffic & Status codes, FTP Traffic & Status CodesA cents € cents Practical experience of integration of COTS or open source instrumentsA cents € cents Personality traits: Naturally curious and inquisitive nature; perseverant and hardworking; loves solving problems and puzzles; critically rigorous; uncompromising integrityA cents € cents Demonstrated ability to document processesA cents € cents Proficiency with MS OfficeA cents € cents Must be able to work collaboratively across teams and physical locationsA cents € cents Willing to work rotating shiftsRequired Certifications:Possess at least one certification, such as:A cents € cents Certified Information Systems Security Professional (CISSP)A cents € cents GIAC Penetration Tester (GPEN)A cents € cents GIAC Certified Incident Handler (GCIH)A cents € cents GIAC Network Forensic Analyst (GNFA)A cents € cents GIAC Intrusion Analyst (GCIA)Desired Skills:A cents € cents Prior experience working in any of the following: Security Operations Center (SOC); Network Operations Center (NOC); Computer Incident Response Team (CIRT)A cents € cents Experience with RSA Netwitness, Splunk, FireEye NX, EX, HX, AX, Carbon Black Response, RSA ArcherA cents € cents Experience with firewalls, routers or antivirus appliancesA cents € cents Experience working on a 24x7x365 watch desk environment A cents € cents Experience with industry standard help desk instrumentsA cents € cents Knowledge of WAN/LAN concepts and technologies Desired Certifications:Possess at least one relevant certification, but not limited to the following:A cents € cents GIAC Certified Enterprise Defender (GCED)A cents € cents GIAC Security Expert (GSE)A cents € cents Certified Information Security Manager (CISM)A cents € cents Certified Ethical Hacker (CEH)A cents € cents Global Industrial Cyber Security Professional (GICSP)A cents € cents Certified SCADA Security Architect (CSSA) Education:BS Degree in Computer Science/Electrical Engineering, Engineering, Science or a related field and 8+ years of relevant work experience are required. Occasional travel within CONUS and OCONUS is expected165683Raytheon is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, creed, sex, sexual orientation, gender orientation, gender identity, national origin, disability, or protected Veteran status.