Returning Candidate?

Security Assessment and Penetration Testing SME

Security Assessment and Penetration Testing SME

Job Location 
VA-Crystal City
# of Openings 
Security Clearance 
Active Secret
Percentage of Travel Required 
10% or less
Regular Part-Time

More information about this job


  • Perform network mapping, vulnerability scanning, phishing assessments, penetration tests, and OS security assessments
  • Support web application, database and wireless assessments
  • Deliver services consistent with U.S. Department of Homeland Security services documented in the Rules of Engagement (ROE) agreement
  • Perform penetration testing and corresponding risk assessments to test the adequacy and effectiveness of security control measures
  • Provide an analysis of the assessment results, generate the formal assessment report, and conduct an out-brief to key stakeholders
  • Manage external dependencies and logistics
  • Conduct root cause analysis of findings to determine the most effective approach for possible remediation
  • Provide recommendations that are actionable, thorough, and address systemic issues throughout the end customer’s system and network architecture
  • Assist the Program Manger with preparation of status reports and briefings


  • Education:
    • College Degree
  • Required Knowledge:
    • Experience with Internal Penetration Testing that include the following systems and services:
      • Switches
      • Routers
      • Directory Servers (Active Directory, LDAP, Novell)
      • Core infrastructure services (DNS, DHCP, WINS)
      • File and Print Sharing Services
      • User Workstations
      • Database Servers
      • Internal Client-Server Applications
      • Internal Web Applications
    • Experience with External Penetration Testing that include the following systems and services: 
      • Firewalls
      • External Routers
      • Web Servers
      • Domain Name Servers (DNS)
      • Remote Access (VPNs, SSL VPNs, etc.)
      • Secure Encrypted Connections (site-to-site or B2B VPNs)
      • Email Systems
      • File Transfer Servers
    • Experience with Wireless Penetration Testing from three perspectives:
      • Signal space
      • Client-side/Mobile Devices
      • Infrastructure
  • Preferred Knowledge:
    • CISSP, OSCP, GREM, CSEC certifications or equivalents preferred
    • College degree in Information Security or relevant field

Other Responsibilities

  • Perform other tasks consistent with the goals and objectives of the department/contract
  • Perform other duties as assigned by Sr Program Manager


Invest in a company that invests in you! Copper River provides its employees with ample opportunities for career growth and development. Tuition reimbursement is offered to help employees further their education and skillset. Other perks include Open Leave, 401k matching with immediate vesting, Medical, Vision, and Dental coverage.


EEO/AA Employer Minorities/Females/Vets/Disability


Disclaimer: The above statements are intended to describe the general nature and level of work performed by employees assigned to this classification. They are not intended to be construed as an exhaustive list of all responsibilities, duties and skills required of personnel so classified.