Halvik Corp delivers a wide range of services to 13 executive agencies and 15 independent agencies. Halvik is a highly successful WOB business with more than 50 prime contracts and 500+ professionals delivering Digital Services, Advanced Analytics, Artificial Intelligence/Machine Learning, Cyber Security and Cutting Edge Technology across the US Government. Be a part of something special!
We are seeking an enthusiastic and technically proficient Penetration Tester to join our growing security team. In this role, you will conduct hands-on penetration testing for both web applications and enterprise infrastructure while supporting advanced engagements such as adversary simulation, adversary emulation, and red teaming initiatives. The ideal candidate excels at technical problem-solving, effective communication, and collaborative stakeholder engagement.
Key Responsibilities
- Plan, execute, and document comprehensive penetration tests on web applications and core infrastructure, identifying vulnerabilities and weaknesses.
- Simulate real-world threats through adversary simulation/emulation and participate in internal red team exercises.
- Create and deliver clear, actionable reports and risk assessments, translating technical findings into business-relevant recommendations.
- Collaborate closely with IT and security teams to discuss findings, remediation strategies, and security improvements.
- Continuously research and stay up-to-date with evolving penetration testing techniques, tools, TTPs, and threat actor trends.
- Participate in stakeholder meetings, clearly conveying testing methodologies, progress, and risk implications.
- Support the development and growth of security testing methodologies and tooling.
Required Qualifications
- 2+ years' experience with hands-on penetration testing of web applications and/or infrastructure.
- Solid knowledge of both Windows and Linux OS administration, including common misconfigurations and privilege escalation techniques.
- Familiarity with core offensive tools (e.g., Burp Suite, Metasploit, Cobalt Strike, Empire, Kali or similar).
- Strong written/verbal communication skills and a collaborative, consultative approach to stakeholder management.
- Analytical thinking, curiosity, and adaptability to new challenges.
Preferred Qualifications
- Proven experience with adversary simulation, adversary emulation, or red team operations.
Preferred Certifications
- Offensive Security Certified Professional (OSCP)
- Red Team Ops (CRTO)
- Threat Hunting Professional (THTP)
- Certified Red Team Professional (CRTP)
- GIAC Penetration Tester (GPEN)
- Any relevant SANS/GIAC certifications related to adversary simulation or red teaming
Additional Skills
- Experience scripting in at least one language (Python, PowerShell, Bash, etc.)
- Ability to translate technical risk into business impact for both technical and non-technical stakeholders.
Halvik offers a competitive full benefits package including:Company-supported medical, dental, vision, life, STD, and LTD insuranceBenefits include 11 federal holidays and PTOEligible employees may receive performance-based incentives in recognition of individual and/or team achievements.401(k) with company matchingFlexible Spending Accounts for commuter, medical, and dependent care expensesTuition AssistanceCharitable Contribution matching
Halvik Corp is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status.
Halvik's pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
