Cyber Security Penetration Tester (Active Polygraph Required)

Clearance Level
Top Secret SCI + Polygraph
Cyber Security
McLean, Virginia

REQ#: RQ136905

Travel Required: Less than 10%
Public Trust: None
Requisition Type: Regular

Seize your opportunity to make a personal impact as a SCA Pen Tester supporting customer activities. GDIT is your place to make meaningful contributions to challenging projects and grow a rewarding career.

At GDIT, people are our differentiator. As a SCA Pen Tester​, you will help ensure today is safe and tomorrow is smarter. Our work depends on a SCA Pen Tester joining our highly skilled team to be a premier provider of cyber security services to the customer.  We provide consummate cyber security risk management “as a service” platform across multiple fabrics and centers.  We have responsibility to ensure operational IT capabilities provide the client with necessary timeliness, accuracy and security of information demanded from all our highly professional roles. Be the change, lead our change – join us!


  • Conduct internal penetration testing and vulnerability assessment of servers, web applications, web services, and databases
  • Manually exploit and compromise operating systems, web applications, and databases
  • Examine results of web/OS scanners, scans and static source code analysis
  • Identify vulnerabilities, misconfigurations, and compliance issues
  • Write final reports, defend all findings to include the risk or vulnerability, mitigation strategies, and references
  • Ability to meet and coordinate with various audiences to include developers, system administrators, project managers, and senior government stakeholders
  • Provide security recommendations for developers, system administrators, project managers, and senior government stakeholders
  • Report vulnerabilities identified during security assessments
  • Write penetration testing Rules of Engagements (RoE), Test Plans, and Standard Operating Procedures (SOP)
  • Conduct security reviews, technical research, and provided reporting to increase security defense mechanisms
  • Experience with NIST 800-53 and Risk Management Framework


  • Education: Bachelors (Computer engineering, Computer Science, Electrical Engineering, Information systems, Information Technology, Cybersecurity, or a closely related discipline)
  • Required Experience: 4+ yrs
  • Desired Technical Skills: Board certified in relevant security programs (e.g., CISSP, CISM, CISA, CEH, NCSF, CAP); Professional certifications in cloud technologies – Amazon and Microsoft Azure; Understanding of FISMA, experience with penetration testing of wireless networks (WIFI) and Internet of Things (IoT) devices, experience with AWS Cloud Security
  • Security Clearance Level: TS/SCI with active polygraph
  • Required Skills and Abilities: Strong documentation and writing skills
  • Desired Certifications: CEH – Certified Ethical Hacker Certification, CPT – Certified Penetration Tester
  • Location: McLean, VA- On Customer Site


  • 401K with company match
  • Comprehensive health and wellness packages
  • Internal mobility team dedicated to helping you own your career
  • Professional growth opportunities including paid education and certifications
  • Cutting-edge technology you can learn from
  • Rest and recharge with paid vacation and holidays

About Our Work

We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.

COVID-19 Vaccination

GDIT does not have a vaccination mandate applicable to all employees. To protect the health and safety of its employees and to comply with customer requirements, however, GDIT may require employees in certain positions to be fully vaccinated against COVID-19. Vaccination requirements will depend on the status of the federal contractor mandate and customer site requirements.

GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.