Pentester III_SCON

At Accenture Federal Services, nothing matters more than helping the US federal government make the nation stronger and safer and life better for people. Our 13,000+ people are united in a shared purpose to pursue the limitless potential of technology and ingenuity for clients across defense, national security, public safety, civilian, and military health organizations. Join Accenture Federal Services, a technology company within global Accenture. Recognized as a Glassdoor Top 100 Best Place to Work, we offer a collaborative and caring community where you feel like you belong and are empowered to grow, learn and thrive through hands-on experience, certifications, industry training and more. Join us to drive positive, lasting change that moves missions and the government forward! The work The Penetration Tester will be responsible for planning, conducting, and reporting on comprehensive penetration tests across networks, infrastructure, and web applications. This role requires demonstrated expertise identifying, exploiting, and validating vulnerabilities to assess the effectiveness of the organization’s security posture. Candidates will leverage industry‑standard methodologies and threat intelligence to emulate real‑world threat actors’ tactics, techniques, and procedures. The Penetration Tester will collaborate with cybersecurity teams to enhance detection capabilities, strengthen defenses, and support automation efforts. Success in this role requires strong technical communication skills, the ability to engage both technical and non‑technical audiences, and hands‑on experience with advanced exploitation tools and techniques. Key responsibilities: • Plan and perform penetration tests across networks, systems, and enterprise infrastructure. • Conduct web application penetration testing aligned to OWASP Top 10 vulnerabilities. • Apply exploitation concepts including phishing, social engineering, buffer overflows, fuzzing, covert channels, and data exfiltration. • Use threat intelligence to emulate known adversary behaviors and TTPs. • Utilize tools such as BloodHound, Burp Suite, Cobalt Strike, Metasploit, and Mimikatz. • Develop automation scripts and tooling to support penetration testing processes. • Partner with cybersecurity teams to improve automation, detection, and defensive strategies. • Communicate penetration testing methods, findings, and recommendations to stakeholders. • Contribute to continuous improvement of red, blue, and purple team assessment processes. Here’s what you need: • Bachelor’s degree • At least 5 years of penetration testing experience • Hands‑on experience with OSSTMM, OWASP, NIST, PTES, or ISSAF methodologies • Demonstrated proficiency with penetration testing toolsets and information‑gathering techniques • Must hold at least one of the following baseline certifications: CEH, PenTest+, or GPEN • Must also hold at least one of the following advanced certifications: GXPN, OSCP, CRTOP, CMWAPT, CEPT, CPT, LPT, C|PENT, or a Government‑approved equivalent Nice to have: • Experience performing red, blue, and purple team assessments • Additional advanced offensive security certifications • Experience developing custom exploits or security testing frameworks Eligibility requirements: • US Citizen (no dual citizenship) • Must be eligible to obtain a government Public Trust Clearance • Willingness to travel up to 25% As required by local law, Accenture Federal Services provides reasonable ranges of compensation for hired roles based on labor costs in the states of California, Colorado, Hawaii, Illinois, Maryland, Massachusetts, Minnesota, New Jersey, New York, Washington, Vermont, the District of Columbia, and the city of Cleveland . The base pay range for this position in these locations is shown below. Compensation for roles at Accenture Federal Services varies depending on a wide array of factors, including but not limited to office location, role, skill set, and level of experience. Acce ... (truncated, view full listing at source)