Jobs

Table of Contents

  1. Senior Pentester
  2. Junior Pentester
  3. Web Developer
  4. Data Scientist
  5. Devops
  6. Project Manager

Job Title: Senior Penetration Tester

Location: Charleston, SC (home base) travelling required domestically and internationally

Required

  • 5+ years technical Cybersecurity expertise.
  • 5+ years experience in penetration testing, computer network attack (CNA), and/or computer network defense (CND).
  • 5+ experience with basic scripting languages including bash and/or PowerShell.
  • Experience with at least one object-oriented programming language (Python, Ruby, Java, etc.).
  • Must be US citizen (must be willing to submit to federal, state, and local background checks and other requirements).
  • One or more professional certifications including OSCP, GPEN, GWAPT, etc.
  • Possess in-depth knowledge of Windows, Unix, TCP/IP, IDS/IPS, and web content filtering.
  • Demonstrated ability to:
    • Adhere to the highest standards of honesty and scientific and business integrity.
    • Think critically about complex problems and situations.
    • Consider emerging vulnerabilities and threats from within the context of organizational risk and business impact(s).
    • Develop novel attack vectors based on newly discovered vulnerabilities.
    • Develop home-grown software solutions and utilities for computer network attack (CNA) and computer network defense (CND).
    • Apply industry standards and best practices including the Penetration Testing Execution Standard (PTES) and the Mitre Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK) Framework.
    • Go beyond automated and “push-button” attack tools and utilities.
  • Possess a basic understanding of regulatory standards and requirements including the Health Insurance Portability and Accountability Act (HIPAA), Payment Card Industry Data Security Standard (PCI-DSS), and the Gramm-Leach-Bliley Act (GLBA).

Responsibilities:

  • Project-Based
    • Develop and deliver test strategies for attacking and assessing complex and distributed systems.
    • Scope and execute penetration tests based on customer goals and objectives.
    • Provide representative tactics, techniques, and procedures (TTPs) for opportunistic, advanced, and sophisticated attackers according to customer goals and objectives.
    • Provide technical leadership and guidance for junior penetration testers during all phases of an assessment.
    • Prepare clear and concise situation reports and activity summaries for BLS customers and senior leadership.
    • Execute verification and validation testing for customer mitigations and fixes.
    • Develop and deliver walkthrough(s), proof(s) of concept (PoCs), articles, and formal presentations.
  • Research and Development (R&D)
    • Attend and/or present at professional conferences and events.
    • Conduct independent research for:
    • The development of novel attack methods.
    • Discovering new and/or undisclosed vulnerabilities.

Contact

spt201701@blacklanternsecurity.com


Job Title: Junior Penetration Tester

Location: Charleston, SC (home base) travelling required domestically and internationally

Required

  • Technical Cybersecurity experience.
  • Experience in penetration testing, computer network attack (CNA), and/or computer network defense (CND).
  • Experience with basic scripting languages including bash and/or PowerShell.
  • Experience with at least one object-oriented programming language (Python, Ruby, Java, etc.).
  • Must be US citizen (must be willing to submit to federal, state, and local background checks and other requirements).
  • Knowledge of Windows, Unix, TCP/IP, IDS/IPS, and web content filtering.
  • Demonstrated ability to:
    • Adhere to the highest standards of honesty and scientific and business integrity.
    • Think critically about complex problems and situations.
    • Consider emerging vulnerabilities and threats from within the context of organizational risk and business impact(s).
    • Develop novel attack vectors based on newly discovered vulnerabilities.
    • Develop home-grown software solutions and utilities for computer network attack (CNA) and computer network defense (CND).
    • Apply industry standards and best practices including the Penetration Testing Execution Standard (PTES) and the Mitre Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK) Framework.
    • Go beyond automated and “push-button” attack tools and utilities.
  • Possess a basic understanding of regulatory standards and requirements including the Health Insurance Portability and Accountability Act (HIPAA), Payment Card Industry Data Security Standard (PCI-DSS), and the Gramm-Leach-Bliley Act (GLBA).

Responsibilities:

  • Project-Based
    • Help develop and deliver test strategies for attacking and assessing complex and distributed systems.
    • Provide representative tactics, techniques, and procedures (TTPs) for opportunistic, advanced, and sophisticated attackers according to customer goals and objectives.
    • Prepare clear and concise situation reports and activity summaries for BLS customers and senior leadership.
    • Execute verification and validation testing for customer mitigations and fixes.
    • Develop and deliver walkthrough(s), proof(s) of concept (PoCs), articles, and formal presentations.
  • Research and Development (R&D)
    • Attend and/or present at professional conferences and events.
    • Conduct independent research for:
    • The development of novel attack methods.
    • Discovering new and/or undisclosed vulnerabilities.

Contact

spt201701@blacklanternsecurity.com


Job Title: Software Developer - Web Dev

Location: Charleston, SC

Responsibilities:

Development of a threat management web application that includes:

  • Building out CRUD operations for data
  • Building interfaces for triaging and investigating indicators of compromise.
  • Provide dashboards for customers that show data relating to these activities.

Requirements:

  • Front-End
    • Knowledge and experience with:
      • Web fundamentals like HTML, JavaScript, and CSS
      • CSS preprocessors like Sass or LESS.
      • JavaScript frameworks like AngularJS, React, or VueJS.
      • JS-based build tools like Webpack, Grunt, Gulp, and Bower.
      • Front-end (CSS) frameworks like Foundation or Bootstrap. (Preference for Bootstrap)
  • Back-End
    • Knowledge and experience with:
      • API design and development
      • CRUD (Create, Read, Update, Delete)
      • RESTful Services
      • Server-side languages like Go, PHP, Python, Ruby, Java, and .Net. (Preference for Python and more specifically the Flask framework)
      • Database technologies like SQL (Preference for MySQL) and Elasticsearch.
      • Web server technologies like Apache and Nginx.
      • Experience with Linux/Unix.
  • General
    • Knowledge and experience with:
      • SCRUM
      • Git
      • OOP and software design knowledge – you should know how to create software that’s extensible, reusable and meets desired architectural objectives.

Preferences:

  • Previous experience developing/using offensive and defensive cybersecurity tools is a plus.
  • Previous experience with and/or knowledge of incident handling workflows is a plus
  • Familiarity with industry standards and best practices including the Penetration Testing Execution Standard (PTES) and the Mitre Adversarial Tactics, (Techniques, and Common Knowledge (ATT&CK) Framework.

Contact

spt201701@blacklanternsecurity.com


Job Title: Software Developer - Data Scientist

Location: Charleston, SC

Responsibilities:

  • Build client APIs for updates and data transfer.
  • Establish ETL data pipelines to ingest and correlate data.
  • Select and integrate Big Data tools and frameworks as required to provide requested capabilities.
  • Build and tune machine learning models.

  • Requirements:

  • Experience with:
    • SQL (Preference for MySQL) and Elasticsearch.
    • Integration of data from multiple data sources.
    • Various messaging systems, such as Kafka or RabbitMQ. (Preference RabbitMQ)
    • Any machine learning frameworks like SparkML or scikit-learn.
  • Proficient in R or Python for statistical programming (Preference for Python).
  • Proficient in languages like Go, PHP, Python, Ruby, Java, and .Net for creating API endpoints. (Preference for Python and more specifically the Flask framework)

Preferences:

  • Previous experience developing/using offensive and defensive cybersecurity tools is a plus.
  • Previous experience with and/or knowledge of incident handling workflows is a plus
  • Familiarity with industry standards and best practices including the Penetration Testing Execution Standard (PTES) and the Mitre Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK) Framework.

Contact

spt201701@blacklanternsecurity.com


Job Title: Software Developer - Devops

Location: Charleston, SC

Responsibilities:

  • Development of Python client software to search Elasticsearch and push data to other endpoints.
  • Deployment, maintenance, and monitoring of Elasticsearch docker clusters.
  • Maintaining and monitoring MySQL and EC2 web apps on AWS.

Requirements:

  • Experience in Linux/Unix Administration.
  • Experience with automation/configuration management.
  • Ability to use a wide variety of open source technologies and cloud services (Preference for AWS).
  • Experience with SQL (Preference for MySQL) and Elasticsearch.
  • A working understanding of code and script (Bash, Python, Perl and/or Ruby) (Preference for Python).
  • Knowledge of best practices and IT operations in an always-up, always-available service.
  • Experience deploying, maintaining, and monitoring systems and applications.
  • Familiarity with webservers like Apache and Nginx.

Preferences:

  • Previous experience developing/using offensive and defensive cybersecurity tools is a plus.
  • Previous experience with and/or knowledge of incident handling workflows is a plus.
  • Familiarity with industry standards and best practices including the Penetration Testing Execution Standard (PTES) and the Mitre Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK) Framework.

Contact

spt201701@blacklanternsecurity.com


Job Title: Project Manager

Location: Charleston, SC (home base) travelling required domestically and internationally

Responsibilities:

  • Develop, deliver, and track Master Service Agreements (MSAs) and Statements of Work (SOWs) from contract execution to customer acceptance.
  • Manage and assign resources, cost, and deadlines for project execution.
  • Manage parallel projects for multiple customers.
  • Track activities, deliverables, and milestones for multiple customers.
  • Develop, document, and deliver customer on-boarding and support processes and procedures.
  • Develop, document, and deliver internal policies, processes, and procedures.
  • Execute additional tasking as assigned by supervisor.

Requirements:

  • Must be US citizen (must be willing to submit to federal, state, and local background checks and other requirements).
  • 5+ years experience managing Cybersecurity related projects.
  • Possess a basic understanding of Cybersecurity services and concepts including red teaming, penetration testing, risk analysis, vulnerability management, and configuration management (CM).
  • One or more professional certifications including PMP, PgMP, CISSP, Security+ etc.
  • Demonstrated ability to:
    • Communicate (written & verbal) effectively across the entire business stack (Executives, Management, Engineers and Administrators).
    • Adhere to the highest standards of honesty and scientific and business integrity.
    • Understand and empathize with a customer’s business mission.
    • Identify and understand critical business workflows.
    • Develop and manage customer requirements.

Preferrences

  • Previous engineering or systems administration experience is considered a plus
  • Possess a basic understanding of regulatory standards and requirements including the Health Insurance Portability and Accountability Act (HIPAA), Payment Card Industry Data Security Standard (PCI-DSS), and the Gramm-Leach-Bliley Act (GLBA).

Contact

spt201701@blacklanternsecurity.com


© 2018 | All rights reserved | 1 Cool Blow Suite 322 Charleston, SC 29403 | 843.991.4612