• Design, implement, and maintain security services that support the business • Lead the development, implementation, and ongoing maintenance of comprehensive security strategies and solutions • Design and deploy advanced security controls to safeguard networks, systems, and applications • Work across disciplines to shape our security services strategy and execution • Mentor and galvanize new engineers to do their best work • Set and uphold the standard for security processes to support high-quality engineering

• Senior Security Architects at GuidePoint Security are experienced professionals who are autonomous, experienced, self-driven security fanatics. • Our Senior Security Architects are materially involved in the complete security technologies opportunity lifecycle, from pre-sales through delivery and have the freedom and control over how engagements are scoped and delivered. • This helps satisfy our Senior Security Architects desire to constantly expand their knowledge and better meet the needs of our clients. • Expectation for this role is 70% Presales and 30% delivery.

• Be part of a Web3 security team and take responsibility for architecting backend systems • Maintain, migrate, and upgrade existing systems to ensure service quality • Design and implement new services, collaborating with product managers to translate product and technical visions into actionable roadmaps • Work closely with the operations team to improve security systems and tools, enhancing operational efficiency and automation • Collaborate with the analysts team to fulfill data cleaning, modeling, and analysis requirements

This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description SimVentions, consistently voted one of Virginia's Best Places to Work, is looking for an experienced professional to join our team! As a Red Team Penetration Tester, you will be responsible for conducting penetration testing and conducting offensive cybersecurity operations for the U.S. Government and DoD systems. You will work collaboratively with Blue Team and Cybersecurity professionals to enhance overall cyber posture. Position is contingent upon award of contract, anticipated in October of 2026. Qualifications - Five (5) years' experience in software engineering applied to program development; modeling and simulation applied to DoD or Information Technology systems. - Strong working knowledge of common Penetration Testing (PENTEST) tools: Kali, Metasploit, NMAP, Cobalt Strike. - Experience with various programming languages: Python, C, C Sharp, C++, Go, Perl, Powershell. - Experience with Web Dev/Web App Dev/Web Penetration testing. - Experience with AWS services (such as EC2, S3, KMS, RDS) and security best practices relevant to those services. - Minimum certification one of the following: Security+, CCNA Security, CySA+, GICSP, SSCP. - Minimum certification as penetration tester and possess one of the following certificates: Offensive Security Certified Professional (OSCP), Offensive Security Certified Expert (OSCE), Offensive Security Exploitation Expert (OSEE), Offensive Security Wireless Professional (OSWP). - Capture the Flag (CTF) participation (DEFCON, Over-The-Wire (OTW), Hack the Box, USS Secure CTF's). - Security research resulting in a Common Vulnerabilities and Exposures (CVE). Requirements - Linux and Windows experience. - Penetration Testing (PENTEST) and Red Team Operations. - Tool/Software Development (exploits/malware, C2, reverse engineering, bug bounties). - Experience with NSX, vCenter, vRealize Suite, Horizon View (VDI) and others. - Experience with PAN-OS, FirePower, Nexus, IOS, ASA. - Experience with ONTAP, SnapMirror. - Active-Directory, Entra ID (Azure AD), Active Directory, SSO, MFA, Azure application integration, Identity Federation. - Automation using Powershell, PowerAutomate, Logic Apps, Graph API. - Experience conducting Red Team operations in an MDE environment. - Experience with Web Services penetration testing (RESTful and SOAP) Web Authentication protocols (e.g. OAuth2, SAML, LDAP). - Experience with PHP, ASP, SQL db's, Java, HTML, No SQL. Responsibilities - Debug and reverse engineer software. - Analyze Windows Events and Linux syslogs, boot logs and dmesg logs. - Program and debug Web 2.0, Java, Perl, Ada, C++, Tool Command Language (tcl/tk) scripts and graphical user interfaces (GUIs) using Microsoft Visual tel and Rational ClearCase for software configuration management. - Recommend software modifications to systems to mitigate known vulnerabilities. - Operate and administrate computer systems running HP-UX, UNIX, Solaris, Linux and Microsoft Windows. - Identify security flaws in compiled and human readable source code. - Understand how to implement NSA approved encryption technologies and devices. - Apply DISA Security Technical Implementation Guides (STIGs). - Participate in Code Reviews. Perform Static Source Code Analysis. - Contribute to a System Security Administrator and Operators Manual (SSAOM). Education - High School Diploma or GED equivalent. Compensation Compensation at SimVentions is determined by a number of factors, including, but not limited to, the candidate’s experience, education, training, security clearance, work location, skills, knowledge, and competencies, as well as alignment with our corporate compensation plan and contract specific requirements. The projected annual compensation range for this position is $90,000-$150,000 (USD). Benefits - Medical, dental, vision, and prescription drug coverage. - Employee Stock Ownership Plan (ESOP). - Competitive 401(k) programs. - Retirement and Financial Counselors. - Health Savings and Health Reimbursement Accounts. - Flexible Spending Accounts. - Life insurance, short- & long-term disability. - Continuing Education Assistance. - Paid Time Off, Paid Holidays, Paid Leave (e.g., Maternity, Paternity, Jury Duty, Bereavement, Military). - Third Party Employee Assistance Program that offers emotional and lifestyle well-being services, to include free counseling. - Supplemental Benefit Program.