Overview Aircraft & Weapons Penetration Tester - SME - TGEA Be the Difference Astrion offers comprehensive services that boost preparedness, optimize performance, and ensure success across various domains, from Cyber to Digital, Mission and Systems, servicing our nation's Civilian, Defense and Space communities. We support customers with Centers of Excellence in Washington DC, Huntsville, AL and Burlington, MA with an additional 36 locations across the U.S. Astrion has an exciting opportunity for an SME Aircraft and Weapons Penetration Tester supporting the 96 CTG / 48 CTS, Eglin AFB, FL. Our cybersecurity test team is searching for new members that can help us conduct system security analysis on systems and/or software to understand and identify vulnerabilities. If you enjoy working in a fast-paced multi-disciplinary environment, learning new technology areas, this is the place for you. We provide a number of opportunities to learn ranging from on-the-job training with other team members to formal courses for unique technology areas. We realize that no one will have all of these qualifications. We are looking for people that can bring a strong foundation in one of the listed areas and are motivated to learn the others. Position responsibilities can span from test management to compliance testing to penetration testing, depending on skillset. This position provides support to the 48th Cyberspace Test Squadron at Eglin AFB, FL. JOB DETAILS LOCATION: Eglin AFB, FL JOB STATUS: FT TRAVEL: 30% REQUIRED QUALIFICATIONS / SKILLS Regarded within the community of interest as a Subject Matter Expert in cybersecurity penetration testing. This skill level will oversee the efforts of less senior staff and/or be responsible for the efforts of staff assigned to a specific job. An active Secret security clearance is required for consideration, with the ability to obtain and maintain a Top Secret security clearance. (U.S. Citizenship Required) DoD Information Assurance Technical (IAT) Level 3 certification (CSSP/CASP+) required within the first six months of employment Job experience in Aircraft, Weapon, Cloud, and/or Traditional Internet Protocol system architectures/ avionics Cybersecurity job experience. Cyber penetration test experience. Analytical and problem solving skills. Strong leadership skills. Understanding of network security/engineering. Good organization, decision making, and verbal and written communication skills. Excellent self-initiative and self-motivation with the ability to work under minimal supervision. Ability to work effectively in small and large team settings to solve complex problems. Knowledge of Windows and Linux (including Kali) Operating Systems. Software development experience is desired, but at least some scripting experience in Python, Ruby or similar language is required. Extensive experience with Windows and Linux Operating Systems Must be able to obtain required certifications (CASP, CISSP, etc.) and/if IP Penetration Tester CSSP Analyst - Certified (CEH, GCIH, etc.) within 6 months of hire, and maintain certification throughout employment. DESIRED QUALIFICATIONS / SKILLS Experience testing networks using Nessus, Wireshark, Metasploit, Kali, Nmap and related tools. Extensive understanding of network security/engineering. Extensive knowledge of common wired and wireless network protocol structures. Experience with static and dynamic software analysis tools and techniques (ie fuzzers). Experience designing, building, or testing embedded systems. Experience with a non-IP bus protocol (CAN bus, Mil-Std 1553, ARINC 429, etc.). Experience with aircraft avionics is a plus. Experience with Radio Frequency (RF) and Datalinks is a plus RESPONSIBILITIES Develop test tools and strategies for cybersecurity testing on DoD aircraft and weapons. Conduct independent compliance assessments, penetration testing, data collection, test automation, and reporting. Perform system security analysis on systems and/or software to understand and identify vulnerabilities. Execute hands-on testing which includes significant technical skills with multiple operating systems. Provide technical guidance and expertise to test teams. Document and communicate test results effectively to technical and non-technical user groups in written and oral formats. Develop and document a standard, repeatable process for conducting MBCRAs and CVIs, ACDs, CVPAs, and AAs. Support the development of cyber test and evaluation procedures for aircraft, weapons, C4ISR, and IT systems. Document the system information requirements and work products needed by the Development Test & Evaluation (DT&E) and Operational Test & Evaluation (OT&E) communities to plan, execute and report on systems’ cyber test objectives. Provide requirements usable by programs to incorporate in statements of work, system technical requirements documents, Test and Evaluation Master Plans, DT&E and OT&E Entrance and Exit criteria, and other documents. Assist with developing and documenting Air Force guidance, and informing DoD guidance updates. Document recommendations for incorporating DT&E/OT&E cybersecurity deficiency reporting and watch items into standard DT&E/OT&E processes. Facilitate program MBCRAs. Assist with CVI, ACD, CVPA, and AA planning, execution, and reporting to achieve the above objectives, provide expertise and lessons learned, and apply process knowledge for systems under test. What We Offer Competitive salaries Continuing education assistance Professional development allotment Multiple healthcare benefits packages 401K with employer matching Paid time off (PTO) along with a federally recognized holiday schedule Who We Are At Astrion, we innovate, elevate, and shape the world of tomorrow. At our core is our purpose to “Be the Difference”. This means we encourage our employees to take action and be the driving force for positive change. We foster an environment where innovative solutions flourish and our company continuously evolves. We have a culture of care, empathy, and making a tangible difference within our organization and communities. We embrace continuous learning, growth, and innovation, and pushing the boundaries of what’s possible. We promote collaboration and empowering our teams is at the core of our success. Join Astrion and Be the Difference in your career and the world! Astrion is an Equal Employment Opportunity/Affirmative Action Employer. We provide equal employment opportunities to all employees and applicants for employment and prohibit discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws. “Air Force Cyber Division”