Senior Secret Cleared Penetration Tester to perform Network, Wireless, and Cloud infrastructure testing on a large data analytics initiative within the Pub

Our valued Public Sector client is seeking a Senior Secret Cleared Penetration Tester to perform Network, Wireless, and Cloud infrastructure testing on a large data analytics initiative within the Public Sector

The client's network, composed of multiple interconnected segments hosts critical systems essential for research and data analysis activities. Key components within this network include the MIM (Microsoft Identity Manager) Service VM, vLAN, local Active Directory instances, and various hypervisor servers responsible for processing and storing sensitive data. The resource will be required to utilize a combination of black box and gray box testing methodologies. Black box testing will be used to simulate real-world attacks without prior knowledge of the systems' internals, while gray box testing will leverage limited information about the environment to perform more targeted testing. The chosen approach aims to strike a balance between mimicking realistic attack scenarios and conducting focused testing to uncover vulnerabilities efficiently.

Must Haves:

• 5+ years experience with simulation attacks, network vulnerability exploitation and data exfiltration
• 5+ Years with Network, Wireless, and Cloud Infrastructure testing
• SECRET Clearance

Tasks include but are not limited to:

• Network Penetration Testing: IP ranges and subnets for the VMware Management vLANs, Restricted Zones, and interconnections between zones will be tested. This includes assessing network segmentation, firewall configurations (e.g., Fortigate UTM Gateways), and potential lateral movement. Simulated attacks may include distributed denial of service (DDoS), network vulnerability exploitation, unauthorized access attempts, and data exfiltration.
• Wireless Network Penetration Testing: Wireless networks within the Operations Zones of both hubs will be scrutinized for rogue access points, insecure configurations, and potential unauthorized access points. Simulated attacks may include wireless sniffing, man-in-the-middle attacks, and attempts to gain unauthorized access.
• Cloud Infrastructure Penetration Testing: The Azure tenant used by the client, including components like Azure Active Directory, Data Factory, Key Vault, and Data Lake Storage, will be assessed. Additionally, any other cloud services or on-premises private clouds utilized for data storage, processing, or research activities within the network will be evaluated for misconfigurations, insecure API access, and potential unauthorized data access or manipulation