Penetration Testing Lead
Washington, DC ยท Hybrid
Direct testing teams during execution. * Plan and execute red team and blue team exercises in ... Expert-level proficiency with penetration testing tools such as Metasploit, Burp Suite, Nmap, and ...
Washington, DC ยท Hybrid
Direct testing teams during execution. * Plan and execute red team and blue team exercises in ... Expert-level proficiency with penetration testing tools such as Metasploit, Burp Suite, Nmap, and ...
Washington, DC ยท Hybrid
Direct testing teams during execution. * Plan and execute red team and blue team exercises in ... Expert-level proficiency with penetration testing tools such as Metasploit, Burp Suite, Nmap, and ...
Denver, CO ยท On-site
$180K - $220K/yr
This is a highly technical role that combines research, development, and applied AI, with direct ... Experience with security research tools and frameworks such as Metasploit, Impacket, Nmap, Burp, or ...
Denver, CO ยท On-site
$180K - $220K/yr
This is a highly technical role that combines research, development, and applied AI, with direct ... Experience with security research tools and frameworks such as Metasploit, Impacket, Nmap, Burp, or ...
Washington, DC ยท On-site
Direct testing teams during execution. * Plan and execute red team and blue team exercises in ... Expert-level proficiency with penetration testing tools such as Metasploit, Burp Suite, Nmap, and ...
Washington, DC ยท On-site
Direct testing teams during execution. * Plan and execute red team and blue team exercises in ... Expert-level proficiency with penetration testing tools such as Metasploit, Burp Suite, Nmap, and ...
Houston, TX ยท Remote
Equally comfortable presenting to a Board of Directors and running a Metasploit session. * Strong experience advising executive and C-suite stakeholders on security risk, investment priorities, and ...
Houston, TX ยท Remote
Equally comfortable presenting to a Board of Directors and running a Metasploit session. * Strong experience advising executive and C-suite stakeholders on security risk, investment priorities, and ...
Boston, MA ยท On-site
$145K - $192K/yr
Direct experience performing threat hunting in an active corporate environment. * Experience ... Experience with offensive security tools such as Cobalt Strike/Metasploit, techniques such as OSINT ...
Boston, MA ยท On-site
$145K - $192K/yr
Direct experience performing threat hunting in an active corporate environment. * Experience ... Experience with offensive security tools such as Cobalt Strike/Metasploit, techniques such as OSINT ...
Houston, TX ยท On-site
Equally comfortable presenting to a Board of Directors and running a Metasploit session. * Strong experience advising executive and C-suite stakeholders on security risk, investment priorities, and ...
Houston, TX ยท On-site
Equally comfortable presenting to a Board of Directors and running a Metasploit session. * Strong experience advising executive and C-suite stakeholders on security risk, investment priorities, and ...
Metasploit, NetExec, Impacket, Nmap, Burpsuite, Pretender, etc. * Knowledge of command-and-control ... Highly motivated and self-directed * Excellent verbal and written communication skills * Passion ...
Metasploit, NetExec, Impacket, Nmap, Burpsuite, Pretender, etc. * Knowledge of command-and-control ... Highly motivated and self-directed * Excellent verbal and written communication skills * Passion ...
Roy, UT ยท On-site
$79K - $118K/yr
... Linux / Metasploit / NESSUS / ACAS / OpenVAS / Etc.) * Experience validating software ... Employees in Vice President or Director positions may be eligible for Long Term Incentives. In ...
Roy, UT ยท On-site
$79K - $118K/yr
... Linux / Metasploit / NESSUS / ACAS / OpenVAS / Etc.) * Experience validating software ... Employees in Vice President or Director positions may be eligible for Long Term Incentives. In ...
Metasploit, NetExec, Impacket, Nmap, Burpsuite, Pretender, etc. * Knowledge of command-and-control ... Highly motivated and self-directed * Excellent verbal and written communication skills * Passion ...
Metasploit, NetExec, Impacket, Nmap, Burpsuite, Pretender, etc. * Knowledge of command-and-control ... Highly motivated and self-directed * Excellent verbal and written communication skills * Passion ...
Metasploit, NetExec, Impacket, Nmap, Burpsuite, Pretender, etc. * Knowledge of command-and-control ... Highly motivated and self-directed * Excellent verbal and written communication skills * Passion ...
Metasploit, NetExec, Impacket, Nmap, Burpsuite, Pretender, etc. * Knowledge of command-and-control ... Highly motivated and self-directed * Excellent verbal and written communication skills * Passion ...
Hands-on AI red-teaming experience covering prompt injection (direct and indirect), jailbreaking ... knowledge of Metasploit, Burp Suite (including Burp AI extensions), Nmap, Nessus/OpenVAS ...
Hands-on AI red-teaming experience covering prompt injection (direct and indirect), jailbreaking ... knowledge of Metasploit, Burp Suite (including Burp AI extensions), Nmap, Nessus/OpenVAS ...
Edwards, CA ยท On-site
$120K - $140K/yr
... insecure direct object references (IDOR). * Familiarity with common networking protocols and ... Metasploit, BloodHound.) * Continuous learning and staying updated with the latest security trends ...
Edwards, CA ยท On-site
$120K - $140K/yr
... insecure direct object references (IDOR). * Familiarity with common networking protocols and ... Metasploit, BloodHound.) * Continuous learning and staying updated with the latest security trends ...
Edwards, CA ยท On-site
$120K - $140K/yr
... insecure direct object references (IDOR). * Familiarity with common networking protocols and ... Metasploit, BloodHound.) * Continuous learning and staying updated with the latest security trends ...
Edwards, CA ยท On-site
$120K - $140K/yr
... insecure direct object references (IDOR). * Familiarity with common networking protocols and ... Metasploit, BloodHound.) * Continuous learning and staying updated with the latest security trends ...
Hands-on AI red-teaming experience covering prompt injection (direct and indirect), jailbreaking ... knowledge of Metasploit, Burp Suite (including Burp AI extensions), Nmap, Nessus/OpenVAS ...
Hands-on AI red-teaming experience covering prompt injection (direct and indirect), jailbreaking ... knowledge of Metasploit, Burp Suite (including Burp AI extensions), Nmap, Nessus/OpenVAS ...
Tysons, VA ยท On-site
Proficiency in penetration testing tools like Metasploit, Burp Suite, or Nessus * Strong ... With direct access to company leadership, a laid-back and inclusive atmosphere, and exceptional ...
Tysons, VA ยท On-site
Proficiency in penetration testing tools like Metasploit, Burp Suite, or Nessus * Strong ... With direct access to company leadership, a laid-back and inclusive atmosphere, and exceptional ...
... and open, direct, respectful communications are highly valued. Responsibilities: โโโ ... Metasploit, Nikto, SQLMAP, Responder, Nessus, Netcat, Burp Suite, etc. * Conduct and document ...
Quick apply
... and open, direct, respectful communications are highly valued. Responsibilities: โโโ ... Metasploit, Nikto, SQLMAP, Responder, Nessus, Netcat, Burp Suite, etc. * Conduct and document ...
$120K - $150K/yr
... insecure direct object references (IDOR). * Familiarity with common networking protocols and ... Metasploit, BloodHound.) * Continuous learning and staying updated with the latest security trends ...
Quick apply
$120K - $150K/yr
... insecure direct object references (IDOR). * Familiarity with common networking protocols and ... Metasploit, BloodHound.) * Continuous learning and staying updated with the latest security trends ...
... Linux / Metasploit / NESSUS / ACAS / OpenVAS / Etc.) * Experience validating software ... Employees in Vice President or Director positions may be eligible for Long Term Incentives. In ...
... Linux / Metasploit / NESSUS / ACAS / OpenVAS / Etc.) * Experience validating software ... Employees in Vice President or Director positions may be eligible for Long Term Incentives. In ...
Tools at a minimum: Kali Linux, NMap, BurpSuite, Metasploit Job Specific Responsibilities ... Serve as an escalation point for the team and may direct or serve as a mentor to less experienced ...
Tools at a minimum: Kali Linux, NMap, BurpSuite, Metasploit Job Specific Responsibilities ... Serve as an escalation point for the team and may direct or serve as a mentor to less experienced ...
Hands-on AI red-teaming experience covering prompt injection (direct and indirect), jailbreaking ... knowledge of Metasploit, Burp Suite (including Burp AI extensions), Nmap, Nessus/OpenVAS ...
Hands-on AI red-teaming experience covering prompt injection (direct and indirect), jailbreaking ... knowledge of Metasploit, Burp Suite (including Burp AI extensions), Nmap, Nessus/OpenVAS ...
$43.5K - $61.3K
4% of jobs
$61.3K - $79K
11% of jobs
$88.4K is the 25th percentile. Wages below this are outliers.
$79K - $96.8K
19% of jobs
The median wage is $112.5K / yr.
$96.8K - $114.6K
18% of jobs
$114.6K - $132.4K
14% of jobs
$144K is the 75th percentile. Wages above this are outliers.
$132.4K - $150.1K
14% of jobs
$150.1K - $167.9K
9% of jobs
$167.9K - $185.7K
6% of jobs
$185.7K - $203.5K
2% of jobs
$203.5K - $221.2K
1% of jobs
$221.2K - $239K
2% of jobs
$43.5K
$127.5K
$239K
| Aspect | Director Metasploit | Security Engineer |
|---|---|---|
| Required Credentials | Certifications like OSCP, CISSP, experience with Metasploit | Certifications like CEH, CISSP, hands-on with security tools |
| Work Environment | Leadership role overseeing security projects, strategic planning | Technical role focused on vulnerability assessment and mitigation |
| Employer & Industry Usage | Cybersecurity firms, large enterprises, government agencies | IT departments, security consulting firms, tech companies |
The main difference is that a Director Metasploit focuses on strategic leadership and overseeing security operations involving Metasploit, while a Security Engineer handles hands-on vulnerability testing and security implementation. Both roles require cybersecurity certifications and industry experience, but their responsibilities and focus areas differ significantly.

Other
Medical, Dental, Vision, Life, Retirement, PTO
Posted 4 days ago
Description
OCH Technologies is seeking a Penetration Testing Lead responsible for ย planning, executing, and documenting all penetration testing activities performed under this contract, including network, system, application, and aircraft cybersecurity assessments. This individual develops Rules of Engagement with system owners, leads red and blue team exercises, and delivers comprehensive penetration test reports that provide actionable, technically sound findings and recommendations. The ideal candidate is an experienced offensive security professional who combines advanced technical expertise with the discipline, sound judgment, and attention to detail required to operate successfully in a highly regulated, safety-critical environment.ย
ย This position supports a proposal effort and is contingent upon award, customer approval, and successful onboarding requirements.ย ย
Locationย
Hybrid - Air Traffic Control System Command Center (ATCSCC) Washington, DCย
This position may require up to 50% travel to FAA facilities.
Core Responsibilities & Dutiesย
Responsibilities may evolve over time to support team and organizational goals but will remain consistent with the overall scope of the role.ย
Requirements
Minimum Qualificationsย
Educationย
Bachelor's degree in Cybersecurity, Computer Science, Information Technology, Engineering, Mathematics, Physics, or a related technical discipline from an accredited institution.ย
Master's degree in a related field preferred.ย
Experienceย
Security Clearance Requirementย
Candidate must have the ability to obtain and maintain a Public Trust.ย ย
Active Secret clearance is preferred.ย ย
Certificationsย
Security certification such as OSCP, OSCE, OSWP, OSWE, CEH, ECSA, CEH Practical, ECSA Practical, LPT Master, GCIH, GPEN, GWAPT, GXPN, GAWN, or an equivalent industry-recognized credential.ย
Additional certifications in cyber defense, incident response, digital forensics, or threat detection disciplines are highly preferred, including CND, CNDA, GCIH, GCIA, GDAT, GDSA, GCED, GCFA, or comparable industry-recognized credentials.ย
Preferred Qualificationsย
Other Required Skills and Abilitiesย
About Us: At OCH, we are more than just a government contracting firm; we are innovators and leaders in providing cutting-edge IT services and cybersecurity solutions. Driven by a set of fundamental values, we excel in creating secure, efficient, and forward-thinking solutions that empower the government agencies we work with. Our commitment to maintaining the highest standards of integrity, adapting swiftly to new challenges, and focusing on the people we serve ensures that we consistently exceed expectations and lead the industry in innovation and reliability.ย
What Defines Us:ย
Why Join Us?ย
Step into a role at OCH where your contributions make a tangible impact. Join a team that values creativity and initiative, offering a platform to transform the landscape of government IT services. Here, your work is not just a career-it's a mission. Embrace the opportunity to grow, innovate, and excel alongside industry leaders who are as passionate about technology as they are about making a difference. Plus, we offer a comprehensive benefits package designed to support your wellbeing and work-life balance, including:ย
& More!ย
E-Verify Participation: OCH Technologies, LLC is a participant of E-Verify to verify the identity and employment eligibility of newly hired employees.ย
Veteran's Preference and Accessibility Statement: At OCH Technologies, we deeply respect and appreciate the unique skills and experiences that veterans bring to our team. As a federal contractor, we encourage qualified veterans to apply and provide preference where permitted by law. Your service and dedication are valued here.ย
We are committed to creating a workplace that is open, welcoming, and accessible to everyone. In accordance with the Americans with Disabilities Act (ADA) and Section 503 of the Rehabilitation Act, we provide reasonable accommodations throughout the hiring process to ensure individuals with disabilities can apply without barriers. If you need assistance or an accommodation, please contact us at hiring@ochtec.com.ย ย
OCH Technologies, LLC is proud to be an equal opportunity employer. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, disability, gender identity, or any other protected characteristic as outlined by federal, state, or local laws.ย