We are seeking an experienced Ethical Hacker/Cyber Hunt Specialist, with experience supporting USCYBERCOM Cyber Mission Force Programs or Cyberspace Operations. We are looking for someone with experience with strong Hacking knowledge as well as a background in Training/Exercise Development.
This role resides in our Cyber division and reports to our Program Manager. This position is located on customer site in the Annapolis Junction, MD area with a 20% travel requirement.
SIXGEN supports cyber and intelligence missions by serving government and commercial organizations as they overcome global cybersecurity challenges. Our highly skilled operators conduct research and assessments based on real-world threats. We simulate adversaries and malicious actors to report details and actionable findings on critical assets and infrastructures. Our program planners advise mission owners to bring rapid solutions to intelligence mission leaders. Using innovative processes, tools, and techniques, we predict and overcome cybersecurity vulnerabilities. Our successes are supported by our diverse team of experienced, technical talent. SIXGEN, Inc. is an Equal Opportunity/Veterans/Disabled Employer.
Core Responsibilities:
- Exploit common vulnerabilities and misconfigurations with common operating systems, protocols and network security services
- Assist with procuring, managing, and training for operational infrastructure associated with Red Team Command and Control (C2).
- Research and develop various cyber threat actor Tactics, Techniques, and Procedures (TTPs) and environments to integrate such findings in Opposition Force (OPFOR) threat emulation.
- Utilize relevant Cyberspace Operation tools used for the customer mission.
- Provide briefings of intrusion set activity to partner organizations and agencies.
- Organize training for other team members on analysis, tools, or reporting.
- Serve as a Subject Matter Expert for working groups and meetings with partner organizations and agencies.
- Generate reports as required on development efforts.
- Conduct planning and execution adversarial emulation in cyber exercises.
Required Skills and Experience:
- Demonstrated experience related to the use of relevant Cyberspace Operation (CO) tools used for the customer mission.
- Demonstrated experience in communicating with the ability to provide formal documentation of analysis and/or research results.
- Demonstrated experience in analysis of vulnerabilities, Control and Command (C2) frameworks, intrusion sets; interpreting analytical results, writing and briefing skills at a technical/professional level, and managing internal and external customer relations.
- Demonstrated experience working with any of the following C2 frameworks: Cobalt Strike, Metasploit, PoshC2, and/or Mythic.
- Scripting skills such as powershell and python
- Ability to work in a dynamic environment and non-standard hours
- Desired skills include experience in malware analysis and exploit development, leading exercises such as Cyber Flag, and providing cyber operations training.
- A Bachelor’s Degree in Computer Science, Information Systems, or a related discipline from an accredited college or university.
- In lieu of the Bachelor’s degree, hold one or more of the following accredited certifications: Offsec Certified Professional (OSCP), Offensive Security Experienced Penetration Testers (OSEP), Practical Network Penetration Tester (PNPT), and GIAC Penetration Tester (GPEN) OR commit to obtaining one of these certifications within six months of start date.
- At least 5-8 years of continuous work experience in the Cyber Mission Force (CMF) either working directly or in-support to Cyber Operations (CO).
- TS/SCI w/ Polygraph
Additional Details
- Job Location: In or around Annapolis Junction, MD
- Clearance Requirement: TS/SCI w/ Polygraph
- Travel: As Required to support 2-3 week exercises
Compensation & Benefits
- Competitive salary
- Employer-paid health insurance premiums (medical, dental, vision)
- Employer-paid short/long term disability insurance and basic life/AD&D insurance
- 401K with a 4% employer contribution
- Professional development reimbursement options available (training, certification, education, etc)
- Flexible and remote work policies for most positions
- Paid Time Off (PTO) at a rate of three (3) weeks plus one (1) day per year of service up to four (4) weeks annually
- 11 paid holidays per calendar year
At SIXGEN, we are committed to fair and equitable compensation practices. The anticipated salary range for this role is $170,000 - $190,000 per year, depending on experience and qualifications. This range reflects our compensation philosophy, which takes into account various factors including the candidate's relevant experience, education, skills, LCATs rates and position level, and market competitiveness. In addition to base salary, employees may be eligible for other forms of compensation to include our growth incentive program, incentives and benefits. The final salary offer will be determined after a thorough review of the candidate's background and alignment with the role. Please note that this range is subject to change and should be considered as a guideline rather than a definitive figure.
We are committed to fostering an inclusive culture that values diversity in our people, reflecting the communities we serve and our customer base. We strive to attract and retain a diverse talent pool and create an environment where everyone is empowered to be their authentic selves at work.
SIXGEN is an Equal Opportunity Employer. We ensure that all applicants are considered for employment without regard to race, color, religion, sexual orientation, gender identity, national origin, disability, age, marital status, ancestry, projected veteran status, or any other protected group or class.
Top Skills
What We Do
At SIXGEN, we’ve cracked the code on meaningful and innovative ways to support the cyber mission. Our workforce provides incident response, operational and penetration testing, red teaming, tool development, cyber training development and continuous monitoring. Our on-site and remote assessments are used to identify vulnerabilities within the most critical networks. We lead cybersecurity innovation in product development by designing and evolving highly specialized hardware and software focused on Endpoint Detection and Response, Red Team, Data Science, and Threat Intelligence missions. We take pride in our work and the resulting enhanced cybersecurity posture for our customers around the globe.