Penetration Tester
If you are a current Motorola Solutions employee, please click this link to apply through your Workday account.Company Overview
Motorola Solutions is there for our customers when everything is on the line. In extreme moments — when a hurricane lands or when a fire breaks out. And in everyday moments — when a package arrives just in time for the holiday or when a child doesn’t miss the school bus home.
We unify voice, data, video and analytics in one integrated ecosystem to enable individuals, businesses and communities to work together in more powerful ways. To help people make better decisions, act confidently and be their best in the moments that matter. Bring your passion, potential and talents to Motorola Solutions and connect with a career that matters.
Department OverviewThe penetration testing team is part of the Cybersecurity Advisory Services Group. We perform external, internal, wireless, and web application assessments as well as social engineering engagements (phishing, vishing, physical). The group provides full spectrum cybersecurity services. We also provide virtual Chief Information Security Officer (vCISO) services, perform different types of cybersecurity risk assessments and exercises.
Job Description
As a member of the MSI Advisory Services group, a Penetration Tester will support assessments of both Commercial and Government clients where your main goal is to penetrate our customer’s network, applications, and/or operating systems by using your advanced knowledge of manipulation and exploitation of misconfigurations. An ideal candidate will be able to think and work creatively, both in teams and independently as well as be astute enough to learn new skills to quickly problem-solve tough solutions. The candidate must have excellent verbal and written communications skills in order to be able to convey the risk and impact of the findings to technical and non-technical stakeholders.
Essential Duties
Assist in scoping and executing prospective engagements.
Understand and safely use various open source penetration testing tools and when appropriate, emulating hacker tactics, techniques, procedures.
Develop comprehensive and accurate reports and presentations for various consumers of penetration testing results.
Estimated work load is 1-3 assessments per month, consisting of a 1-2-week assessments including report writing.
While in-between assessments, you will be expected to improve any existing processes, develop tools, and potentially find new clients and perspective hires.
Develop scripts, tools, or methodologies to enhance MSI’s penetration testing processes.
Qualifications
Bachelor’s degree (or equivalent) in a technical field
Minimum of one (GPEN, CEH, and/or GWAPT) certification required
Must have or be willing to get Offensive Security Certified Professional (OSCP) certification within 6 months
2-5 years' experience in at least three of the following:
Network penetration testing and manipulation of network infrastructure
Web Application Penetration Testing
Email, phone, or physical social-engineering assessments
Shell scripting or automation of simple tasks using Perl, Python, or Ruby
Developing, extending, or modifying exploits, shellcode or exploit tools
Developing applications in C#, ASP, .NET, Objective C, Go, or Java (J2EE)
Reverse engineering malware, data obfuscators, or ciphers
Source code review for control flow and security flaws
Strong knowledge of tools used for wireless, web application, and network security testing
Thorough understanding of network protocols, data on the wire, and covert channels
Solid understanding of Unix/Linux/Mac/Windows operating systems, including bash and PowerShell
OSCE, or OSWE or SANS certification
Ability to travel up to 25%
Ability to successfully interface with clients (internal and external)
Ability to document and explain technical details in a concise, understandable manner
Ability to manage and balance own time among multiple tasks, and lead junior staff when required
Motorola Solutions is a U.S. Federal contractor and must comply with the recent U.S. Government Executive Order requiring that Federal contractors ensure that their U.S. employees are fully vaccinated against COVID-19 by December 8, 2021. Accordingly, Motorola Solutions requires all US employees, even those working from home, to be fully vaccinated unless entitled to a reasonable accommodation based on a qualified medical condition or religious belief.
If you are unable to be fully vaccinated due to a qualified medical condition or religious belief, you will be required to apply for a reasonable accommodation prior to moving forward with the recruitment process. As a part of this process you will be required to provide information or documentation about the reason you cannot be vaccinated. If your request for an accommodation is not approved, an offer for employment will not be made.
Basic Requirements
Must be eligible for U.S. TOP SECRET security clearance; U.S. citizenship required
Vaccine Requirement
Motorola Solutions has implemented a voluntary COVID-19 vaccination policy. We strongly encourage all employees to be fully vaccinated. Any employee who is not vaccinated must wear a mask at all times when at a Motorola Solutions site or otherwise meeting with other Motorola Solutions employees or customers. Employees who have submitted proof of vaccination must follow site-specific or local mask requirements. Additionally, certain local governments or Motorola Solutions' customers may have vaccine requirements that apply to some of our employees.
Travel RequirementsUnder 25%
Relocation ProvidedNone
Position TypeExperienced
Referral Payment PlanYes
Our U.S. Benefits include:
- Incentive Bonus Plans
- Medical, Dental, Vision benefits effective Day 1
- 401K with Company Match and Day 1 vesting
- 9 Paid Holidays
- Generous Paid Time Off Packages
- Employee Stock Purchase Plan
- Paid Parental & Family Leave
- and more!
EEO Statement
Motorola Solutions is an Equal Opportunity Employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran's status, or, any other protected characteristic.