×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Systems Engineer

Avionics Penetration Tester - Midlevel

Job in California, St. Mary's County, Maryland, 20619, USA
Listing for: Astrion
Full Time position
Listed on 2026-03-10
Job specializations:
  • Engineering
    Cybersecurity, Systems Engineer
Salary/Wage Range or Industry Benchmark: 80000 - 100000 USD Yearly USD 80000.00 100000.00 YEAR
Job Description & How to Apply Below

Overview

LOCATION: Edwards AFB, CA
Salary Range: Estimated $ USD - $ USD annually
JOB STATUS: Full-time
CLEARANCE: Secret
CERTIFICATION: See Below
TRAVEL: 20%

Astrion has an exciting opportunity for an SE-3 Cybersecurity Penetration Tester for the TMAS 2 96 CTG Task Order
, supporting the 48 CTS / TGEE
. The 48th CTS/Det 1 conducts Cyber Security Test & Evaluation of Embedded Avionics & Weapons Systems for multiple platforms within the Air Force.

Core Qualifications
  • Technical BS Degree and 3-10 years of applicable experience. Additional experience may be substituted for education.
  • Active Secret clearance is required and must be able to obtain/maintain a Top Secret clearance. U.S. Citizenship is required.
  • Must have or be able to obtain DOD 8140 IAT Level 3 certification (CASP, CISSP, ISSEP, etc.) within 6 months of hire, and maintain certification throughout employment.
Additional Desired Qualifications
  • Prior understanding of aircraft avionics navigation, communication, and datalinks is desired (GPS, ACARS, Mode-S, Link-16, and etc.)
  • Proficiency in analyzing and/or manipulating avionics communication protocols, such as ARINC 429, MIL-STD-1553.
  • Military aircraft operations, maintenance, test or acquisition experience is desired.
  • Prior knowledge and applicable experience using various RF testing tools such as HackRF, SDR’s, spectrum analyzers, and Wireshark.
  • Knowledge of common vulnerabilities and attack vectors in aviation systems, including but not limited to buffer overflows, injection attacks, and protocol manipulation.
  • Understanding of aircraft network architectures, including intra-aircraft networks and inter-aircraft networks (e.g., Air Traffic Management Data Link, Aircraft Communications Addressing and Reporting System).
  • Understanding of cryptographic principles and their application in aviation security, including key management, encryption algorithms, and digital signatures.
Alternative Qualifications
  • Familiarity with industry-standard frameworks and methodologies for conducting penetration tests, such as OWASP Testing Guide and NIST SP 800-115
  • Knowledge of endpoint security technologies and techniques, such as antivirus, host-based intrusion detection/prevention systems (HIDS/HIPS), and privilege escalation exploits.
  • Experience in identifying and exploiting security vulnerabilities in web applications, including injection flaws, cross-site scripting (XSS), and insecure direct object references (IDOR).
  • Familiarity with common networking protocols and technologies, such as TCP/IP, DNS, DHCP, VLANs, VPNs, and SSL/TLS.
  • Proficiency in conducting vulnerability assessments and penetration tests on network infrastructure, including routers, switches, firewalls, and servers.
  • Ability to effectively communicate technical findings and recommendations to both technical and non-technical stakeholders through detailed reports and presentations.
  • Prior experience with the use of enterprise penetration test tools. (nmap, Nessus, Burp Suite, Hydra, Metasploit, Blood Hound.)
  • Continuous learning and staying updated with the latest security trends, vulnerabilities, and attack techniques through self-study, training, and participation in industry conferences and events.
  • Experience with python, bash, and Power Shell scripts
  • Capable of rewriting preexisting scripts, tools, or exploits to work on target systems.
  • Conduct penetration tests on Active Directory environments, leveraging tools like Blood Hound and Power View for reconnaissance and enumeration, to identify vulnerabilities and attack paths.
  • Execute advanced attack techniques, including pass-the-hash and golden ticket attacks, to assess the effectiveness of Active Directory security controls and simulate real-world threat scenarios.
  • Provide actionable recommendations and remediation strategies to improve the security posture of Active Directory infrastructures, emphasizing best practices such as least privilege principles and strong password policies.
  • Demonstrate the ability to complete a CTF if requested
Desired Qualifications / Skills
  • Bachelor’s Degree in either Engineering or Cybersecurity related Discipline desired.
  • Active TS/SCI preferred.
  • OSCP, CPTS, PNPT certifications desired.
  • Pri…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search