NASA IV&V Penetration Tester
Job Type Full-time
Job Status Sourcing
Date Posted Tuesday, 21 January 2020
Location Fairmont, West Virginia
Job Description MPL Corporation is a provider of Systems and Software Assurance Services to the NASA IV&V Program located in Fairmont, West Virginia. At the NASA IV&V Facility, we support NASA's IV&V Program, delivering analysis and verification & validation of safety-critical and mission-critical software for several important NASA programs, including both human and robotic exploration as well as earth and space science collection platforms. The successful candidate will use his or her simulation and modeling software background, software quality and safety expertise, and NASA domain experience to evaluate target programs to ensure safety and mission success.


The successful candidate will learn to work independently and as a member of a team in one or more of these IV&V projects or other IV&V Program functional areas.

Responsible for simulating real-life cyber attacks with the goal of helping an organization improve its security posture. This is a highly technical hands-on role that will utilize development, system administration and creativity skills. It is an opportunity for a team player to enhance a world-class team and learn new skills.

MPL Corporation offers an excellent benefits package. We are dedicated to providing the best possible economic and personal security for each employee.

MPL Corporation is committed to hiring and retaining a diverse workforce. We are an Equal Opportunity Employer, making decisions without regard to race, color, religion, sex, national origin, age, veteran status, disability, or any other protected class. U.S. Citizenship is required.

Qualifications Bachelors and nine (9) years or more of cyber experience; Masters and seven (7) years or more cyber experience ; PhD or JD and four (4) years or more cyber experience. In lieu of a degree, 13 years of IT experience with 9 years or more of cyber related experience.

3+ years Penetration Test experience performing full-scope penetration tests (discovery and exploitation of vulnerabilities) on network infrastructure, services, systems and desktop/web applications.

3+ years’ experience reviewing, modifying and developing programs or scripts in one or more of the following: C++, C#, Assembly, VBS, Python, Perl, Ruby, PowerShell, Bash, JavaScript, Java, PHP and other languages to exploit systems/applications, analyze data, configure systems and automate tasks.

2+ years or more testing, identifying and exploiting vulnerabilities in web applications (without the use of scanning tools).

Current DoD SECRET clearance with the ability to be cleared up to TS/SCI.


Test the exploitation of security policies and access controls in restricted/secure environments (e.g. GPO bypass, privilege escalation and A/V evasion).

Work extensively from the Windows and UNIX/Linux command line (e.g. Bash and PowerShell).

Review custom applications source code for security flaws and vulnerabilities.

Research and formulate recommendations for vulnerabilities.

Penetration Test certifications like GXPN, OSCP, OSCE are a plus.

Employ extensive use of Microsoft Office main tools: Word, Excel, PowerPoint and Visio to prepare plans, reports, diagrams, tables, briefings, etc.

Be able to present, demonstrate, explain and document operational impact of a particular vulnerability or the combination of many vulnerabilities and flaws.

Develop proof-of-concept examples and scenarios for reports and live demonstrations.

Create/document tactic, techniques and procedures (TTP) to train and expand/share knowledge with customers and team members.

Ability to develop presentations and reports, document findings accurately; attention to detail is a vital skill.

Excellent communication and interpersonal skills; ability to convey findings in a tactful manner with the technical proficiency level appropriate to the skills and/or understanding of the audience.

Critical thinking skills are a must
Number of Openings 1
Highest Finished Education College
How to Apply Send your resume to
Email Resume To