- Company: General Dynamics Information Technology
- Location: United States (nationwide) (nationwide)
- Salary: $123,250–$166,750/yr
General Dynamics Information Technology — company details are preparing and update automatically in a few seconds (or refresh).
General Dynamics Information Technology is hiring a Penetration Tester for a full-time remote position securing critical U.S. judicial infrastructure. This role tests federal software systems before production to ensure resilience against advanced cyber threats.
Role Overview
The Case Management Modernization (CMM) Program for the U.S. Courts needs security validation of Node.js and React applications running on AWS microservices. Your penetration assessments will confirm that systems meet NIST 800-53 federal controls and Authority-to-Operate (ATO) requirements. As part of the Agile DevSecOps organization, you'll identify vulnerabilities, guide developers on remediation, and build authoritative security evidence for federal sign-off.
Day-to-Day Responsibilities
- Conduct web, API, cloud, and microservices penetration testing on AWS infrastructure (IAM, S3, Lambda, API Gateway, ECS/EKS, networking)
- Execute static analysis, dynamic testing, and manual code review for security weaknesses
- Perform privilege escalation research, lateral movement testing, and attack path discovery
- Confirm NIST 800-53 controls are properly deployed across security families (AC, AU, IA, SC, SI, CM)
- Assess container and Kubernetes security, plus CI/CD pipeline integrity
- Support Plan of Action and Milestones (POA&M), Security Assessment Reports, and ATO packages
- Provide developers with detailed remediation guidance and verify fixes through retesting
- Leverage Burp Suite, OWASP ZAP, Metasploit, Nmap, Nessus, Nikto, and custom Python or JavaScript scripts
- Document exploitation techniques, calculate risk scores using federal frameworks, and present findings to technical and non-technical stakeholders
- Participate in threat modeling sessions, architecture security reviews, and authorization readiness assessments
Qualifications
- 8+ years conducting penetration tests, performing application security assessments, or professional ethical hacking work
- Proven ability testing web applications, REST APIs, microservices, and cloud platforms
- Expert-level knowledge of AWS security including IAM policies, VPC design, S3 access control, Lambda hardening, and CloudWatch/CloudTrail monitoring
- Mastery of NIST 800-53, Risk Management Framework (RMF), FedRAMP, and federal Authority-to-Operate processes
- Technical depth with Node.js, React, and microservices-based system architectures
- Working familiarity with SIEM and observability platforms such as Datadog, ELK Stack, Grafana, or CloudWatch
- Clear communication skills in writing and presentation for technical teams and federal stakeholders
- Preferred certifications: OSCP, OSWE, GWAPT, GPEN, or AWS Security Specialty
- Bachelor's degree in a related field or documented equivalent professional experience
About the Company
General Dynamics Information Technology delivers mission-critical technology solutions and professional services to U.S. government, defense, and intelligence agencies. With 26,000+ technology experts operating across 50+ countries, GDIT specializes in AI, cloud infrastructure, cybersecurity, and software innovation. This penetration testing role directly strengthens systems protecting the U.S. judicial branch and serves millions of citizens who depend on secure federal infrastructure.
Next Steps
To apply, complete your application directly on this page, or you'll be redirected to the employer's application platform to finish submitting there.
You’ll finish your application on the employer’s website. We don’t ask for a resume on this page.
Local insights for this role are preparing — this section updates automatically in a few seconds (or refresh).
Listing facts
- Role Penetration Tester
- Employer General Dynamics Information Technology
- Location United States (nationwide) (nationwide)
- Type Full Time
- Pay (from listing) $123,250–$166,750/yr
- Posted July 11, 2026
- Apply by August 10, 2026
- Country United States (nationwide)
- Overview Full job description on this page (441 words)
Facts above come from this job record on Get A Job.AI — not copied from third-party review sites.
Typical work in Penetration Tester
Independent occupational context from O*NET (U.S. public-domain labor data). This is about the occupation, not a rewrite of this employer's posting.
- Assess the physical security of servers, systems, or network devices to identify vulnerability to temperature, vandalism, or natural disasters.
- Collect stakeholder data to evaluate risk and to develop mitigation strategies.
- Conduct network and security system audits, using established criteria.
- Configure information systems to incorporate principles of least functionality and least access.
- Design security solutions to address known device vulnerabilities.
- Develop and execute tests that simulate the techniques of known cyber threat actors.
Public discussions & open sources
Attributed public threads and profiles — not employee reviews or star ratings.
- Hacker News — [dead]
- Hacker News — The Mathematical Hacker
- Hacker News — The hypocrisy in Silicon Valley's big talk on innovation
- Hacker News — The Struggle
Cached public sources (Hacker News, Dev.to, GitHub, etc.).
Employer website
Limited public data for this employer
We only show facts we can ground in public sources (Wikidata, O*NET, news/discussion links, or this listing). We do not invent Glassdoor-style ratings, salaries, or testimonials when data is thin. Use the listing facts, occupation context, and related openings below while we continue researching.
Explore related openings
6 other opening(s) at General Dynamics Information Technology on Get A Job.AI
- Data Analyst Senior
- Cloud Engineer Principal
- Quality Assurance Manager – TS/SCI with Polygraph
- Operations Analyst Technician
- Vehicle Maintenance Analyst – active Top Secret required with Security Clearance
- Front End Software Engineer – TS/SCI with Polygraph
Occupation family: Penetration Tester
Research this employer
Pull public facts we already cached for this company (Wikipedia, news, discussions). We never invent Glassdoor-style ratings.
Open interview kit (print-friendly)
Free candidate alerts — we email you when matching roles go live.
Create alert for “Penetration Tester”Keep exploring on Get A Job.ai
Not quite the right fit? Your next opportunity is a click away.
- Browse all jobs
- More jobs by category
- Remote jobs you can do from anywhere
- Research typical pay for this role
- Set a job alert so new matches reach you first
- Upload your resume to apply faster
- Register now to access our free AI resume builder
Hiring instead? Post a job and reach candidates searching right now.
