← All Jobs
Posted Apr 14, 2026

HHS - Penetration Tester

Apply Now
cFocus Software seeks a Penetration Tester to join our program supporting the Department of Health and Human Services (HHS) This position is remote. This position requires the ability a Public Trust clearance. Qualifications: • Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or related field. • Minimum 5–8 years of experience performing penetration testing or offensive security assessments. • Hands-on experience testing enterprise networks, applications, and cloud environments. • Strong knowledge of attack techniques, exploitation frameworks, and post-exploitation methods. • Experience with federal environments and vulnerability management programs preferred. • Strong understanding of NIST SP 800-53, NIST SP 800-30, and vulnerability management processes. • Excellent analytical, documentation, and communication skills. • OSCP, GPEN, CEH, or GXPN preferred. Duties: • Plan, execute, and document penetration tests against networks, systems, web applications, APIs, databases, and cloud environments. • Conduct internal, external, authenticated, unauthenticated, and adversary-simulation testing activities. • Perform exploitation, post-exploitation, and privilege escalation to demonstrate real-world risk. • Validate vulnerability scan findings and identify false positives and chained attack paths. • Conduct application penetration testing aligned with OWASP Top 10 and NIST guidance. • Support red team and purple team exercises in coordination with SOC and Incident Response teams. • Analyze attacker techniques using MITRE ATT&CK and document TTPs and attack paths. • Develop detailed penetration test reports including executive summaries, risk ratings, and remediation guidance. • Provide technical remediation guidance to system owners, engineers, developers, and ISSOs. • Validate remediation effectiveness through retesting and evidence review. • Support compliance testing requirements related to FISMA, RMF, and continuous monitoring. • Maintain strict rules of engagement, authorization documentation, and testing approvals. • Ensure testing activities comply with HHS, HRSA, and federal legal and ethical requirements.
Apply Now

More Remote Jobs

Clinical Appeals RN - Remote - 5 day work weekApr 16, 2026Drafter/CAD Operator I (Entry Level)Apr 12, 2026Virtual Assistant (Part-Time / Work From Home)Apr 13, 2026Sr. Product Marketing ManagerApr 14, 2026Senior Manager, Product Management - Reverse Inventory Movement (Hybrid - Seattle)Apr 13, 2026Human Resources AssistantApr 12, 2026**Experienced Virtual Data Entry Clerk – Remote Opportunity with arenaflex**Apr 12, 2026Retail Media Search SpecialistApr 15, 2026Experienced Remote Part Time Pharmacy Technician and Customer Service Representative for Dynamic Healthcare Team at arenaflexApr 14, 2026Software Engineer, Core Software Engineering (I...Apr 14, 2026Sr. Director Product LeadApr 14, 2026REMOTE: Customer Service Representative I (Entry Level/No Degree RQD) Watts Water TechnologiesApr 12, 2026Outpatient Case ManagerApr 12, 2026Experienced Full Stack Data Engineering Manager – Remote Job Opportunity with arenaflex for Information Design and Data AnalysisApr 16, 2026Investor Relations and Financial Planning & Analysis (FP&A)Apr 14, 2026
Interested in this role?Apply on iHire