CTG is currently hiring Penetration Testing Engineers with strong skills in network security and ethical hacking. The position will requires 3 to 5 years of commercial network security testing experience. Experience should demonstrate a thorough understanding of network and application level threats and exploitation of vulnerabilities. Must demonstrate comprehensive knowledge and experience with methodologies such as the OSSTMM to exploit Internet connected systems and applications. This position will require demonstrable technical experience with tools used in the ethical exploitation of software vulnerabilities such as BackTrack, Nessus, Paros, Nikto/Wikto, Metasploit, and manual techniques. A thorough understanding of widely used techniques including SQL Injection, cross-site scripting, session based attacks, cookie manipulation, wireless network attacks, social engineering techniques, network and system fingerprinting, information gathering, Google hacking, active and passive attacks, privilege escalation, and enumeration of Windows and *nix based system information. A strong understanding of common network protocols and their associated weaknesses is required. The candidate must be able to systematically categorize threats based on the difficulty of exploitation, potential impact, prevalence, mitigating controls, and relevance/existence within a particular organization. Candidate must have strong documentation and report writing skills. Experience customizing security tools and automating test procedures using common scripting languages is a plus.