Cybersecurity Penetration Tester

4 weeks ago


New Brighton, Minnesota, United States TUV SUD AMERICA, INC. Full time

About the Role:

Cybersecurity Penetration Tester at TUV SUD America, Inc.

We are seeking a highly skilled Cybersecurity Penetration Tester to join our team. As a Cybersecurity Penetration Tester, you will be responsible for conducting penetration testing, vulnerability assessments, and security risk assessments of medical devices and applications.

Key Responsibilities:

  • Perform medical device vulnerability scans, fuzz testing, penetration testing, security code reviews, and reverse engineering.
  • Carry out IOT penetration tests, application (mobile, MIoT and PC platform), network, systems, and infrastructure penetration tests and perform various aspects of vulnerability assessments / penetration tests across a wide variety of platforms and technologies in medical industry.
  • Perform targeted testing activities to identify weaknesses and methods in which to exploit them.
  • Review threat models and perform security risk assessments of medical products.
  • Helping evolve the knowledge of adversarial TTPs for medical devices and medical applications and apply that knowledge when evaluating and testing corporate resources.
  • Adherence to the highest standards of safety, ethics, and professional conduct are critical requirements of this position.
  • Supporting project initiatives to assess vulnerabilities in medical devices and medical/health software assets (via penetration tests, testing policies and procedures, etc.).
  • Applying existing IT technical expertise to address cybersecurity related issues and challenges.
  • Keeping up to date with tools, countermeasures, threats and technologies.
  • Developing and refining tools, templates and methodologies.
  • Interpreting vulnerabilities, identifying weaknesses, exploiting them and escalate access.

Requirements:

  • Higher degree in Information Security, Computer Science, Computer/Software Engineering, Electrical Engineering, or relevant work experience.
  • Several years of professional experience in conducting IOT penetration testing, fuzz testing preferably in the medical sector (or other relevant sector).
  • Security knowledge in the areas: Operation system security, mobile OS Security, embedded operation system security, communication protocols (Bluetooth/BLE/WIFI etc.), medical protocols (DICOM etc.), threat modeling, common security testing tools.
  • Programming skills in Python, C/C++, C#, or similar for the purpose of code review and test automation.
  • Excellent technical expertise (in both breadth and depth), written communication skills, time management skills, and the ability to communicate effectively with numerous lines of business representatives.
  • Experience with open source and commercial penetration testing security tools in an enterprise environment.
  • Proficiency with Windows, Unix/Linux, and mobile platform operating systems.
  • Comprehension of OWASP Top 10 (both web and (M)IoT), OSSTMM, PTES, NIST and able to understand and communicate findings to customers.

What We Offer:

  • Paid vacation time.
  • Retirement savings plans.
  • Long-term-service awards.
  • Wellness benefits.
  • Sick leave.
  • Competitive compensation.
  • Flexible working hours.
  • Family care benefits.
  • Employee events.
  • Structured professional development.

Employment Details:

  • Full time / permanent.
  • Hybrid work model.
  • New Brighton, United States.


  • New Brighton, Minnesota, United States TÜV SÜD America Full time

    h3JobDescription/h3brMedicalDeviceSecuritySpecialistbrbrpPositionSummary:/pbrpThispositionisresponsibleforconductingcomprehensivesecurityassessmentsofmedicaldevicesandapplications,leveragingexpertiseinpenetrationtesting,threatmodeling,andvulnerabilityanalysis./pbrbrpResponsibilities:/pbrulbrliPerformmedicaldevicevulnerabilityscans,fuzztesting,penetrationtest...

  • Penetration Tester

    4 weeks ago


    New York, New York, United States Tik Tok Full time

    About the RoleAs a Penetration Tester at TikTok, you will play a critical role in ensuring the security and integrity of our platform. You will be responsible for validating security controls around web resources and mobile applications, as well as their backend web services. This is a challenging and rewarding role that requires a strong understanding of...


  • New York, New York, United States Leidos Full time

    About the Role:We are seeking a highly skilled Cybersecurity Specialist to join our team at Leidos. As a Penetration Tester, you will play a critical role in ensuring the security and integrity of our systems and networks.Key Responsibilities:Conduct penetration testing and vulnerability assessments to identify potential security risks.Develop and implement...


  • New York, New York, United States HealthEquity Full time

    We are seeking a highly skilled Principal Penetration Tester to join our cybersecurity team at HealthEquity. This role involves proactive identification and mitigation of vulnerabilities in our customer-facing SaaS applications.Key Responsibilities:Perform thorough penetration testing on applications, networks, systems, and infrastructure.Conduct risk...


  • New York, New York, United States Gray Tier Technologies LLC Full time

    Job Title: Cybersecurity SpecialistAt Gray Tier Technologies LLC, we are seeking a skilled Cybersecurity Specialist to join our team. The ideal candidate will have a strong background in cybersecurity and experience with penetration testing, vulnerability assessment, and security analysis.Key Responsibilities: Conduct vulnerability assessments and...


  • New York, New York, United States VISTRADA Full time

    Vistrada is seeking a skilled Cybersecurity Analyst to consult with clients on cybersecurity strategies and improve their cybersecurity posture.This role involves conducting cybersecurity risk assessments, identifying vulnerabilities, and developing policies and procedures to mitigate risks.The ideal candidate will have a strong understanding of...


  • New Orleans, Louisiana, United States ExecRecruitment Full time

    Job OverviewExecRecruitment is a global professional services provider and contingency staffing company. Our main objective is to source top talent and support professional growth.We are currently seeking a highly skilled Cybersecurity Specialist to join our client's team. The ideal candidate will have a strong background in penetration testing and a proven...


  • New York, New York, United States Capital Group Full time

    Job SummaryWe are seeking a highly skilled Penetration Testing Operations Lead to join our team at Capital Group. As a key member of our AppSec team, you will be responsible for driving improvements in our systems and processes to support our penetration testing function.You will work closely with technology and business stakeholders to deliver security...


  • New Brunswick, New Jersey, United States Citizant Full time

    Cybersecurity Subject Matter ExpertCitizant is seeking a seasoned cybersecurity professional to develop, implement, and manage comprehensive cybersecurity strategies and solutions to protect our systems and client data. The ideal candidate will have extensive experience in identifying and mitigating threats and vulnerabilities within cloud environments.Key...


  • New York, New York, United States TestPros Full time

    At TestPros, we are seeking a skilled Cybersecurity Specialist to conduct comprehensive penetration tests on applications, networks, and systems to identify security vulnerabilities. The ideal candidate will have a strong understanding of security frameworks and methodologies, as well as proficiency with penetration testing tools and software.Key...


  • New York, New York, United States VISTRADA Full time

    Job Title: Cybersecurity AnalystVistrada is seeking a skilled Cybersecurity Analyst to join our team. As a Cybersecurity Analyst, you will play a critical role in helping clients identify and mitigate cybersecurity risks.Key Responsibilities:Conduct regulatory compliance audits and assessments using industry-standard frameworks.Develop and maintain...


  • New York, New York, United States Early Warning Services Full time

    Job Title: Lead Cybersecurity EngineerAt Early Warning Services, we're committed to protecting the integrity and confidentiality of our systems and data. As a Lead Cybersecurity Engineer, you'll play a critical role in identifying and documenting security vulnerabilities through approved penetration testing activities. Your responsibilities will include...


  • New York, New York, United States Cadre Technologies Services LLC Full time

    Job Title: Cybersecurity SpecialistJob Summary:We are seeking a highly skilled Cybersecurity Specialist to join our team at Cadre Technologies Services LLC. The ideal candidate will have a strong background in information security and a proven track record of identifying and mitigating complex IT technical threats.Responsibilities:* Identify and mitigate...


  • New Haven, Connecticut, United States Connection Full time

    Cybersecurity Role OverviewAt Connection, we're seeking a skilled Cybersecurity Engineer to safeguard our organization's information systems and data assets. As a key member of our team, you'll play a vital role in implementing and maintaining security measures to protect against cyber threats, ensuring the confidentiality, integrity, and availability of our...


  • New York, United States Capital One Full time

    Seeking a Cybersecurity Consulting Director to provide expert guidance and oversight in Information Security and Risk Management. Responsibilities include acting as a central point of contact for the line of business, coordinating proactive Information Security consulting, serving as an expert in Information Security capabilities, influencing customers to...


  • New Orleans, Louisiana, United States Oneida Technical Solutions LLC Full time

    Oneida Technical Solutions, LLC (OTS) is a trusted partner for IT modernization projects, implementing upgrades and accelerating the delivery of new solutions for the Department of Defense and commercial industries.We are seeking a Cybersecurity Analyst/Lead Vulnerability Assessment Analyst to oversee and conduct vulnerability assessments to identify and...


  • New York, New York, United States BrainStation Full time

    About the RoleBrainStation is a global leader in digital skills training and workforce transformation. We are currently seeking a Cybersecurity Program Developer to support the development of our 12-week Cybersecurity bootcamp program. This contract has potential to be extended and/or grow into a permanent role.Responsibilities Collaborate with other subject...


  • New York, New York, United States Tik Tok Full time

    About the RoleTikTok is seeking a skilled Cybersecurity Specialist to join our team. As a key member of our security team, you will be responsible for validating security controls around web resources and mobile applications and their backend web services.Key ResponsibilitiesWork with a team of security testing professionals to enhance existing services...


  • New York, New York, United States Tik Tok Full time

    About the RoleWe are seeking a highly skilled Cybersecurity Specialist to join our Red Team as a Red Team Security Operations Expert. As a key member of our team, you will be responsible for conducting advanced adversary emulation operations to challenge our assumptions and emulate cyber and criminal threat actors targeting or attacking our business.About...


  • New York, New York, United States OTC Markets Group Full time

    OTC Markets Group, a regulated fintech company, is seeking a highly skilled Cybersecurity Specialist to join their team in a full-time capacity. The ideal candidate will have a strong background in information security and be able to travel to the NYC office as needed.Key Responsibilities:Policy and Procedure Management: Develop and implement policies and...


  • New York, New York, United States Metropolitan Jewish Health System Full time

    Job SummaryOur Corporate team plays a vital role in supporting the overall patient and member experience, contributing to our reputation for excellence.The Senior Information Security Analyst will have strong technical expertise and a risk evaluation mindset in all areas of security operations, including event triage, incident response, vulnerability...