TUV SUD AMERICA, INC.
Cybersecurity Pen Tester
TUV SUD AMERICA, INC., New Brighton, Minnesota, United States,
Cybersecurity Pen Tester Your tasks
Position Summary:This position is responsible for focusing domain areas of expertise as well as a good breadth of experience across Application Penetration Testing, Thick Client Penetration Testing, Web Application Penetration Testing, Mobile Application Penetration Testing (iOS and Android), Medical IoT devices Penetration Testing, fuzz testing and Open-Source Intelligence and Physical Security Testing.Responsibilities:Perform medical device vulnerability scans, fuzz testing, penetration testing, security code reviews, and reverse engineering. Carrying out IOT penetration tests, application (mobile, MIoT and PC platform), network, systems, and infrastructure penetration tests and performing various aspects of vulnerability assessments / penetration tests across a wide variety of platforms and technologies in medical industry. Perform targeted testing activities to identify weaknesses and methods in which to exploit them.Review threat models and perform security risk assessments of medical productsHelping evolve the knowledge of adversarial TTPs for medical devices and medical applications and apply that knowledge when evaluating and testing corporate resources. Adherence to the highest standards of safety, ethics, and professional conduct are critical requirements of this position.Supporting project initiatives to assess vulnerabilities in medical devices and medical/health software assets (via penetration tests, testing policies and procedures, etc.).Applying existing IT technical expertise to address cybersecurity related issues and challenges.Keeping up to date with tools, countermeasures, threats and technologies.Developing and refining tools, templates and methodologies.Interpreting vulnerabilities, identifying weaknesses, exploiting them and escalate access.Your qualifications
Higher degree in Information Security, Computer Science, Computer/Software Engineering, Electrical Engineering, or relevant work experienceSeveral years of professional experience in conducting IOT penetration testing, fuzz testing preferably in the medical sector (or other relevant sector).Security knowledge in the areas: Operation system security, mobile OS Security, embedded operation system security, communication protocols (Bluetooth/BLE/WIFI etc.), medical protocols (DICOM etc.), threat modeling, common security testing tools.Programming skills in Python, C/C++, C#, or similar for the purpose of code review and test automationExcellent technical expertise (in both breadth and depth), written communication skills, time management skills, and the ability to communicate effectively with numerous lines of business representatives.Experience with open source and commercial penetration testing security tools in an enterprise environment.Proficiency with Windows, Unix/Linux, and mobile platform operating systems.Comprehension of OWASP Top 10 (both web and (M)IoT), OSSTMM, PTES, NIST and able to understand and communicate findings to customersMust be willing to work flexible hours; they must also be able to travel, as required. Comfortable working in a fast-paced environmentAdditional Information
Equal Opportunity Employer - Disability and VeteranTUV SUD America, Inc. is an equal opportunity, affirmative action employer and considers qualified applicants for employment without regard to race, color, creed, religion, ancestry, marital status, genetics, national origin, sex, sexual orientation, gender identity and expression, age, physical or mental disability, veteran status and those laws, directives, and regulations of Federal, State, and Local governing bodies or agencies. We participate in the E-Verify Employment Verification Program.For more information on applicable equal employment regulations, please refer to the following: Labor Law 2024Details Benefits
Paid vacation timeRetirement savings plansLong-term-service awardsWellness benefitsSick leaveCompetitive compensationFlexible working hoursFamily care benefitsEmployee eventsStructured professional developmentEmployment type
Full time / permanentWork model
hybridJob location
New BrightonCountry
United StatesJob category
Other Target GroupsRequired experience
Professionals 3 - 5 years of experienceOrganizational unit
TUV SUD America Inc.Reference number
141547Contact
TUV SUD Recruiting1-800-888-0123careers.us@tuvsud.com Apply nowPrintAdd to my favorites Share About TUV SUD as Employer
At TUV SUD we are passionate about technology. Innovations impact our daily lives in countless ways, and we are dedicated to being a part of that progress. We test, we audit, we inspect, we advise. We never stop challenging ourselves for the safety of society and its people. We breathe technology, we strive for professional excellence, and we leave a mark. We take the future into our hands. We are TUV SUD.Established more than 150 years ago in Germany, TUV SUD is a leading global provider of technical services with more than 28,000 highly skilled employees across 1,000 offices worldwide. For over 30 years, throughout 33 locations, it is TUV SUD America's priority to create a safer future. To protect people, property and the environment from technology-related risks; we drive consumer protection, digital transformation, sustainable development, and urbanization.Find out more about TUV SUD
Position Summary:This position is responsible for focusing domain areas of expertise as well as a good breadth of experience across Application Penetration Testing, Thick Client Penetration Testing, Web Application Penetration Testing, Mobile Application Penetration Testing (iOS and Android), Medical IoT devices Penetration Testing, fuzz testing and Open-Source Intelligence and Physical Security Testing.Responsibilities:Perform medical device vulnerability scans, fuzz testing, penetration testing, security code reviews, and reverse engineering. Carrying out IOT penetration tests, application (mobile, MIoT and PC platform), network, systems, and infrastructure penetration tests and performing various aspects of vulnerability assessments / penetration tests across a wide variety of platforms and technologies in medical industry. Perform targeted testing activities to identify weaknesses and methods in which to exploit them.Review threat models and perform security risk assessments of medical productsHelping evolve the knowledge of adversarial TTPs for medical devices and medical applications and apply that knowledge when evaluating and testing corporate resources. Adherence to the highest standards of safety, ethics, and professional conduct are critical requirements of this position.Supporting project initiatives to assess vulnerabilities in medical devices and medical/health software assets (via penetration tests, testing policies and procedures, etc.).Applying existing IT technical expertise to address cybersecurity related issues and challenges.Keeping up to date with tools, countermeasures, threats and technologies.Developing and refining tools, templates and methodologies.Interpreting vulnerabilities, identifying weaknesses, exploiting them and escalate access.Your qualifications
Higher degree in Information Security, Computer Science, Computer/Software Engineering, Electrical Engineering, or relevant work experienceSeveral years of professional experience in conducting IOT penetration testing, fuzz testing preferably in the medical sector (or other relevant sector).Security knowledge in the areas: Operation system security, mobile OS Security, embedded operation system security, communication protocols (Bluetooth/BLE/WIFI etc.), medical protocols (DICOM etc.), threat modeling, common security testing tools.Programming skills in Python, C/C++, C#, or similar for the purpose of code review and test automationExcellent technical expertise (in both breadth and depth), written communication skills, time management skills, and the ability to communicate effectively with numerous lines of business representatives.Experience with open source and commercial penetration testing security tools in an enterprise environment.Proficiency with Windows, Unix/Linux, and mobile platform operating systems.Comprehension of OWASP Top 10 (both web and (M)IoT), OSSTMM, PTES, NIST and able to understand and communicate findings to customersMust be willing to work flexible hours; they must also be able to travel, as required. Comfortable working in a fast-paced environmentAdditional Information
Equal Opportunity Employer - Disability and VeteranTUV SUD America, Inc. is an equal opportunity, affirmative action employer and considers qualified applicants for employment without regard to race, color, creed, religion, ancestry, marital status, genetics, national origin, sex, sexual orientation, gender identity and expression, age, physical or mental disability, veteran status and those laws, directives, and regulations of Federal, State, and Local governing bodies or agencies. We participate in the E-Verify Employment Verification Program.For more information on applicable equal employment regulations, please refer to the following: Labor Law 2024Details Benefits
Paid vacation timeRetirement savings plansLong-term-service awardsWellness benefitsSick leaveCompetitive compensationFlexible working hoursFamily care benefitsEmployee eventsStructured professional developmentEmployment type
Full time / permanentWork model
hybridJob location
New BrightonCountry
United StatesJob category
Other Target GroupsRequired experience
Professionals 3 - 5 years of experienceOrganizational unit
TUV SUD America Inc.Reference number
141547Contact
TUV SUD Recruiting1-800-888-0123careers.us@tuvsud.com Apply nowPrintAdd to my favorites Share About TUV SUD as Employer
At TUV SUD we are passionate about technology. Innovations impact our daily lives in countless ways, and we are dedicated to being a part of that progress. We test, we audit, we inspect, we advise. We never stop challenging ourselves for the safety of society and its people. We breathe technology, we strive for professional excellence, and we leave a mark. We take the future into our hands. We are TUV SUD.Established more than 150 years ago in Germany, TUV SUD is a leading global provider of technical services with more than 28,000 highly skilled employees across 1,000 offices worldwide. For over 30 years, throughout 33 locations, it is TUV SUD America's priority to create a safer future. To protect people, property and the environment from technology-related risks; we drive consumer protection, digital transformation, sustainable development, and urbanization.Find out more about TUV SUD