Cyber Security Testing Engineer with Performance and Penetration Testing
Posted 4 days ago by 1759565681
Negotiable
Outside
Remote
USA
Summary: The Cyber Security Testing Engineer role focuses on performance and penetration testing for healthcare applications, requiring extensive experience in both areas. The position is fully remote and emphasizes collaboration with various teams to enhance security and performance testing methodologies. Candidates must possess a strong understanding of web technologies, compliance standards, and relevant testing tools. This role is outside IR35, indicating a flexible contracting arrangement.
Key Responsibilities:
- Design, develop, and execute performance, load, stress, and scalability tests for healthcare applications.
- Monitor system performance under peak loads and identify bottlenecks across application, database, or infrastructure layers.
- Conduct penetration testing, vulnerability assessments, and secure code reviews for healthcare applications and APIs.
- Work with QA, DevSecOps, and development teams to integrate security and performance testing into CI/CD pipelines.
- Document findings, prepare dashboards/reports, and communicate results to technical and business stakeholders.
Key Skills:
- 5+ years of experience in Performance Testing and Security Testing.
- Proficiency with performance testing tools (JMeter, LoadRunner, Gatling, BlazeMeter, or similar).
- Experience with penetration testing tools (Burp Suite, OWASP ZAP, Nessus, Metasploit, Kali Linux).
- Strong understanding of web technologies, APIs, cloud platforms (AWS/Azure), and databases.
- Knowledge of healthcare compliance and regulatory standards (HIPAA, HITRUST, PHI/PII protection).
Salary (Rate): undetermined
City: undetermined
Country: USA
Working Arrangements: remote
IR35 Status: outside IR35
Seniority Level: undetermined
Industry: IT
Role: Cyber Security Testing Engineer with Performance and Penetration Testing
Location- 100% Remote
12+ Months
Must Have Skills
- 5+ years of experience in Performance Testing and Security Testing.
- Proficiency with performance testing tools (JMeter, LoadRunner, Gatling, BlazeMeter, or similar).
- Experience with penetration testing tools (Burp Suite, OWASP ZAP, Nessus, Metasploit, Kali Linux).
- Strong understanding of web technologies, APIs, cloud platforms (AWS/Azure), and databases.
- Knowledge of healthcare compliance and regulatory standards (HIPAA, HITRUST, PHI/PII protection).
Performance Testing
- Design, develop, and execute performance, load, stress, and scalability tests for healthcare applications (e.g., provider portals, claims processing systems, EHR integrations).
- Monitor system performance under peak loads and identify bottlenecks across application, database, or infrastructure layers.
- Define and track KPIs such as response time, throughput, concurrent users, memory utilization, and CPU usage.
- Prepare detailed performance test reports and collaborate with development, infrastructure, and DevOps teams to resolve performance issues.
Security & Penetration Testing
- Conduct penetration testing, vulnerability assessments, and secure code reviews for healthcare applications and APIs.
- Identify risks including OWASP Top 10 vulnerabilities, misconfigurations, and data exposure threats.
- Perform SAST/DAST testing across web, mobile, and API layers.
- Recommend and validate remediation measures with risk-based prioritization.
- Ensure compliance with HIPAA, HITRUST, and healthcare data protection standards.
Collaboration & Reporting
- Work with QA, DevSecOps, and development teams to integrate security and performance testing into CI/CD pipelines.
- Document findings, prepare dashboards/reports, and communicate results to technical and business stakeholders.
- Drive continuous improvement of testing methodologies, frameworks, and tools.