Ethical Hacking Penetration Tester

Position Description

There's no better time to bring your software development career to the health care industry.

 

At Optum, the fastest growing part of UnitedHealth Group, you can bring your passion for innovation to an Agile environment where some of the smartest people you'll ever work with are working together to help make the health care system work better for everyone. When you join us as a Quality Assurance Engineer, you would work as a part of a dynamic team involved with software, web, portal, application, and other testing for new systems and/or enhancements with a focus on both manual and/or automated testing tools, test script and test plan creation and maintenance, defect tracking and reporting. Here, you'll work at a pace you didn't know you had in you, your performance will be rewarded and, at the end of the day, you'll know you're doing your life's best work.(sm)

 

Primary Responsibilities:

• Work as part of a penetration testing team, taking direction from team lead(s) and executing directives in a thorough and timely fashion
• Ethically operate with appreciable latitude in developing methodology and applying it in the field
• Create written reports, detailing assessment findings and recommendations
• Conduct vulnerability assessments on a wide variety of technologies and implementations utilizing both automated tools and manual techniques
  • Network penetration tests
  • Application penetration tests (web and thick client)
• Effectively communicate successes and obstacles with fellow team members and team lead(s)
• Interface with customer contact(s) and staff in a constructive and professional manner
• Develop subject matter expertise in topics to include: network, database, wireless and application security assessments, and adversarial network operations
• Research and analyze known hacker methodology, system exploits, and vulnerabilities to support methodology development and execution
• Utilize common vulnerability assessment and penetration testing tools

Requirements

Required Qualifications:

• Bachelor's Degree OR High School Diploma/GED with equivalent experience and GIAC and/or other Penetration Testing-related Certification
• Experience in the IT industry (system administration, software development, etc.)
• Demonstrable technical experience with UNIX / Linux and Windows operating systems, major network devices (Cisco, etc.) and at least one type of database
• Demonstrable technical experience with Web Application Penetration Testing
• Demonstrable technical experience with assessment and exploitation tools:  Metasploit Pro, Nexpose, Kali Linux and Burp Suite Pro
• Experience / understanding of networking - port numbers, services, protocols, TCP - IP stack, OSI - Model
• Experience / understanding of OWASP
• Knowledge of Payment Card Industry Data Security Standard (PCI DSS) requirements

Preferred Qualifications:

• Certifications: OSCP, CISSP, CEH, CWAPT and/or CPT
• Experience with common network vulnerability assessment techniques and tools such as: Nmap, Nessus, WebInspect, etc
• Experience with NIDS / HIDS, network and application firewalls, proxies and other information security products
• Familiarity with common penetration testing methodologies such as the OSSTMM, OWASP Testing Guide and the PTES
• Familiarity with web application concepts, such as JavaScript, XML, SOAP, REST, AJAX, etc

Technology Careers with Optum. Information and technology have amazing power to transform the health care industry and improve people's lives. This is where it's happening. This is where you'll help solve the problems that have never been solved. We're freeing information so it can be used safely and securely wherever it's needed. We're creating the very best ideas that can most easily be put into action to help our clients improve the quality of care and lower costs for millions. This is where the best and the brightest work together to make positive change a reality. This is the place to do your life's best work.(sm)

 

 

Diversity creates a healthier atmosphere: UnitedHealth Group is an Equal Employment Opportunity/Affirmative Action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, national origin, protected veteran status, disability status, sexual orientation, gender identity or expression, marital status, genetic information, or any other characteristic protected by law.

 

 

Job Keywords: IT, Information Technology, Ethical Hacking, IT Tester, Penetration Tester, owasp, metasploit, burp suite, Dublin, Ireland