The Penetration Tester will be responsible for identifying security risks by reviewing and monitoring of security measures for the protection of computer networks and information across the infrastructure and Cloud Environments. This role will be required to test and assess technology assets to identify risks and vulnerabilities and work with technology teams to mitigate the risk. Interprets security related regulatory controls to apply the appropriate architecture/design for cross functional teams. The Penetration Tester position requires an in-depth understanding of the business applications, process and procedures. The Penetration tester will work closely with management in the development and enforcement of in application security policies and complying with requirements of external security audits and recommendations.

Primary Responsibilities

Experience with performing white and grey box penetration testing and system exploitation against desktops, servers, applications, operating systems, and physical security systems.
• Experience with analyzing vulnerabilities and delivering clear and coherent written reporting, identifying network risks and providing mitigation recommendations
• Experience with conducting penetration and malicious user testing in Cloud environments, including Amazon Web Services (AWS), Azure, and on premise systems
• Excellent knowledge of Windows/AD/Linux systems administration and vulnerabilities
• Understanding of common software security issues and remediation techniques (OWASP Top 10, SANS 25, Mitre ATT&CK, etc.)
• Knowledge of PCI-DSS pen testing techniques
• Solid knowledge and understanding of systems development life cycle (SDLC), CI/CD pipelines and Agile methodologies
• Development experience using Python, PowerShell, .NET and JAVA

• Bachelor's degree in an IT-related field required; post-graduate degree is a bonus, but not required.
• 5 or more years of experience in or cyber security performing Penetration Testing or Red Teaming.
• Must be passionate about contributing to an organization focused on continuously improving consumer experiences
• OSCP, CEH, CEPT, GPEN, GXPN, CRTOP, CPT, LPT Master, or CompTIA PenTest+ Certification

 Inovalon provides equal employment opportunities (EEO) to all employees and applicants for employment. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, or protected veteran status and will not be discriminated against on the basis of disability.