Security Assurance Penetration Tester reference: R105596

Are you ready to leverage your expertise in security and software development to make a significant impact? Are you passionate about using your penetration testing and automation skills to drive innovation in cybersecurity? About our Team: Our global team support products education electronic health records that introduce students to digital charting and prepare them to document care in today's modern clinical environment. We have a very stable product that we've worked to get to and strive to maintain. Our team values trust, respect, collaboration, agility, and quality. About the Role: We are seeking a Penetration Tester to help strengthen our web and cloud security. In this role, you will perform thorough penetration testing, identify vulnerabilities, and recommend effective solutions. You will collaborate with teams across the organization to improve our overall security posture. Responsibilities: Conduct manual and automated penetration testing across web and cloud environments, including SAST, DAST, configuration reviews, and code analysis. Document findings and produce detailed technical security assessment reports. Identify, assess, and prioritize vulnerabilities and exploitation risks; recommend mitigation and detection strategies. Validate security fixes, ensuring remediation efforts are correctly implemented. Analyze recurring security issues to identify root causes and propose permanent solutions. Recommend improvements to tools, processes, and applications to strengthen security posture. Develop and maintain scripts to automate security testing and cybersecurity processes. Support continuous enhancement of security practices, standards, and policies. Perform advanced security testing of Identity and Access Management (IAM) solutions. Requirements: 4+ years of security experience and IT experience in software development or DevOps BS in Engineering, Information Technology, Computer Science, or equivalent (advanced degree preferred) At least one relevant offensive-security certification (e.g., OSCP, OSWE, OSEP, GPEN, GXPN, CEH, or equivalent penetration testing/red teaming certification). Strong understanding of cloud services, networking, web application architecture, content delivery, and operating system security. Ability to scope, execute, and report on penetration tests (manual and automated). Proficiency with industry security testing tools (open-source and commercial). Expert-level knowledge of secure coding principles, SAST, DAST, API security testing, and vulnerability analysis. Strong scripting and automation skills (Python, Bash, etc.). Ability to assess emerging threats and perform risk evaluations using threat intelligence tools. Excellent problem-solving and communication skills, including working effectively with global teams and presenting to senior stakeholders. Work in a way that works for you: We promote a healthy work/life balance across the organisation. We offer an appealing working prospect for our people. With numerous wellbeing initiatives, shared parental leave, study assistance and sabbaticals, we will help you meet your immediate responsibilities and your long-term goals. Working for you: We know that your wellbeing and happiness are key to a long and successful career. These are some of the benefits we are delighted to offer: ● Generous holiday allowance with the option to buy additional days ● Health screening, eye care vouchers and private medical benefits ● Wellbeing programs ● Life assurance ● Access to a competitive contributory pension scheme ● Save As You Earn share option scheme ● Travel Season ticket loan ● Electric Vehicle Scheme ● Optional Dental Insurance ● Maternity, paternity and shared parental leave ● Employee Assistance Programme ● Access to emergency care for both the elderly and children ● RECARES days, giving you time to support the charities and causes that matter to you ● Access to employee resource groups with dedicated time to volunteer ● Access to extensive learning and development resources ● Access to employee discounts scheme via Perks at Work About the business: A global leader in information and analytics, we help researchers and healthcare professionals advance science and improve health outcomes for the benefit of society. Building on our publishing heritage, we combine quality information and vast data sets with analytics to support visionary science and research, health education and interactive learning, as well as exceptional healthcare and clinical practice. What you do every day will help advance science and healthcare to advance human progress. We are committed to providing a fair and accessible hiring process. If you have a disability or other need that requires accommodation or adjustment, please let us know by completing our Applicant Request Support Form or please contact 1-855-833-5120. Criminals may pose as recruiters asking for money or personal information. We never request money or banking details from job applicants. Learn more about spotting and avoiding scams here. Please read our Candidate Privacy Policy. We are an equal opportunity employer: qualified applicants are considered for and treated during employment without regard to race, color, creed, religion, sex, national origin, citizenship status, disability status, protected veteran status, age, marital status, sexual orientation, gender identity, genetic information, or any other characteristic protected by law. USA Job Seekers: EEO Know Your Rights. At LexisNexis® Risk Solutions, our businesses span multiple industries providing customers with innovative technologies, information-based analytics, decisioning tools and data management services that provide market-specific solutions. Approximately 11,100 employees in offices throughout the world support our brands by serving customers in more than 180 countries. . LexisNexis® Risk Solutions is part of RELX, a global provider of information and analytics for professional and business customers across industries. For more information, please visit www.risk.lexisnexis.com and www.relx.com.