The Penetration Tester is responsible for testing the security of our software, reporting on any security vulnerabilities found, and ensuring that all necessary parties are aware of any vulnerabilities found, as well as the severity of those vulnerabilities to the security of the software. This role will own and drive multiple application security programs ensuring all requirements are gathered and metrics are created to measure the success of the program.

Lead Penetration Testing engagements on Web, Mobile, Thick, and API applications
• Manually identify and exploit application layer security vulnerabilities
• Develop multiple remediation strategies for discovered vulnerabilities
• Conduct source code reviews as necessary
• Serve as an Application Security Pentester SME and operate as a trusted advisor on issues and trends; provide general consulting services leveraging expertise and significant best practice knowledge
• Assist in security activities within the SDLC including Threat Modeling, SAST, DAST, & SCA
• Independently generate complex penetration test reports that are presented to leadership, which list the vulnerabilities found based on CVSS calculations.
• Research new attack vectors and stay current with cybersecurity news and trends
• Mentor, coach, and train other team members.
• Conduct and monitor External Penetration test engagements
• Comply with all corporate and departmental privacy and data security policies and practices, including but not limited to, Hyland's Information Systems Security Policy

• Preferred Bachelor's degree or equivalent experience
• Preferred GWAPT, eWPTX, CPTS, OSCP, or similar security-related certification
• Strong knowledge of security principles
• Strong critical thinking and problem solving skills
• Attention to detail
• Experience with languages and frameworks such as C/C++, JavaScript, .NET
• Knowledge of the OWASP Top 10, OWASP ASVS, and other security frameworks
• Knowledge of a broad range of security controls and applicably application vulnerability mitigation strategies
• Drive and willingness to learn more about all things application security related
• Deep understanding of the SSDLC
• Experience with helping product teams mitigate security vulnerabilities
• Demonstrated competency in presenting and delivering training
• Demonstrated competency reading and navigating enterprise code and the software development lifecycle
• Strong collaboration skills, applied successfully within team as well as with all levels of employees in other areas
• Strong organizational, multi-tasking, and time management skills
• Ability to effectively communicate vulnerabilities and technical concepts to all levels
• Ability to communicate effectively in writing and verbally
• Strong risk assessment ability
• Demonstrated ability to delicately communicate with customers about sensitive and high-risk information
• Demonstrated collaboration and teaching abilities
• Understanding of code to be able to communicate effectively with developers
• Up to 10% travel time required

Based on individual states' employment laws, the following details are to comply with the relevant salary posting requirements: base salary range of $124,000-186,000 and eligible for bonus and benefits

What you can expect next

• Hyland Recruiters thoroughly review every application and will contact you within 1 to 2 weeks regarding next steps. Be sure to add Hyland to your contacts list and check your spam folder so you never miss a message from us!
• Any follow up questions? Email your Recruiter directly at Careers@Hyland.com.

Benefits

401(k) Retirement Savings. Flexible Schedule. Paid Time Off. Medical, Dental, Vision. Volunteer Paid Time Off. Wellness Reimbursement. Paid Parental Leave. Sabbatical Program.

Find out more by going to https://www.hyland.com/en/resources/articles/why-work-at-hyland .

Welcome to #HylandLife

Since 1991, it has been Hyland's mission to help our employees, customers and partners exceed their potential with our industry-leading content services platform. Our employees exude a contagious energy and are passionate about what they do - whether it's helping customers succeed, raising up their fellow Hylanders, or engaging in the communities where they live and work.

The #HylandLife hashtag encompasses our employee-centric culture. Our employees live our culture day in and day out by bringing their best self to work. Hyland supports them to do just that through career development resources, wellbeing programs and innovation practices. We thrive on diverse viewpoints and new ideas and believe that a positive, inclusive workplace is imperative to sustainable success.

As we've grown to a company of nearly 4,000 strong, we have the opportunity to make a significant impact on our communities. We strongly support employee initiatives and align our giving campaigns and programs to organizations that are important to them.

We are committed to a policy of Equal Employment Opportunity and will not discriminate against an applicant or employee on the basis of race, color, religion, creed, national origin or ancestry, sex, age, physical or mental disability, veteran or military status, genetic information, sexual orientation, marital status, gender identity, or any other legally recognized protected basis under federal, state or local laws, regulations or ordinances. The information collected by this application is solely to determine suitability for employment, verify identity and maintain employment statistics on applicants.