VAPT Application Penetration Tester

Sutherland is a digital transformation company focused on delivering exceptional experiences for both customers and employees. For 36 years, we have been entrusted with caring for our clients’ customers - a responsibility we believe we should earn every day. We are dedicated to making those experiences as delightful as possible - instantaneous, relevant, predictive, and frictionless. As an early pioneer in robotic automation, we added to our core through steady investment and acquiring key capabilities. Our design capabilities marry human insight, design- thinking, and process engineering. To make these designs come to life as envisioned by our designers, we employ the latest in robotic automation, conversational AI techniques with a range of AI-ML enhanced products and cloud-based platforms.

We believe that the best relationships come from trust and value. In addition to delivering exceptionally engineered experiences, we help our clients improve their productivity, reduce costs, enhance customer loyalty, build additional revenues, reduce time-to-market, and efficiently enter new markets. We also stand by our results. Sixty-one percent of our business is outcome based, ensuring our success is clearly tied to our clients’ success. We think that is simple for our clients to understand, and it adds to trust and transparency. Today, over 60 percent of our revenues come from clients with us for more than 11 years. Forty percent of our revenues come from Fortune-50, and 56 percent from Fortune-500 clients.

Though we have a rich history, our sights are anchored deeply in the future. We are optimistic about the benefits industry and society will see as human–machine collaboration continues to enhance what people can do. Our offerings deliver on this whether they are Sutherland Anywhere, enabling a secure remote work environment or Sutherland Connect, delivering data- rich, omni-channel services. Our deep product and platform expertise is trained on solving human problems before they emerge, and on how we wrap services around them - hiring, training, performance, security and more - to solve problems for our clients from end to end.  We work with clients across industries, including Banking, Financial Services and Insurance, Healthcare, Retail, Telecommunications, Media & Entertainment, and Technology, as well as Travel, Hospitality and Logistics.

Our digital backbone spans 144 countries around the world, with 61 delivery centers across 19 countries, handling over 43 million transactions a month for approximately 70 clients. We are a team of 38,000 global professionals, operationally effective, culturally meshed, and committed to our clients and to one another. We call it One Sutherland.

Sutherland Healthcare Solutions is a leading provider of Health Information Management, Revenue Cycle Management and Healthcare Customer support solutions to the healthcare industry. Our solutions encompass a comprehensive suite of platform enabled back-office and front office services that span the Provider, Payer, and Healthcare IT sub verticals.

We collaborate with healthcare providers and payers utilizing a unique and flexible blended shore approach. Our solutions are focused on increasing the operating margins and cash flow generation of our healthcare clients by deploying efficient business processes, proprietary re-engineering methodologies and technology enabled automation.

Primary Job Function:

Sutherland global services is seeking a Vulnerability Assessment/Penetration Testing person to augment our existing team in expanding our vulnerability assessment capabilities globally.  This person(s) should be experience in application penetration testing & Tenable SC VA tool as we move toward full automation of the scanning process in place now to mature our internal remediation cadence. Good process-oriented organization is a must, as well as the ability to prioritize, and follow through on tasks.

Responsibilities:

• Ability to conduct Web, API, Thick Client penetration testing (Manual and Automated).  
• Strong knowledge of OWASP Top 10, OSSTMM and SANS 25 ability to effectively communicate methodologies and techniques with respective teams.
• Experience with some or more of the security assessment tools such as Proxy tools, IBM Appscan, Web Inspect, NMap, Nessus, Maltego, Tenable SC, Acunetix and Backtrack.
• Able to drive the security standards in the applications like OWASP, SANS, CVSS, CWE, STRIDE, DREAD
• Ability to conduct Internal & External network penetration testing
• Ability to conduct OSINT and Red team penetration testing.  
• Conduct vulnerability assessment on Servers, Network device, Endpoints and configuration review on firewall, Network device, Servers, Endpoints as per industry standards such CIS Benchmarks.
• In-depth knowledge of Networks and Operating Systems, including Kali Linux, Ubuntu, Mac OS, Windows
• Ability to undertake and complete tasks independently, meet schedules & delivery timelines, and to move swiftly from concepts and theory to action.
• Familiarity with software attack and exploitation techniques.
• Ability to quickly learn new technologies and understand the security implications of these technologies.
• Monitoring security access and analyzing security breaches to identify the root cause.

 Summary of job function:

Conducting vulnerability assessment based on customer & Sutherland requirements. Ability to perform internal/External penetration testing, Segmentation penetration testing, Firewall configuration review to meet compliances. Ability to perform Web, API, Thick client penetration testing as per industry best standards.

Desired Education/Certifications:

• Bachelor’s degree, required in Computer Science, Engineering or related field.
• 4 to 7 years’ experience in application penetration testing & vulnerability assessment.  
• CEH, ECSA, CRTP, OSCP, and other certifications

All your information will be kept confidential according to EEO guidelines.