Medical Device Penetration Tester

About ELTON

ELTON Cyber runs continuous, subscription-based security testing for medical device manufacturers. We help medtech companies find and manage vulnerabilities in their products with FDA-defensible testing and assessment.

The Role

Penetration Tester. You'll perform hands-on security assessments of medical device products. Software, hardware, networking, and the systems around them.

The work spans both hardware and software. You'll review automated vulnerability source data, validate known vulnerabilities to confirm what's real, and run manual testing to build proof-of-concept exploits for the issues that matter.

We work to strict timelines and quality standards, with specific processes that keep our testing regulatory-defensible. Within that, you have room to test to your own discretion. As long as you meet ELTON's internal standards and the regulatory requirements for the engagement, how you get there is yours. The art of pen testing is part of the job, and we've built the process so it doesn't get in the way of it.

You don't have to be a medical device expert coming in. If you have the testing skills and want to grow into the medtech space, we'll get you there. If you already have the domain experience, even better.

This role works with physical products in our lab, so you'll need to be in the office at least twice a week. You must be within one hour of Naperville, IL.

Qualifications

• Hands-on penetration testing experience, or strong security fundamentals and a clear drive to grow into the role
• Comfortable testing both hardware and software, or eager to build the side you're newer to
• Able to review automated vulnerability data, validate findings, and write proof-of-concept exploits through manual testing
• Familiarity with networking and systems security
• Able to work within defined processes and timelines without losing the creativity that makes testing effective
• Medical device, embedded, or regulated-industry experience is a plus, but you can learn the domain here
• Within one hour of Naperville, IL, and able to be in the office at least twice a week

Employment type:  Full-time

Workplace:  Hybrid (Naperville, IL) — minimum 2 days/week in office

• Seniority:  Open (experienced testers and motivated up-and-comers both welcome - ELTON is always hiring people that fit the role)