Penetration Tester
Melbourne Office (33X)
Bupa
Bupa is an international healthcare company. Our purpose is helping people live longer, healthier, happier lives and making a better world.General information
Name Penetration Tester Ref # 50906 Date Friday, June 27, 2025 Full / Part Time Full TimeDescription & Requirements
Permanent Opportunity
At Bupa, we’re committed to protecting the value we create by delivering innovative, secure, and scalable solutions for the future of healthcare. We are looking to hire a Penetration Tester who plays a critical role in identifying, assessing, and mitigating security vulnerabilities within Bupa applications, networks, and IT systems. They conduct simulated attacks to evaluate the effectiveness of security measures and ensure that systems are resilient against real-world threats and validate the exploitability of identified vulnerabilities.
Responsibilities
- Perform thorough penetration testing on Bupa’s applications, networks, and IT systems to identify security weaknesses and vulnerabilities and identify and exploit vulnerabilities in both internal and external systems.
- Conduct assessments on web applications, mobile applications, network infrastructures, cloud environments, and endpoints.
- Simulate real-world cyberattacks to evaluate the security posture of Bupa’s systems and applications.
- Safely exploit vulnerabilities to demonstrate the potential impact and exploitability of identified security weaknesses.
- Provide a risk analysis of identified vulnerabilities based on severity, exploitability, and potential business impact.
- Prioritise findings based on risk and collaborate with technical teams to address the most critical issues first.
- Document and report all findings, including vulnerabilities, exploits, and recommendations for remediation.
- Deliver executive-level summaries to communicate the potential business impact of security risks.
- Work closely with development, security, and IT teams to ensure vulnerabilities are remediated effectively and in a timely manner.
- Provide guidance and support for the implementation of security best practices within development processes and system configurations.
- Participate in security incident response for pipeline and application-level security events, performing root cause analysis and implementing long-term remediation.
- Ensure all testing activities comply with organizational security policies, legal requirements, and industry standards (e.g., CREST, OWASP, NIST, GDPR).
Qualifications, Training and Experience
- 10+ years of experience in Information Technology, minimum 10 years’ experience in Security
- 5+ years of pentesting experience Certifications:
- Certified Ethical Hacker (CEH): Industry-standard certification focused on ethical hacking and penetration testing techniques.
- Offensive Security Certified Professional (OSCP): Highly regarded certification for penetration testers, demonstrating practical skills in offensive security.
- GIAC Penetration Tester (GPEN): A certification focused on penetration testing and ethical hacking methodologies.
- Certified Cloud Security Professional (CCSP): Relevant if working with cloud environments (AWS, Azure, GCP). Additional Certifications (Optional but Beneficial): • CREST Registered Penetration Tester (CRT): A certification specifically for penetration testers, focusing on best practices.
- SANS GPEN or GWAPT: For deeper knowledge in web application penetration testing.
- Certified Red Team Professional (CRTP): Focuses on advanced tactics used by attackers and security testing. Experience:
- Business and commercial acumen - strong business experience with a strong focus of the customer
- Vendor and partner management experience, including professional services and technology vendors
What’s in it for you?
As well as a competitive salary, a range of Bupa benefits and flexible working/ work from home, you’ll be challenged and encouraged to innovate. You will collaborate strongly with colleagues who are committed to delivering exceptional experiences. We trust, respect, and consider everyone, knowing your difference will make the difference.
- Discount on our health insurance, travel, car, home, contents, and pet insurance products as well as Bupa services such as Dental and Optical
- A ‘People First’ wellness program – SMILE. Provides a range of services such as health coaches, annual skin checks and flu vaccinations, assistance with nutrition, mental and general well-being guides, and product discounts. You will feel happier & healthier for working at Bupa!
At Bupa, we are striving to create and sustain a safe and inclusive workplace. We welcome applicants from all cultural backgrounds, genders, and abilities. If you require any adjustments to participate in our recruitment process, please let us know at the time of your application.
Location Melbourne Office (33X) Recruiter Hemani Bhardwaj
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: AWS Azure CCSP CEH Cloud CREST Ethical hacking Exploit Exploits GCP GDPR GIAC GPEN GWAPT Incident response NIST Offensive security OSCP OWASP Pentesting Red team Risk analysis SANS Vulnerabilities
Perks/benefits: Competitive pay Flex hours Health care Team events
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.