Security Test Engineer

Relatient is seeking a Security Test Engineer in Pune to optimize patient access through AI-powered workflows. This hybrid role involves developing and implementing comprehensive security testing strategies, performing assessments, penetration testing, and vulnerability scanning across applications, networks, and infrastructure. The engineer will identify and report vulnerabilities, provide remediation guidance, and collaborate with development teams to integrate security best practices throughout the SDLC and CI/CD pipelines. The role also includes developing automated security testing frameworks and monitoring threat intelligence.

Must Have

• Develop and implement security testing strategy and plans.
• Perform security assessments, penetration testing, and vulnerability scanning.
• Identify, document, and report security vulnerabilities.
• Provide actionable remediation guidance.
• Work with development and operations teams to address vulnerabilities.
• Develop and maintain automated security-testing frameworks.
• Continuously monitor security advisories and threat intelligence.
• 7+ years in security testing, penetration testing, or vulnerability assessment.
• Hands-on experience with security testing tools (Burp Suite, Kali Linux, OWASP ZAP, SonarQube, etc.).
• Strong understanding of OWASP, CWE, CAPEC, NIST, HIPAA standards.
• Proficiency with scripting/programming languages (Python, Bash).
• Hands-on experience in a Cloud environment (AWS).
• Well versed in database SQL.

Good to Have

• Master's degree in computer science or related field.
• Relevant security certifications (CEH, OSCP, CISSP).
• Familiarity with secure SDLC, DevSecOps, and CI/CD integration.

Perks & Benefits

• INR 5,00,000/- of life insurance coverage for all full-time employees and their immediate family.
• INR 15,00,000/- of group accident insurance.
• Education reimbursement.
• 10 national and state holidays, plus 1 floating holiday.
• Flexible working hours.
• Hybrid policy.

Description

At Relatient, we help healthcare organizations optimize patient access through AI-powered workflows, real-time automation, and flexible access tools. We are trusted by over 47,000 providers to modernize the patient experience and have been recognized by Forbes and Deloitte for our innovative and inclusive culture.

Your Role

We are looking for a Security Test Engineer to join our team. This role will be a hybrid position that requires you to work 3 days a week from our office located in Amar Tech Park.

How You'll Make an Impact

• Develop and implement a comprehensive security testing strategy and security test plans for applications, services, and infrastructure.
• Perform security assessments, penetration testing, and vulnerability scanning of applications, networks, servers, and services (including web applications, APIs, and infrastructure).
• Identify, document, and report security vulnerabilities, weaknesses, risks, and misconfigurations. Provide actionable remediation guidance and risk-analysis reports to development and operations teams.
• Work closely with software developers, QA engineers, product managers, and operations teams to ensure identified vulnerabilities are addressed, and security best practices are baked into the architecture and development lifecycle (including CI/CD pipelines).
• Develop and maintain automated security-testing frameworks, integrating static analysis (SAST), dynamic analysis (DAST), security scanning, and other tools as appropriate.
• Continuously monitor security advisories, vulnerabilities databases (e.g. CVE lists), and threat intelligence sources — assess impact to our systems and coordinate patching or mitigation actions.
• Stay current with the latest security threats, attack vectors, tools, methodologies, and industry best practices; propose and implement improvements accordingly.
• Participate in root-cause analyses and, when needed, incident response: support investigation, remediation, and strengthening of defenses.
• Collaborate with developers to implement security best practices across software architecture and development
• Embed security testing throughout the CI/CD pipeline to enable proactive detection and remediation of vulnerabilities.

Experience Requirements

• Bachelor’s degree in computer science or related field or equivalent work experience in lieu of degree is required. Master's degree preferred.
• 7+ years of experience in security testing, penetration testing, application security, vulnerability assessment, or similar roles.
• Hands-on experience with security testing tools/methodologies: penetration testing, static/dynamic analysis, vulnerability scanning, reverse engineering or code review, risk/threat modeling
• Hands-on experience in tools like Burp Suite, Kali Linux, OWASP ZAP, MobSF, SonarQube, Fortify, Checkmarx, varacode, Tenable
• Strong understanding of OWASP, CWE, CAPEC, NIST, and HIPAA standards.
• Proficiency with scripting or programming languages (e.g. Python, Bash, or other relevant languages) to build automation, custom tests or integration with CI/CD
• Relevant security certifications — such as Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP), Certified Information Systems Security Professional (CISSP), or other recognized credentials is preferred
• Familiarity with secure software development lifecycle (SDLC), DevSecOps, and integration of security into development and deployment workflows (CI/CD)
• Well versed in database SQL, and able to write basic SQL to verify data in the database
• Must have hands-on experience working in a Cloud environment- AWS or any other cloud environments
• Solid analytical, problem-solving, and risk-assessment skills; ability to communicate technical findings and remediation guidance clearly to both technical and non-technical stakeholders.

Mindsets That Matter

• Act with purpose, focus, and accountability
• Collaborate across teams and communicate clearly
• Keep improving and automate what slows you down

Benefits of working here include:

• INR 5,00,000/- of life insurance coverage for all full-time employees and their immediate family.
• INR 15,00,000/- of group accident insurance.
• Education reimbursement.
• 10 national and state holidays, plus 1 floating holiday.
• Flexible working hours and a hybrid policy.

We’re building a team as diverse as the communities we serve and the work you will do matters. Relatient is proud to be an equal opportunity employer. If you need accommodation during the application process, just let us know.

To learn more about our organization, visit www.relatient.com.