Security Testing Engineer C2C jobs with Performance Testing

Role: Security Testing Engineer with Performance Testing

Location- 100% Remote

12+ Months

Must Have Skills

• 5+ years of experience in Performance Testing and Security Testing.
• Proficiency with performance testing tools (JMeter, LoadRunner, Gatling, BlazeMeter, or similar).
• Experience with penetration testing tools (Burp Suite, OWASP ZAP, Nessus, Metasploit, Kali Linux).
• Strong understanding of web technologies, APIs, cloud platforms (AWS/Azure), and databases.
• Knowledge of healthcare compliance and regulatory standards (HIPAA, HITRUST, PHI/PII protection).

We are seeking a highly skilled Performance and Security Testing Engineer with proven expertise in testing mission-critical healthcare applications. The ideal candidate will ensure applications are secure, performant, HIPAA-compliant, and resilient to vulnerabilities and high transaction volumes.

Key Responsibilities

Performance Testing

• Design, develop, and execute performance, load, stress, and scalability tests for healthcare applications (e.g., provider portals, claims processing systems, EHR integrations).
• Monitor system performance under peak loads and identify bottlenecks across application, database, or infrastructure layers.
• Define and track KPIs such as response time, throughput, concurrent users, memory utilization, and CPU usage.
• Prepare detailed performance test reports and collaborate with development, infrastructure, and DevOps teams to resolve performance issues.

Security & Penetration Testing

• Conduct penetration testing, vulnerability assessments, and secure code reviews for healthcare applications and APIs.
• Identify risks including OWASP Top 10 vulnerabilities, misconfigurations, and data exposure threats.
• Perform SAST/DAST testing across web, mobile, and API layers.
• Recommend and validate remediation measures with risk-based prioritization.
• Ensure compliance with HIPAA, HITRUST, and healthcare data protection standards.

Collaboration & Reporting

• Work with QA, DevSecOps, and development teams to integrate security and performance testing into CI/CD pipelines.
• Document findings, prepare dashboards/reports, and communicate results to technical and business stakeholders.
• Drive continuous improvement of testing methodologies, frameworks, and tools.

Required Skills & Qualifications

• Bachelor’s degree in Computer Science, Information Security, or related field.
• 5+ years of Performance and Security Testing experience.
• Hands-on expertise with performance testing tools: JMeter, LoadRunner, Gatling, BlazeMeter, or similar.
• Proficiency with penetration testing tools: Burp Suite, OWASP ZAP, Nessus, Metasploit, Kali Linux.
• Strong understanding of web technologies, APIs, cloud platforms (AWS/Azure), and databases.
• Knowledge of healthcare compliance standards (HIPAA, HITRUST, PHI/PII protection).
• Familiarity with DevSecOps practices and CI/CD pipeline integration.
• Strong problem-solving, analytical, and communication skills.

Preferred Qualifications

• Experience with healthcare payer/provider applications (claims, enrollment, EDI, HL7, FHIR, EMR/EHR systems).
• Relevant certifications: OSCP, CEH, CISSP, CISA, CPT, or HP LoadRunner.
• Exposure to container security (Docker, Kubernetes), API security, and cloud security.