ELTON is defining vulnerability management for the product security industry. Our platform empowers manufacturers to proactively identify, prioritize, and remediate cybersecurity issues across complex, multi-component systems—from cloud-connected mobile apps to embedded device firmware.
As a leading cybersecurity firm specializing in regulated and high-risk environments, ELTON combines deep domain expertise with modern tooling to provide unmatched visibility across the full product lifecycle. Our team supports dozens of manufacturers through FDA submissions, postmarket surveillance, and continuous vulnerability intelligence.
We are seeking an experienced Penetration Tester to support our platform-driven testing operations. This is a hybrid role: primarily remote, but with occasional on-site access required for physical testing, team collaboration, or device handling. Candidates located in or near Chicago, IL are preferred.
What You’ll Do
- Conduct security assessments across a diverse portfolio of product systems integrated into our platform, including:
- Cloud-hosted applications and APIs
- Mobile companion apps (iOS/Android)
- Embedded systems and firmware
- Medical devices and edge platforms
- Support integration of real-world test results into ELTON’s vulnerability management engine
- Collaborate with engineering and client teams to validate exploitability, impact, and remediation recommendations
- Participate in continuous platform feedback, helping shape the future of vulnerability automation and analytics in the medical device space
What You Bring
- 3+ years of hands-on penetration testing experience, including application and infrastructure assessments
- Interest in embedded and physical system security
- Broad technical expertise across:
- Operating systems (Windows, Linux, RTOS)
- Networks and protocols, including segmentation and device discovery
- Cloud services (Azure, AWS, GCP)
- Mobile app security (dynamic/static analysis, platform behavior)
- Web and API testing, including authentication and authorization flaws
- A strong foundation in computer science or software development
- Experience in regulated industries (medical, automotive, aerospace) is a strong plus
- Strong communication skills, especially when delivering complex technical results to mixed audiences
Bonus Experience
- Existing IoT or OT experience
- Experience with vulnerability intelligence, SBOM analysis, or exploit chaining across system boundaries
- Contributions to security tooling, open-source projects, or community research
Why ELTON?
- Work at the forefront of medical device cybersecurity where security saves lives
- Join a team trusted by manufacturers worldwide to protect patient safety and clinical outcomes
- Shape the evolution of a modern vulnerability management platform
- Flexible work environment with high-impact, meaningful technical challenges
