Position Description: 3 to 4 years of experience in vulnerability assessment and penetration testing (VAPT) of applications Strong knowledge of the OWASP, SANS top 25, WASC security Standards and detailed knowledge of common web application attack vectors such as SQL injection, CSRF, XSS, Session Management issues, Direct Object reference, Click jacking, buffer overflows, etc Mandatory skill set: Experience in performing application security testing using manual techniques and automated tools.
Experience in automated web application vulnerability scanners (eg, AppScan, Web inspect, Accunetix, Burpsuite Pro, SQLMap, etc) is desirable Should have knowledge on Risk Rating Standards like DREAD, CVSS etc .
Good understanding of web application architecture and Secure development life cycle(SDLC) Thorough understanding of common web technologies like NET, PHP, Java, XML, SAML, SOA, SOAP, web services etc and protocols including HTTP(S), DNS, FTP, SSH etc Experience in threat modeling and risk analysis.
Experience in performing web services, APIs security testing Additional Skills: Experience in static and dynamic secure code review .
Experience in manual application penetration testing of thick client applications, mobile applications Experience in VA/PT of networks, servers, devices etc Should have performed manual mobile application penetration testing on platforms like Android, IOS etc.
Roles & Responsibilities: Web application penetration testing execution Performing scans on regular bases Client interaction for test strategies and execution .
Follow up with clients on retest, next cycle of tests What you can expect from us: Build your career with usIt is an extraordinary time to be in business As digital transformation continues to accelerate, CGI is at the center of this change-supporting our clients' digital journeys and offering our professionals exciting career opportunities At CGI, our success comes from the talent and commitment of our professionals.
As one team, we share the challenges and rewards that come from growing our company, which reinforces our culture of ownership All of our professionals benefit from the value we collectively createBe part of building one of the largest independent technology and business services firms in the worldLearn more about CGI at wwwcgi.
comNo unsolicited agency referrals pleaseCGI is an equal opportunity employer