Cognizant Technology Solutions is looking for “ Senior Penetration Security Testing Engineer ” to join in our team of IT professionals in a permanent role. If you meet our background requirements and skills and are looking for an opportunity with these skills and expertise, here is the ideal opportunity for you!
About Cognizant’s QEA Practice:
About Cognizant’s QEA Practice: We are the largest Quality Assurance Practice Globally servicing 800+ Clients including 50+ clients in Fortune 100. We bring the industry leading vision and expertise to help with Quality Engineering transformation journey for our reputed clients. We provide Next Gen QA offerings like System Modernization assurance, Business Process Assurance, Quality Engineering, Cloud Platform Assurance, Customer Experience Assurance and Robotic Test Automation. We have been ranked #1 for Market Impact by Everest Group for four times in a row and ranked #1 for completeness of vision, test advisory and Digital Business Assurance in Gartner Magic Quadrant
Senior Penetration Security Testing Engineer
Location: Washington DC
Required Qualifications:
• 6-8 years of security testing experience
• Experience with Web Application Security, Penetration Testing, API Security, VAPT, DAST, SAST, Incident Response, Mobile Penetration Testing, Vulnerability Management
• Experience with security testing tools - AppScan, Burp Suite Pro, Fortify, Checkmarx
• Extensive experience in the Information gathering, cryptography, designing and executing security test cases as per the application requirements
• Extensive experience in identifying vulnerabilities like SQL, XSS (Cross Site Scripting), XXE, File Inclusion/Path Traversal Attacks, CSRF, File uploads, Server-side Request Forgery, Remote Execution Flaws, Server Configuration Flaws, Business logic Flaws and Authentication Flaws, Privilege Escalations, Sensitive Information Disclosures etc
• Proficient in applying OWASP Top 10 methodologies, SANS, CVE, CWE standards, CVSS and OSINT frameworks to enhance security posture across diverse systems and applications.
• Good communication & stakeholder management
Roles/Responsibilities:
• The candidate will handle Web Application Security, Penetration Testing, API Security, VAPT, DAST, SAST, Incident Response, Mobile Penetration Testing and Vulnerability Management for the customer
• Candidate will need to work with various security testing tools – AppScan, Burp Suite Pro, Fortify, Checkmarx
• Extensive experience in Information gathering, cryptography, designing and executing security test cases as per the application requirements
• Extensive experience in identifying vulnerabilities like SQL, XSS (Cross Site Scripting), XXE, File Inclusion/Path Traversal Attacks, CSRF, File uploads, Server-side Request Forgery, Remote Execution Flaws, Server Configuration Flaws, Business logic Flaws and Authentication Flaws, Privilege Escalations, Sensitive Information Disclosures etc
• Proficient in applying OWASP Top 10 methodologies, SANS, CVE, CWE standards, CVSS and OSINT frameworks to enhance security posture across diverse systems and applications.
• Good communication & stakeholder management
Must Have Skills
• Experience with security testing tools - AppScan, Burp Suite Pro, Fortify, Checkmarx
Work Authorization:
Cognizant will only consider applicants for this position who are legally authorized to work in the United States without company sponsorship (H-1B, L-1B, L-1A, etc.)
Salary and other compensation:
The annual salary for this position is between $81,500- $92,50000 depending on experience and other qualifications of the successful candidate. This position is also eligible for Cognizant’s discretionary annual incentive program, based on performance and subject to the terms of Cognizant’s applicable plans.
Benefits: Cognizant offers the following benefits for this position, subject to applicable eligibility requirements:
Disclaimer: The salary, other compensation, and benefits information is accurate as of the date of this posting. Cognizant reserves the right to modify this information at any time, subject to applicable law.
#li-lm1
A career in our Merger and Acquisition Tax practice, within Tax services, will provide you with the opportunity to help our clients meet... ...in a constantly changing world, each and every one of us at PwC needs to be a purpose-led and values-driven leader at every level...
...about attracting and retaining the best certified/registered medical assistants who are passionate about impacting our patients and... ...Behavioral Health, Gastroenterology, Heartcare, Oncology, Dermatology, Endocrinology, Sports Medicine, Neurology, OB/GYN, Pediatrics...
Overview: Spathe is currently searching for a Network Engineer, Entry Level to join our team in the Fayetteville, NC area. Spathe Systems is a rapidly growing SOF led, 8(a) defense contractor headquartered in Tampa, FL with offices in Fayetteville, NC and strategic...
...excited to announce our search for an in-house Premium Audit Reviewer! In this role, you will have the opportunity to impact the FrankCrum... ..., marital status, military service and veteran status, physical or mental disability, genetic information, or any other characteristic...
...excellent reputation with the clients. Currently, We are looking for entry-level software programmers, IT enthusiasts, and Java developers.... ...'s degree or Master's degree in Computer Science, Computer Engineering, Electrical Engineering, Information Systems, ITHighly...