3 Invicti Jobs

The role of Cybersecurity Engineer/Analyst in our Product Security Testing Team is a vital one, where you will play a key role in safeguarding our products and clients and ensuring trust in our security processes. By engaging with development teams throughout the product development lifecycle, you will have the opportunity to influence product design, identify security flaws in applications, and conduct security testing to uphold the security of our products. We are looking for individuals who are committed to delivering results, value data-driven decision-making, have a continuous learning mindset, exhibit a passion for information security, and take pride in their work. To qualify for this position, you should hold a Bachelor's degree in computer science, Cybersecurity, or a related field, along with relevant cybersecurity certifications such as CEH, CCSP, CISSP, OSCP, etc. Additionally, a minimum of 2 years of proven experience in a similar Cybersecurity role is required. A strong understanding of AWS infrastructure, cloud security principles, cybersecurity methodologies, frameworks, and best practices (such as OSI, NIST, OWASP, SANS, PCI, etc) is essential. Knowledge of secure coding principles, experience in code review processes and tools, as well as proficiency in Pen testing, infrastructure scans, and dynamic application security testing methodologies and tools are also highly valued. Familiarity with tools like Invicti, Burpsuite, Traceable API, Checkmarx KICS, Fortify, and Checkmarx is preferred. In this role, you will collaborate with engineers, consultants, and leadership to identify security risks and recommend mitigations within the Secure Development Lifecycle (SDLC). Your responsibilities will include conducting secure code reviews, security testing, and vulnerability triage across various applications, as well as engaging with internal and external customers on security-related projects. You will be expected to analyze test results, document root cause and risk analysis of findings, and work closely with operations and software development teams to address potential weaknesses. Furthermore, staying updated on security best practices, vulnerabilities, and attacker tactics, as well as developing and testing functional security testing strategies for new product security requirements, will be part of your role. Strong analytical and problem-solving skills, excellent written and oral communication abilities, and the capacity to convey complex security concepts to non-technical stakeholders are crucial for success in this position. Your organizational skills, interpersonal capabilities, and commitment to improving the overall security posture of applications and infrastructure will be essential contributions to our team. Additionally, you will be encouraged to suggest enhancements to existing processes and tooling, as well as drive automation initiatives where feasible.,

Were hiring on the Blackbaud Application Security team! As a member of the Cyber Security organization at Blackbaud, the Application Security Engineer is a specialized position that plays a key role in securing software built and/or used by Blackbaud. You can expect to work closely with software development teams as well as third-party organizations to ensure that security, privacy, and compliance requirements are planned for, designed, and built into software applications at Blackbaud. In addition to securing software, you will be expected to stay up to date on whats happening in the Cyber Security industry to optimize and align our application security processes and systems throughout the Software Development Life Cycle (SDLC) at Blackbaud. The Application Security Engineering team focuses on building automation for security self-service and vulnerability management to reduce unnecessary toil. What You Will Be Doing Identifying solutions for difficult security problems while participating in a broader agile Application Security team. Building comprehensive solutions to conduct consolidation, aggregation, and notification of security findings to respective stakeholders. Conducting threat modeling, secure design reviews, and providing direct guidance to development teams. Promoting, designing, and evaluating application security in all phases of the SDLC and constantly looking for innovative ways to improve processes. Influencing, building, and assisting with information security challenges within applications. What We&aposll Want You To Have You are either a security-minded software engineer who has been building modern services using a microservice architecture in an agile development environment or a development-interested security practitioner who understands security best practices but wants to get closer to development and engineering. 5+ plus years of experience with application security and relevant testing tools for: DAST: Burp Suite, OWASP Zap, Invicti, AppScan SAST/SCA: Fortify, Checkmarx, Coverity, Semgrep, OWASP Dependency Check, Mend, Blackduck Attack Surface Management: OWASP Amass, Spiderfoot, CyCognito 3+ years of experience with Python, Bash, and/or PowerShell. 3+ years of experience in DevSecOps integrating security solutions into CI-CD pipelines and automated tooling orchestration. Relevant certifications include CompTIA Security+ or CASP+, EC Council CEH, ISC2 CSSLP are a plus. Experience partnering with development and systems engineers on impactful security?initiatives.? Understanding of software development; how applications and systems are designed, built, and break is critical. Understand?DevSecOps?cultural mindsets, and an engineering-focused approach to solving?complex?security problems. Strong verbal and written communication skills to translate security objectives and requirements to specific engineering outcomes.? The Application Security team at Blackbaud is committed to ensuring security issues are prevented, discovered, and remediated in collaboration with our engineering partners across the business. Stay up to date on everything Blackbaud, follow us on Linkedin, X, Instagram, Facebook and YouTube Blackbaud is a digital-first company which embraces a flexible remote or hybrid work culture. Blackbaud supports hiring and career development for all roles from the location you are in today! Blackbaud is proud to be an equal opportunity employer and is committed to maintaining an inclusive work environment. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, physical or mental disability, age, or veteran status or any other basis protected by federal, state, or local law. Show more Show less

As a Security Analyst at Dedalus, a prominent healthcare technology company, you will have the opportunity to contribute to the team in Chennai, India, and play a crucial role in enhancing healthcare services for a healthier planet. Your primary responsibility will involve Security Vulnerability Analysis and Penetration Testing, where you will assess, exploit, and report security vulnerabilities in software applications and infrastructure, providing recommendations for appropriate solutions. Working alongside a highly skilled team, your work will have a significant impact on the healthcare sector. Your duties will include: - Conducting Security Vulnerability Analysis, Threat Modelling, and Risk Assessment - Performing static code reviews using automated SAST tools and analyzing false positives - Executing dynamic testing (DAST) with tools like Burp-suite, Invicti, or Nessus - Conducting manual Penetration Testing and utilizing Ethical Hacking techniques to identify vulnerabilities - Compiling assessment and validation reports on identified vulnerabilities, risks, impact, recommended solutions, and Proof of Concepts (POCs) - Explaining threats and presenting assessment reports to the Developer and Architect community To excel in this role, you must meet the following essential requirements: - Minimum of four years of experience in security vulnerability analysis and Penetration Testing (VAPT) on cloud services, web products, or enterprise applications - Proficiency in using Appsec tools, including industry-standard tools like Burp-suite, Invicti, Fortify, and open-source tools such as Kali, Nmap, Wireshark, Metasploit, ZAP, and Echo Mirage - Technical knowledge of Software Development Life Cycle (SDLC) and implementation essentials for various application types (Desktop, Web, API, Mobile, and Cloud) - Ability to review Java or .NET code with a focus on security vulnerabilities and familiarity with OWASP, GDPR, and ISO Security standards - Certification in VAPT or Ethical Hacking in Mobile, Web, or Cloud security is mandatory - Exposure to DevAppSec automation and scripting is preferred - Knowledge of AI tools and securing Docker containers like Kubernetes is advantageous - Understanding of real-world threats and data protection regulations is desirable Join Dedalus and be part of a diverse and inclusive workplace where innovation and collaboration drive better healthcare outcomes for millions of patients worldwide. Dedalus is dedicated to fostering a work environment that encourages learning, innovation, and meaningful contributions to healthcare. If you are passionate about making a difference in the healthcare sector, join us on this journey to transform and improve healthcare options globally. Application Closing Date: 18th August 2025 Dedalus is committed to promoting diversity and inclusion in the workplace, ensuring respect, inclusion, and success for all employees and communities. Our dedication to diversity and inclusion is reflected in our work culture, emphasizing the importance of an inclusive and diverse workforce to drive innovation and create better healthcare solutions globally.,