Jobs

Interviews
Job Alerts
Tools

Upskill and Grow with AI

Mock Interview Practice interviews in realistic simulations

Coding Practice Improve your coding skills with challenges

Certification Earn certifications to validate your skills

AI Learning Get trained with AI expert sessions

Career Path AI insights for smarter career decisions

AI Job Match Score AI-Powered Job Match Against Your Resume and Optimize Your Resume

Career Tools and Resources

Resume Builder Build Professional Resume with Ease

ATS Friendliness Check Check Resume Friendliness for Applicant Tracking Systems

Auto Apply Apply to hundreds of jobs on any platform effortlessly

Co-Pilot (Chrome Extension) Your AI Assistant for Seamless Browsing Efficiency

Interview Questions Streamline interviews with ready-to-use questions

Salaries Discover market-driven salary insights across skillsets and geographies

Companies Explore leading companies actively hiring talent
For Employers

Home
>
Jobs in bengaluru
>
CGI
>
Penetration Tester / Application Security Analyst

Penetration Tester / Application Security Analyst

CGI

3 - 8 years

5 - 9 Lacs

bengaluru

Posted:4 days ago| Platform:

Apply

Skills Required

application security python cloud security oscp ceh security automation manual testing vulnerability assessment cybersecurity javascript gdpr dast gcp compliance powershell bash penetration testing sast devsecops aws sdlc azure

Work Mode

Work from Office

Job Type

Full Time

Job Description

Position: Penetration Tester / Application Security AnalystExperience: 3+yearsCategory: Software Development/ EngineeringShift: General ShiftEmployment Type: Full TimeEducation Qualification:

Any graduation or related field or higher with minimum 3 years of relevant experience.

Position Description:

We are seeking a skilled and detail-oriented Penetration Tester to join our cybersecurity team
This role involves performing manual security assessments across web, mobile, API, and network environments, identifying vulnerabilities, and collaborating with cross-functional teams to enhance security posture
The ideal candidate will have hands-on experience with tools like Burp Suite, a deep understanding of threat modeling, and a passion for staying ahead of emerging threats

Your future duties and responsibilities:

Conduct manual penetration testing on web, mobile, API, and network systems.
Utilize tools such as Burp Suite for vulnerability discovery, exploitation, and documentation.
Identify, validate, and reproduce application and infrastructure vulnerabilities.
Perform threat modeling and risk assessments to uncover potential attack vectors.
Document findings with clear evidence, risk ratings, and actionable remediation guidance.
Collaborate with development, DevSecOps, and security teams to promote secure coding and design practices.
Stay current with OWASP Top 10, SANS CWE Top 25, and evolving threat landscapes.
Ensure testing aligns with industry standards and compliance frameworks including:
OWASP ASVS v5
NIST 800-115
ISO/IEC 27001 / 27002
PCI DSS (as applicable)

Required qualifications to be successful in this role:

3+ years of experience in penetration testing and vulnerability assessment.
Strong command of manual testing techniques and exploitation strategies.
Proficiency in Burp Suite (Pro/Community) and its modules (Intruder, Repeater, etc.).
Scripting knowledge in Python, Bash, PowerShell, or JavaScript.
Familiarity with secure coding practices and integrating security into SDLC/CI-CD pipelines.
Solid understanding of CVEs, CVSS scoring, and vulnerability databases.
Experience in delivering technical reports and communicating findings to diverse audiences.

Technical Skills:

Certifications such as OSCP, CEH, GWAPT, GPEN, or Burp Suite Certified Practitioner.
Experience with DAST/SAST tools and security automation.
Exposure to cloud security testing (AWS, Azure, GCP).
Understanding of regulatory frameworks like NIS2, GDPR, HIPAA, MDR (especially for healthcare domains).
Strong analytical and problem-solving abilities.
Excellent verbal and written communication.
Self-motivated with the ability to work independently and in team settings.
Meticulous attention to detail and commitment to quality.

Skills:

Nessus

More Jobs at CGI

Sap Abap Consultant

Bengaluru, Hyderabad

4 - 8 yrs

INR 12 - 19 Lacs

Junior position Software Engineer/Lead Java Fullstack

Hyderabad, Telangana, India

Experience: Not specified

Salary: Not disclosed

Lead Analyst - SAP ABAP

Hyderabad, Telangana, India

Experience: Not specified

Salary: Not disclosed

Power Bi Developer

Mumbai

5 - 8 yrs

INR 0 - 0 Lacs

Python Software Developer

Mumbai

5 - 8 yrs

INR 0 - 0 Lacs

Mock Interview

Practice Video Interview with JobPe AI

Start Python Interview

Start Your Job Search Today

Browse through a variety of job opportunities tailored to your skills and preferences. Filter by location, experience, salary, and more to find your perfect fit.