Job Portal Logo
LoginSign Up

Security Testing

Cognizant

2 - 5 years

Kolkata

Posted: 18/03/2025

Job Description

1. Security test analyst/architect

a. Must to have:

· Total IT experience ranging from 6 to 9 years.

· At least 4 years of experience in application security testing (Web/ Thick client), Infra Penetration Testing, mobile security testing and secure code review.

· Perform secure code review of software applications, developed in various languages (i.e. Java, ASP, .NET, C++, C#, PHP etc.)

· Good knowledge of security technologies for secure software development such as cryptography, authentication techniques and protocols etc.

· Co-ordinate with multiple Development Teams to understand application architecture, perform threat profiling, to be able to perform a comprehensive manual code review.

· Should be proficient in Application Security Concepts, familiar with OWASP Top 10, SANS top 25 and other security best practices.

· Basic understanding of the following protocols/technologies HTTP, SOAP/REST, SSL/TLS.

· Experience in work with relational databases like ORACLE, MS-SQL, MySQL etc.

· Analyze vulnerabilities, perform an impact analysis and risk determination.

· Successfully lead and execute projects, mentor and train resources with focus on enhancing their skill sets.

· Should have excellent communication Written, Oral and presentation skills.

· Security certifications CISSP, CEH is desirable

· Experience in secure software development standards, process, techniques and tools.

· Security Consulting

· Tools: Proficiency in most of the tools in each category

Ø Secure code review –Checkmarx, HPFortify, IBMAppScan Source edition.

Ø Web application vulnerability scanning tools - IBM AppScann, HPWebInspect, Burpsuite Pro

Ø High level programming languages :Java, C, C++, .NET

Ø Development Knowledge – ASP.NET, ASP, PHP, J2EE, JSP

Ø Database scanning : NGS & Scuba

Ø Vulnerability scanning tools : Qualys, Nessus,

b. Good to have:

· Application development knowledge.

· Must be fluent in using state-of-art IDEs involving Java/.net/php development. Knowledge of Eclipse is a big plus.

· Conduct Network Penetration Testing and vulnerability assessment as part of Application security engagements.

· Pre Sales / RFPs

· Knowledge on Compliance standards ISO 27001, PCI DSS, HIPPA and SOX

· Additional certifications like CISA, ECSA ,LPT will be an added advantage.

About Company

Cognizant is a global leader in technology and consulting services, helping businesses transform their operations through digital solutions. Specializing in IT services, including software development, business process outsourcing, and consulting, Cognizant supports clients across industries such as healthcare, financial services, manufacturing, and retail. With a focus on innovation, Cognizant assists organizations in modernizing their technology, improving operational efficiency, and enhancing customer experiences. Headquartered in the U.S., it is consistently ranked among the most admired companies in the world and is a member of the NASDAQ-100.

Services you might be interested in

One-Shot Campaign

Reach out to ideal employees in one shot!

The intelligent campaign for reaching out to the ideal audience to whom you can ask for help (guidance or referral).

getmereferred logo Know more