Senior Software Engineer/Lead Analyst-Security Testing
- CGI
- 3 - 8 years
- Chennai
- 8 days ago
- Email to a friend
- Report this job
Job Description
Experience : 3 to 10 years
Category : Software Development/ Engineering
Employment Type : Full Time Education Qualification : Bachelor's degree in computer science or related field or higher with minimum 3 years of relevant experience.
- We are looking for a highly skilled Penetration Tester to be part of our offensive security initiatives
- This role requires strong expertise in manual security testing, proficiency with Burp Suite, and a solid understanding of industry security standards and frameworks
- The ideal candidate will not only conduct advanced penetration testing but also lead, mentor, and guide a team of testers, define methodologies, and ensure alignment with compliance and risk management frameworks
- Lead and perform advanced manual penetration testing across web, mobile, APIs, cloud, and infrastructure environments.
- Utilize Burp Suite Pro and other industry-standard tools for vulnerability identification, exploitation, and reporting.
- Define and improve penetration testing methodologies, processes, and best practices.
- Manage and mentor junior testers, reviewing their findings and ensuring quality deliverables.
- Act as primary point of contact for security testing engagements with clients and internal stakeholders.
- Provide strategic recommendations on risk remediation and secure development practices.
oOWASP ASVS v5
oOWASP Top 10 (2021)
oNIST 800-115
oISO/IEC 27001/27002
oPCI DSS (where applicable)
- Participate in threat modeling exercises, red team/blue team activities, and adversary simulations.
- Prepare and present executive-level reports and conduct stakeholder briefings.
- Stay ahead of emerging threats, tools, and techniques, and introduce relevant innovations into the testing practice.
Penetration testing, DAST Testing, SAST Testing, OWASP top 10
Required Skills & Qualifications
- 3+Years years of experience in penetration testing.
- Advanced skills in manual testing, exploitation techniques, and vulnerability chaining.
- Proficiency in Burp Suite Pro (all modules) and other tools such as Metasploit, Nmap, Nessus, etc.
- Strong understanding of cloud security testing (AWS, Azure, GCP).
- Experience in secure SDLC, DevSecOps, and integrating security testing into CI/CD pipelines.
- Familiarity with scripting/programming (Python, PowerShell, Bash, JavaScript, etc.).
- Demonstrated ability to mentor, coach, and lead teams.
- Excellent client communication and presentation skills.
- Certifications such as OSCP, OSWE, OSEP, GXPN, GWAPT, GPEN, Burp Suite Certified Practitioner.
- Experience with red teaming / purple teaming.
- Knowledge of regulatory frameworks (NIS2, GDPR, HIPAA, MDR).
- Proven track record of handling large-scale or complex penetration testing projects.
- Strong leadership and decision-making skills.
- Ability to balance technical depth with business risk considerations.
- Excellent communication skills (executive reporting + technical deep dives).
- Collaborative mindset with a focus on mentoring and developing talent.
- Good to have Skills- Python
- Nessus
Job Classification
Industry: IT Services & ConsultingFunctional Area / Department: Engineering - Software & QARole Category: Quality Assurance and TestingRole: Security Testing EngineerEmployement Type: Full timeContact Details:
Company: CGILocation(s): Chennai
Keyskills: software engineer risk management python cloud security oscp penetration testing methodologies manual testing javascript gdpr dast security testing gcp compliance powershell bash penetration testing sast devsecops aws sdlc azure
Similar positions
CGI
Mphasis applies next-generation technology to help enterprises transform businesses globally. Customer centricity is foundational to Mphasis and is reflected in the Mphasis Front2Back™ Transformation approach. Front2Back™ uses the exponential power of cloud and cognitive to provide hyper-persona...
Job Listings
We are in open beta version of website, please let us know if any issues, at: info(at)indigojobs.in