Description

Position Description:

Location: Open to candidates in locations within proximity to a CGI office to accommodate a hybrid work model.
Security Clearance: Reliability clearance or the ability to obtain Reliability Clearance

We are seeking a skilled Penetration Tester to assess and enhance our cybersecurity defenses by identifying vulnerabilities in our customers systems, networks, and applications. The ideal candidate will have strong technical expertise in ethical hacking, vulnerability assessment, and risk analysis. They will conduct simulated cyberattacks, document security weaknesses, and provide actionable recommendations to mitigate risks.

Your future duties and responsibilities:

1. Security Testing & Assessment
Perform penetration testing on web applications, networks, cloud infrastructure, and mobile applications.
Identify, exploit, and document security vulnerabilities through manual testing and automated tools.
Conduct red teaming and social engineering exercises to evaluate security awareness.
Simulate real-world cyberattacks to assess the customer s security posture.

2. Vulnerability Analysis & Exploitation
Conduct security research to discover potential attack vectors.
Utilize tools such as Burp Suite, Metasploit, Nessus, Kali Linux, and Wireshark.
Develop and execute custom scripts and exploits to test security defenses.
Analyze security findings and assess their potential business impact.

3. Reporting & Documentation
Prepare detailed penetration testing reports with findings, risk assessments, and remediation steps.
Present security findings to technical and non-technical stakeholders.
Maintain documentation on security tests, compliance audits, and penetration testing results.

4. Security Compliance & Best Practices
Ensure security testing aligns with industry standards (e.g., OWASP, NIST, ISO 27001, PCI-DSS).
Assist with regulatory and compliance audits by identifying security gaps.
Work with customer’s IT and security teams to implement best security practices.

5. Research & Continuous Improvement
Stay updated on the latest cybersecurity threats, vulnerabilities, and hacking techniques.
Develop new penetration testing methodologies and tools.
Participate in security conferences, bug bounty programs, and security forums.

6. Incident Response & Security Hardening
Support the security team in responding to security incidents and breaches.
Collaborate with development and operations teams to implement security fixes.
Conduct follow-up tests to verify that vulnerabilities have been remediated.

Required qualifications to be successful in this role:

Bachelor s degree in Cybersecurity, Computer Science, Information Security, or related field (or equivalent experience).8+ years of hands-on penetration testing or ethical hacking experience.

Have or have the ability to obtain reliability clearance

Strong knowledge of network security, web application security, and cloud security.Proficiency with penetration testing tools (e.g., Burp Suite, Metasploit, Kali Linux, Nessus, Nmap, Wireshark).Understanding of security frameworks such as OWASP Top 10, MITRE ATT&CK, NIST, CIS Controls.Experience with scripting languages (e.g., Python, Bash, PowerShell) for automation and exploitation.Familiarity with security testing methodologies for API security, IoT security, and mobile security.

Strong analytical and problem-solving skills, with attention to detail.Excellent written and verbal communication skills for technical reporting.

Preferred Qualifications & Certifications:Industry certifications such as OSCP (Offensive Security Certified Professional), CEH (Certified Ethical Hacker), GPEN (GIAC Penetration Tester), OSWE (Offensive Security Web Expert), or CISSP (Certified Information Systems Security Professional).Experience with cloud security testing (AWS, Azure, GCP).Knowledge of DevSecOps and security automation.

#LI-AB19

Skills:

  • Cyber
  • English
  • IT Security
  • Offensive Security Cert Exp
  • Offensive Security Cert Prof
  • Offensive Security Cert Prof
  • Threat Risk Assessment
  • GIAC Certified Pen Tester

What you can expect from us:

Together, as owners, let’s turn meaningful insights into action.

Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you’ll reach your full potential because…

You are invited to be an owner from day 1 as we work together to bring our Dream to life. That’s why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company’s strategy and direction.

Your work creates value. You’ll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise.

You’ll shape your career by joining a company built to grow and last. You’ll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons.

At CGI, we recognize the richness that diversity brings. We strive to create a work culture where all belong and collaborate with clients in building more inclusive communities. As an equal-opportunity employer, we want to empower all our members to succeed and grow. If you require an accommodation at any point during the recruitment process, please let us know. We will be happy to assist.

Come join our team—one of the largest IT and business consulting services firms in the world.

Share on LinkedInShare on FacebookTweet about this on Twitter