Senior Vulnerability Assessment and Penetration Testing (VAPT) Specialist

At Cognizant, our global community sets us apart—an energetic, collaborative and inclusive work environment where everyone can thrive. And with projects at the forefront of innovation, you can build a multifaceted, rewarding career and draw inspiration from dedicated colleagues and leaders. Cognizant is right where you belong.

What You’ll Do

• Lead comprehensive vulnerability assessments and penetration tests across web applications, APIs, and network infrastructure to identify and assess potential risks.
• Provide actionable, prioritized recommendations for remediating identified vulnerabilities and optimizing security controls.
• Develop, enhance, and maintain security testing methodologies, tools, and custom scripts to improve testing efficiency.
• Collaborate with development teams to integrate security testing into the Software Development Lifecycle (SDLC), ensuring secure coding practices are followed.
• Perform in-depth security code reviews, offering expert guidance on mitigating vulnerabilities and following secure coding standard methodologies.
• Stay informed on the latest security threats, vulnerabilities, and remediation techniques, and incorporate this knowledge into ongoing testing and strategies.
• Prepare clear, detailed reports and presentations on security findings, delivering them optimally to both technical and non-technical partners.
• Mentor and train junior security analysts and specialists, encouraging a culture of continuous learning and improvement within the team.
  
  

What You Bring To The Role

• Expertise in vulnerability assessment and penetration testing, particularly on web applications, APIs, and network infrastructure.
• Demonstrable understanding of security principles, risk assessment methodologies, and secure coding practices.
• Experience developing and refining security testing tools, methodologies, and scripts.
• Hands-on experience with integrating security testing into the SDLC.
• Familiarity with common security tools (e.g., Burp Suite, OWASP ZAP, Metasploit) and techniques for identifying and mitigating security vulnerabilities.
• Good interpersonal skills, capable of translating technical findings into actionable insights for different audiences.
• Ability to stay updated on evolving security threats and effectively apply this knowledge.
• Strong team leadership skills with experience mentoring junior team members or leading security initiatives.
  
  

Working arrangements

We strive to provide flexibility wherever possible. Based on this role’s business requirements, this is a remote position open to qualified applicants in Ontario and/or Nova Scotia, where our hubs are located. Regardless of your working arrangement, we are here to support a healthy work-life balance though our various wellbeing programs.

Note: The working arrangements for this role are accurate as of the date of posting. This may change based on the project you’re engaged in, as well as business and client requirements. Rest assured; we will always be clear about role expectations.