Penetration tester

CGI in Romania

Founded in 1976, CGI is among the largest independent IT and business consulting services firms in the world. With 78,000 consultants and other professionals across the globe, CGI delivers an end-to-end portfolio of capabilities, from strategic IT and business consulting to systems integration, managed IT and business process services and intellectual property solutions. CGI works with clients through a local relationship model complemented by a global delivery network that helps clients digitally transform their organizations and accelerate results. With Fiscal 2019 reported revenue of C$12.1 billion, CGI shares are listed on the TSX (GIB.A) and the NYSE (GIB). Learn more at cgi.com.

À propos de CGI

Fondée en 1976, CGI figure parmi les plus importantes entreprises indépendantes de services-conseils en technologie de l’information (TI) et en management au monde. CGI compte 78 000 conseillers et autres professionnels établis partout dans le monde grâce auxquels l’entreprise offre un portefeuille complet de services et de solutions : des services-conseils stratégiques en TI et en management, de l’intégration de systèmes, des services en TI et en gestion des processus d’affaires en mode délégué ainsi que des solutions de propriété intellectuelle. La collaboration de CGI avec ses clients repose sur un modèle axé sur les relations locales, conjugué à un réseau mondial de prestation de services, qui permet aux clients de réaliser la transformation numérique de leur organisation et d’accélérer l’obtention de résultats. Au cours de l’exercice financier 2019, CGI a généré des revenus de 12,1 milliards de dollars canadiens. Les actions de CGI sont inscrites à la Bourse de Toronto (GIB.A) ainsi qu’à la Bourse de New York (GIB). Apprenez-en davantage sur cgi.com.

• Having a bachelor or master degree
• Experienced in one or several aspects regarding the IT Software Development Lifecycle (SDLC): technical design, IT architecture, development, testing, infrastructure, …
• Knowledgeable about Security aspects applied to the SDLC; in particular, ISO 2700n series, OWASP.
• In-depth knowledge of Windows, UNIX and Linux operating systems
• Experienced in C, C++, C#, Java, ASM, PHP, PERL, .net
• Good knowledge of penetration testing / vulnerability testing / reverse engineering / forensic tools such as Nessus, nmap, Metasploit, Qualys, …
• Good knowledge of cryptographic principles.
• Holding one of several certifications: C(E)PT, CEH, CISSP, …or in the process of getting certified.
• A good communicator in English; good writing skills are an advantage.
• Self-starting and able to take initiative and work autonomous
• Able to integrate into an international/multi-cultural environment and a real team player;
• Able to coach and share knowledge

• Perform consultancy studies and services on quality/technical/security matters regarding IT systems and processes, and corresponding to your expertise.
• Monitor/control IT security and technical aspects throughout the IT lifecycle: business modelling, specifications, technical design, development, testing, acceptance, deployment, documentation, maintenance, operations…
• Perform Security/Quality/Technical reviews of documentation
• Penetration testing
• Perform on-site IT process assessments and audits
• Participation in technical workshops and pre-reviews
• Support and actively contribute to improving security and technical aspects in the IT lifecycle.
• Apply your technical knowledge in a quality control, verification, coordination and consulting role.
• Coaching on information systems security and IT processes
• Provide written recommendations for improvement and reports regarding IT security and technical matters