Penetration Testing Engineer

Infosys is a global leader in next-generation digital services and consulting. We enable clients in more than 56 countries to navigate their digital transformation. With over four decades of experience in managing the systems and workings of global enterprises, we expertly steer our clients through their digital journey. We do it by enabling the enterprise with an AI-powered core that helps prioritize the execution of change. We also empower the business with agile digital at scale to deliver unprecedented levels of performance and customer delight. Our always-on learning agenda drives their continuous improvement through building and transferring digital skills, expertise, and ideas from our innovation ecosystem.

Recognized as a Top Employer across China — contributing to our sixth consecutive year of global certification. As an AI first organization, we empower our people to work on next generation technologies, continuously learn, and create impact at scale—supported by a culture rooted in care, inclusion, and excellence.

▶️Join Infosys and be part of a culture that’s not just promised—it’s certified. #Top Employer2026 #Thrive AtInfosys

Visit www.infosys.com to see how Infosys (NYSE: INFY) can help your enterprise navigate your next.

岗位职责

1. 负责对公司应用程序、系统和网络环境进行全面的安全评估和渗透测试，以识别潜在的安全漏洞和风险。
2. 手动探索并验证常见安全漏洞，尤其是OWASP Top 10中列出的那些类型的漏洞，以确保复杂环境中的安全控制措施的有效性。
3. 编写详细的安全评估报告，记录已识别的风险，并向开发团队提供可操作的补救指导，协助他们实施安全增强措施。
4. 利用符合行业标准的安全工具和手动测试技术，并结合自动化测试方法，进行全面的安全评估。

任职要求

1. 本科及以上学历，4年及以上的渗透测试或安全测试领域相关工作经验。
2. 熟悉OWASP Top 10漏洞类型，并具备手动识别漏洞和验证安全控制措施的能力。
3. 熟练掌握行业标准的安全工具和手动测试技术。
4. 具备出色的报告能力，能够向技术和非技术利益相关者传达技术发现。
5. 英语听说读写流利，可作为工作语言。

Infosys is an equal opportunity employer and encourages applications from suitably qualified and eligible candidates regardless of gender or other attribute covered by equal opportunity legislation.
At Infosys, we recognize that everyone has individual requirements. If you are a person with disability, illness or injury and require adjustments to the recruitment and selection process, please contact our Recruitment team for adjustment only on Infosys_ta@infosys.com or include your preferred method of communication in email and someone will be in touch.
Please note in order to protect the interest of all parties involved in the recruitment process, Infosys does not accept any unsolicited resumes from third party vendors. In the absence of a signed agreement, any submission will be deemed as non-binding and Infosys explicitly reserves the right to pursue and hire the submitted profile. All recruitment activity must be coordinated through the Talent Acquisition department.
“All aspects of employment at Infosys are based on merit, competence and performance. We are committed to embracing diversity and creating an inclusive environment for all employees. Infosys is proud to be an equal opportunity employer.”

Education: Bachelor Of Computer Science

Preferred skills: Technology->Application Security->Penetration Testing (Black,White,Grey Box Testing)