About us:
At Cognira, we strongly believe that people are the biggest asset of our company. Our hand-picked team consists of passionate, collaborative, and forward-thinking individuals from all over the globe. We are passionate about making science easy and accessible to retailers, helping them get more value from people, data, and systems. We bring together expertise in retail, science, and scalable technologies to automate and enhance the quality of decision-making through software and consulting services.
For the last three years in a row, Cognira has been recognized as one of the fastest-growing companies in North America. We are proud to have a growing team of domain experts and data scientists, as well as a culture that fosters strong and long-lasting relationships with our clients.
Our values:
- Stand up for what’s right
- Customers are always first
- Think like an Entrepreneur. Act like a CEO.
- Learn, Unlearn, Relearn
- No brilliant jerks allowed
- All work and no play is no fun at all
Important: Please submit your resume in English only.
About the Project :
Project Name: "Automated Security Testing Framework for Web Applications"
Project Description: The goal of this project is to develop an automated framework to perform security testing on web applications. This framework will identify common vulnerabilities such as SQL Injection, Cross-Site Scripting (XSS), Broken Authentication, and Sensitive Data Exposure, using automation tools and custom scripts.
The system will be capable of :
- Scanning Web Applications: Automatically crawling web applications to identify potential entry points for attacks.
- Simulating Attacks: Running automated penetration tests to exploit vulnerabilities.
- Reporting: Generating detailed reports with identified vulnerabilities, their severity, and suggested fixes.
The framework will leverage modern security tools and libraries, integrating with Continuous Integration/Continuous Deployment (CI/CD) pipelines for early vulnerability detection in the development cycle.
Skills and Tools Needed:
To execute this project effectively, the following skills are required:
1. Programming Knowledge
- Python: For writing scripts and integrating automation tools.
- Bash/Shell Scripting: For running system-level commands and tasks.
2. Web Technologies
- Understanding of HTTP protocols, cookies, headers, and web sessions.
- Familiarity with HTML, CSS, and JavaScript to understand web application structure.
3. Security Basics
- Knowledge of common web vulnerabilities like OWASP Top 10.
- Basics of encryption and authentication methods.
4. Automation Tools
- Experience with security testing tools like OWASP ZAP, Burp Suite, or Nmap is a plus
- Using libraries like Selenium for web interaction automation.
5. DevOps
- Basics of CI/CD pipelines.
- Knowledge of integrating security testing into DevOps workflows.
6. Reporting and Visualization
- Familiarity with Excel, Tableau, or Python libraries like Matplotlib for creating graphical reports.
[ Important: Please send us your resume in English only ]
What you'll enjoy here:
It's not just an internship; we've got some great added value for you too. Here's what you'll enjoy:
- Great company culture.
- "Learn and Share" sessions.
- You'll get support from your mentors.
- Social events and after-work.
- A flexible and fun work environment.
- Casual dress code.
- You'll work with a cool team! We respect your ideas, and we're all about trying new things.
- Work/life balance
[ Important: Please send us your resume in English only ]