Toot

Written by LeoBurr on 2025-01-06 at 23:08

Just got approval for an App/CloudSec Engineer-in-Test role. Feel free to boost or send to folks who may be a fit/interested.

:boostRequest: :boosts_ok_gay:

[#]GetFediHired #Cybersecurity #InfoSec

Remote Job, though US-Based only (not my call, sorry~)

DM me for details/payrate, and shortly, a link to apply. I'm screening candidates unofficially through the Fediverse.

JD is below:

Location: Austin, TX, Remote

Title: Security Quality Engineer (App/CloudSec)

Department: Quality Engineering, Information Security (dotted line)

Reports to: Director of Quality

Position Overview:

The Security Quality Engineer will be vital in integrating security within our Quality Engineering processes, with a focus on vulnerability management, compliance, and secure testing practices in support of our Practice Management and Fintech platform. This role will work closely with the Security Team to remediate vulnerabilities and ensure that security best practices are embedded in testing strategies. Additionally, the Security Quality Engineer will audit test cases in TestRail, lead/participate in red team exercises, and collaborate with the Platform Engineering/SRE team to enhance the security posture of the infrastructure through effective testing and monitoring practices in support of our practice management platform.

Key Responsibilities:

• Security Testing, Threat Hunting, and Red Team Involvement
• Conduct comprehensive security assessments and validate the remediation of issues identified by the Information Security team ensuring thorough testing of vulnerabilities and security controls, including Intrusion Detection Systems (IDS).
• Participate in red team activities to proactively identify security gaps, contributing insights to improve overall security posture, measures and response capabilities.
• Authors and audits test cases in Test Rail across product feature teams for relevant security coverage.
• Works closely with SDET team to automate security-specific tests for inclusion in CI/CD pipeline where appropriate.

Audit and Compliance Support

• Audit and refine test cases in TestRail, ensuring that security considerations are consistently applied and validated against compliance frameworks (ie, SOC 2, PCI-DSS).
• Collaborate with the Platform Engineering/SRE team to ensure that security testing aligns with operational practices and compliance requirements.

Training and Security Best Practices for the QE Team

• Develop, deliver, and maintain training documentation and presentations to educate the QE team on secure testing methodologies, promoting the integration of security practices into testing workflows.
• Mentor QE team members to foster a security-focused culture, enhancing awareness of secure coding and testing principles.

Required Qualifications:

• Bachelor’s degree in Information Security, Computer Science, or related field or equivalent work experience.
• 3+ years of experience in security testing within a quality engineering environment

Familiarity with Test Rail, Tricentis QTest or other Test Management Tools.

• Proficiency in scripting, preferably in Python.
• Understanding of standard security testing tools and frameworks (ie, OWASP, NIST).
• Experience with PCI DSS and related compliance standards or similar
• Strong understanding of TCP/IP Networking, Intrusion Detection Systems, firewalls, etc.
• Familiarity with cryptography and its use in data security
• Experience working within an Agile environment

Soft Skills:

• Excellent communication skills for effectively conveying security concepts to the QE team and other stakeholders.
• Detail-oriented with strong analytical capabilities to maintain audit-compliant documentation and secure testing practices.

We are a diverse organization, and have LGBTQIA representation not just in our ranks, but in our leadership.

=> More informations about this toot | View the thread | More toots from LeoBurr@tiggi.es

Mentions

Tags

=> View getfedihired tag | View cybersecurity tag | View infosec tag