QA Engineer specializing in test automation handling functional and non - functional tests. Seeking a detail - oriented individual with experience in SQL and automated testing tools for a hybrid role in Santo Domingo.
About the role
- Penetration Tester at AttainX performing AWS, Azure, and on-prem assessments for federal clients. Conducting exploitation, red teaming, and RMF-based security assessments.
Responsibilities
- Support Security Assessment and Authorization initiatives for a Government client.
- Protocol analysis, vulnerability discovery and exploitation, post exploitation impact analysis, and physical security.
- Perform manual and automated firmware analysis on target devices.
- Perform pen tests, fuzzing and custom exploit attacks against client systems.
- Review deployment architectures, topologies and conops for compliance with regulatory security mandates.
- Produce security reports suitable for submission to regulatory bodies.
- Conduct hands-on technical testing beyond automated tool validation, including full exploitation and leveraging of access within multiple environments.
- Conduct scenario-based security testing, or red teaming to identify gaps in detection and response capabilities.
- Conduct research and testing in support of client requirements.
- Design, implement, and integrate security solutions.
- Design, develop and support the company’s line of technology products.
- Analyze information security systems and applications and recommend/develop security measures.
- Rely on experience and judgment to plan and accomplish goals and perform complicated tasks.
Requirements
- A minimum of 5 years of proven penetration testing and ethical hacking experience.
- Hands-on experience in penetration testing across AWS, Azure, and On-Premise environments.
- At least 5 years of recent experience (within the last 6 years) in applying IT security concepts, methodologies, principles, procedures and using industry-standard IT security tools (e.g. Burp Suite, Metasploit, Wireshark).
- At least 5 years of recent experience (within the last 6 years) with enterprise architecture methodologies, concepts, procedures, principles, and tools.
- At least 5 years of recent experience (within the last 6 years) in contingency planning and backup and recovery best practices and application of NIST guidance in this area.
- At least 5 years of recent experience (within the last 6 years) in using technical testing tools (Tenable Security Center, ArcSight, IBM Big Fix, etc.).
- At least 5 years of recent experience (within the last 6 years) in conducting penetration testing or the ability to bring in a penetration tester when required.
- At least 5 years of performing assessments of Federal Information Systems using the Risk Management Framework.
- Possess at least one of the following professional Certifications required by DOC Enterprise Cybersecurity Policy (ECP) Annex C-1: Controls Assessor; Certified Information Systems Security Professional (CISSP); Certified Information Systems Auditor (CISA); GIAC Certified Incident Handler (GCIH); GIAC Systems and Network Auditor (GSNA); Electronic Commerce Council Certified Ethical Hacker (CEH); ISC2 Certified in Governance, Risk and Compliance (CGRC); Security Certified Network Professional (SCNP); Security Certified Network Architect (SCNA).
- Proficiency in verbal and written communications.
- Proficiency in interview skills.
- Proficiency in interpersonal skills.
- Proficiency in handling multiple tasks concurrently.
- Proficiency in project and time management.
- Ability to adjust to changing priorities.
- Ability to work in a cohesive team-oriented environment.
- Must be a US Citizen able to obtain and maintain a Moderate Public Trust.
- Reside within a commutable distance of Silver Spring, MD to work onsite as required.
Benefits
- Competitive compensation and benefits
- Paid vacation
- Medical
- Dental
- Vision
- Matching 401K plan
- Tuition/training reimbursement
- Long & Short-Term Disability
Job title
Job type
Experience level
Salary
Degree requirement
No Education Requirement
Tech skills
Location requirements
Automation QA Engineer at Pwrteams maintaining tests and creating automation frameworks for diverse IT projects. Join our diverse team providing IT solutions for global customers.
Quality Assurance Technician responsible for testing and compliance in medical device manufacturing. Ensuring product standards and collaborating across departments at Terumo Medical Corporation.
Senior Engineer QA ensuring quality for consumer - facing software applications at Dolby. Collaborating with cross - functional teams to drive quality outcomes through automation and validation.
Penetration Tester in AI cybersecurity firm Darktrace, focusing on identifying and mitigating security risks. Conducting penetration tests and collaborating with teams to enhance digital resilience.
Quality Assurance Engineer testing embedded control systems at Normet in Finland. Planning and executing software test cases and developing automated tests using Python and Robot Framework.
Staff Quality Engineer overseeing TRB and Global Change Control processes at Johnson & Johnson. Leading continuous improvement in quality systems within the medical device sector.
Senior Software Quality Engineer responsible for designing and maintaining test automation frameworks and CI/CD pipelines for the R&D department. Collaborating with teams in an agile environment to ensure product quality.
Instruments Quality Engineer ensuring quality for diagnostic instruments at Grifols. Participating in quality assurance activities and collaborating with production and quality control teams.
Supervisor overseeing and managing Quality Assurance processes related to RMO operations. Leading a team to ensure compliance and improve claim adjudication audits efficiently.