Join a fast - growing technology organization as Senior QA Automation Engineer with Ruby expertise. Develop test automation frameworks and perform end - to - end testing for the Distributor - Delivery workflow.
About the role
- Penetration Tester at AttainX performing AWS, Azure, and on-prem assessments for federal clients. Conducting exploitation, red teaming, and RMF-based security assessments.
Responsibilities
- Support Security Assessment and Authorization initiatives for a Government client.
- Protocol analysis, vulnerability discovery and exploitation, post exploitation impact analysis, and physical security.
- Perform manual and automated firmware analysis on target devices.
- Perform pen tests, fuzzing and custom exploit attacks against client systems.
- Review deployment architectures, topologies and conops for compliance with regulatory security mandates.
- Produce security reports suitable for submission to regulatory bodies.
- Conduct hands-on technical testing beyond automated tool validation, including full exploitation and leveraging of access within multiple environments.
- Conduct scenario-based security testing, or red teaming to identify gaps in detection and response capabilities.
- Conduct research and testing in support of client requirements.
- Design, implement, and integrate security solutions.
- Design, develop and support the company’s line of technology products.
- Analyze information security systems and applications and recommend/develop security measures.
- Rely on experience and judgment to plan and accomplish goals and perform complicated tasks.
Requirements
- A minimum of 5 years of proven penetration testing and ethical hacking experience.
- Hands-on experience in penetration testing across AWS, Azure, and On-Premise environments.
- At least 5 years of recent experience (within the last 6 years) in applying IT security concepts, methodologies, principles, procedures and using industry-standard IT security tools (e.g. Burp Suite, Metasploit, Wireshark).
- At least 5 years of recent experience (within the last 6 years) with enterprise architecture methodologies, concepts, procedures, principles, and tools.
- At least 5 years of recent experience (within the last 6 years) in contingency planning and backup and recovery best practices and application of NIST guidance in this area.
- At least 5 years of recent experience (within the last 6 years) in using technical testing tools (Tenable Security Center, ArcSight, IBM Big Fix, etc.).
- At least 5 years of recent experience (within the last 6 years) in conducting penetration testing or the ability to bring in a penetration tester when required.
- At least 5 years of performing assessments of Federal Information Systems using the Risk Management Framework.
- Possess at least one of the following professional Certifications required by DOC Enterprise Cybersecurity Policy (ECP) Annex C-1: Controls Assessor; Certified Information Systems Security Professional (CISSP); Certified Information Systems Auditor (CISA); GIAC Certified Incident Handler (GCIH); GIAC Systems and Network Auditor (GSNA); Electronic Commerce Council Certified Ethical Hacker (CEH); ISC2 Certified in Governance, Risk and Compliance (CGRC); Security Certified Network Professional (SCNP); Security Certified Network Architect (SCNA).
- Proficiency in verbal and written communications.
- Proficiency in interview skills.
- Proficiency in interpersonal skills.
- Proficiency in handling multiple tasks concurrently.
- Proficiency in project and time management.
- Ability to adjust to changing priorities.
- Ability to work in a cohesive team-oriented environment.
- Must be a US Citizen able to obtain and maintain a Moderate Public Trust.
- Reside within a commutable distance of Silver Spring, MD to work onsite as required.
Benefits
- Competitive compensation and benefits
- Paid vacation
- Medical
- Dental
- Vision
- Matching 401K plan
- Tuition/training reimbursement
- Long & Short-Term Disability
Job title
Job type
Experience level
Salary
Degree requirement
No Education Requirement
Tech skills
Location requirements
Quality Technician responsible for chemical and microbiological analyses according to Quality Monitoring scheme at Nestlé Maroc SA in Al Jadida. Ensuring compliance to quality standards and laboratory practices.
Engineer developing and implementing product design solutions, ensuring compliance with standards for alfanar. Collaborating with cross - functional teams on engineering projects from inception to completion.
Technical QA Manager managing QA across programs/projects at RDG, focusing on technical capabilities and automation delivery. Collaborating with stakeholders and internal teams to ensure successful QA services.
Quality Assurance Coordinator for Newrez/Shellpoint refining letter library and ensuring compliance in mortgage communications. Collaborating with internal stakeholders and overseeing quality assurance across departments.
Lead QA Engineer at AIS focusing on quality assurance for cloud applications and infrastructure testing. Engaging in projects related to federal cloud systems verification and validation with a hybrid work environment.
Quality Assurance Analyst testing payment fintech products for fintech company FIS. Performing automated testing and validating transaction monitoring in payment systems.
Quality Assurance Engineer responsible for optimizing quality assurance processes in innovative technology. Collaborating with teams to ensure safety and efficiency in production standards.
Quality Assurance Analyst responsible for testing and ensuring quality of software applications. Working with the QA team at Infoxchange to meet business objectives and user expectations.
R&D QA Specialist coordinating training activities and overseeing data archiving at Grifols. Requires collaboration with teams across Europe and the US in a global healthcare context.