QA Automation

About The Company & Role

Qa Automation And Security Qa Engineer

Responsibilities

• Design, develop, and maintain automated testing frameworks (UI and API) from scratch, or enhance existing ones.
• Conduct regular security testing of web applications and APIs (DAST, SAST), identify vulnerabilities, and assess potential risks.
• Integrate end-to-end automated tests and security scanners into CI/CD pipelines.
• Collaborate closely with the development team and product managers to implement Secure SDLC (Shift-Left Security) practices.
• Analyze product architecture for potential threats and ensure compliance with modern security standards (including OWASP).
• Create detailed reports on identified defects and vulnerabilities, and assist the team in reproducing and resolving them.

Qualifications

• 3+ years of proven commercial experience in QA Automation, with strong proficiency in at least one programming language (Python, Java, JavaScript/TypeScript, or Go).
• Hands-on experience in Security QA: a deep understanding of attack vectors, OWASP Top 10 vulnerabilities, and prevention methods.
• Experience with popular security testing tools (e.g., Burp Suite, OWASP ZAP, Nessus, Nmap).
• Solid practical skills with CI/CD systems (GitLab CI, GitHub Actions, or Jenkins), containerization (Docker), and version control systems (Git).
• Strong understanding of network protocols (HTTP/HTTPS, TCP/IP) and RESTful API principles.
• Upper-Intermediate (B2+) English or higher: confident verbal and written communication within an international team.
• *Nice to have:*
• Relevant security certifications (e.g., CEH, CompTIA Security+, or equivalent).