Security Test Engineer

Ushur

Ushur

Quality Assurance
Bengaluru, Karnataka, India
Posted on Aug 28, 2023
Ushur is transforming the way enterprises communicate and engage with customers. Fueled by consumer’s self-service demands, enterprises are modernizing customer engagement and experience models. Ushur is fast becoming the platform of choice for Customer Experience Automation™, enabling these enterprises to leapfrog their digital native counterparts and deliver delightful customer and employee experiences. With cutting-edge Conversational AI, Machine Learning and Intelligent Process Automation technologies, Ushur has enabled Fortune 100 enterprises including some of the world’s most well known brands in healthcare, insurance, banking and financial services sectors to automate their customer engagement. Cloud-native, 100% no-code and purely workflow-driven, Ushur empowers citizen developers within business operations teams to build AI-powered, fully-automated and omni-channel experience to digitally transform customer journeys end-to-end.
Job Description:
Our QA team is looking for an excellent Security Test Engineer to join a core group that focuses on Security aspects of the product and infrastructure.

Roles and responsibilities

  • Design, develop and improve the Security Test infrastructure to enable delivery of high quality and highly secure platform
  • Develop periodically refine the Security Test Strategy for the product
  • Continuously improve the security test coverage and add all the customer centric scenarios as part of this effort
  • Integrate Security testing to Jenkins CI/CD pipeline and continuously work on stabilizing and improving the test coverage
  • Work with third party independent vendors and get product security certification
  • Collaborate with Engineering, Customer Success team, IT team to generate periodic security auditing reports
  • Collaborate with product architect/feature-owners to identify Security test requirements during initial stages of feature definition or product design
  • Self-driven, enthusiastic, and constantly research and suggest latest technologies for security coverage

Qualifications and Technical skills:

  • 3-5 years of software test experience, with at least 3+ years of specific experience in security testing
  • Experience building framework for security testing
  • Experience with AWS Cloud Security Tools like Alert Logic, AWS Secure Hub, Scout Suite
  • Experience with vulnerability assessment tools for Linux/Cent OS based operation System
  • Experience with Network security and port scanning tools
  • Experience with Web application VAPT tools
  • Experience with Burp suite, Nessus Vulnerability scanning and other relevant tools
  • Experience building test suites to cover OWSAP Security testing tools
  • Experience with static code analysis tools like SonarQube, Coverity or other open-source tools
  • Experience working in Linux environment and debugging
  • Experience in Application Security validation for Web Applications and SaaS Products
  • Experience working with CI/CD pipeline and relevant tools like Jenkins, etc.
  • Experience building tools to verify DDOS attacks
  • Excellent verbal and written communication to explain security strategy to technical and non-technical audience
  • Diligence and ability to plan and execute all the security tests to cover all aspects of the product
  • Ability to think creatively and strategically to do penetration testing
  • Excellent time management and organizational skills to meet the Release timelines
  • Ability to think laterally and “outside box” approach
  • Teamwork skills to support colleagues and share the techniques with other team members
  • Exceptional analytical and critical thinking skills and the persistence to apply different techniques to get the job done
  • Business skills to understand the implications of Releasing software with security vulnerability
  • Enthusiastic about always keeping the product’s quality bar at an extremely high level
  • Ability to work in a fast-paced agile work environment
  • Commitment to continuously update the technical knowledge base and current trends in security relevant to Ushur Products and Features
  • Engineering degree in a related field

Nice To have

  • Certifications in Security Testing
  • Exposure to defect management tools like JIRA
  • Exposure to publishing articles, blogs related to security

Benefits

  • Great Company Culture. We pride ourselves on having a values-based culture that is welcoming, intentional, and respectful. Our internal NPS of over 65 speaks for itself - employees recommend Ushur as a great place to work!
  • Bring your whole self to work. We are focused on building a diverse culture, with innovative ideas where you and your ideas are valued. We are a start-up and know that every person has a significant impact!
  • Rest and Relaxation. 20 days of flexible leaves per year, quarterly Wellness Friday (aka a day off to care for yourself) and more!
  • Health Benefits. Preventive health checkups, Medical Insurance covering the dependents, wellness sessions, and health talks at the office
  • Keep learning. One of our core values is Growth Mindset - we believe in lifelong learning. Certification courses are reimbursed. Ushur Community offers wide resources for our employees to learn and grow.
  • Flexible Work. In-office or hybrid working model, depending on position and location. We seek to create an environment for all our employees where they can thrive in both their profession and personal life.

Why join us?

  • We are passionate about Ushur, our product, and helping our employees grow and develop in their career in a caring, collaborative environment. We offer a very competitive compensation plan & stock options for the ideal candidates.