Quality Assurance Analyst

Quality Assurance Analyst
6 month contract w/extensions
Hybrid (1-3 days onsite)

Triumph is seeking to fill an open position for a Senior Quality Assurance Analyst within our client's Java Development team. In this role the candidate's primary focus will be web application security testing, by designing and performing manual and automated testing on applications to identify risks such as SQL Injection, Cross-Site Scripting (XSS), Cross-Site Request Forgery (CSRF), and other common web security vulnerabilities. In addition, the resource will be called upon to participate in manual testing and test automation, and be responsible for developing test plans, test cases, test scripts, and test execution. Operating in an agile software delivery methodology focused on testing new features within an iteration and providing near immediate feedback to through test automation.

Responsibilities:

• Participate in the writing, designing, and executing test cases.
• Maximize test coverage for the most critical features of the system.
• Determine the priority for test scenarios and create execution plans to implement these scenarios.
• Expand upon the existing test case and plans.
• Log and document defects.

Qualifications:

• 8 years of hands-on experience in software quality assurance.
• 4 years of experience using test automation technologies.
• A bachelor's degree in computer science, Information Technology, or a related field.
• Extensive experience in software testing methodologies, test planning, and execution strategies.
• Comprehensive knowledge of the entire Software Development Life Cycle (SDLC)
• Knowledge of industry best practices in quality assurance.
• Experience in guiding and coaching junior and mid-level QA team members.
• Expertise in designing and optimizing performance tests.
• Ability to recommend and implement performance testing strategies.
• Proven experience with Selenium and JMeter.
• Experience with scripting and programming languages relevant to Selenium and JMeter (e.g., Java, Python).
• Capability to review and enhance code quality in automated scripts.
• Experience in creating strategic test plans aligned with overall project objectives and business goals.
• Ability to define and execute comprehensive testing strategies.
• Perform both automated and manual testing to identify vulnerabilities, security flaws, and weaknesses in Systems.
• Leverage OWASP tools like OWASP ZAP, OWASP Dependency-Check and others to conduct security assessments and vulnerability scans.
• Technical knowledge of threat modeling, code review, penetration testing, familiarity with security protocols, understanding of vulnerabilities, scripting languages like Python, Bash, PowerShell, etc. for automation, knowledge of web application security, and the ability to analyze logs and network traffic to identify potential security issues.
• Perform manual and automated testing on applications to identify risks such as SQL Injection, Cross
• Site Scripting (XSS), Cross-Site Request Forgery (CSRF), and other common web security vulnerabilities.
• Stay current with the latest web application security trends, OWASP vulnerabilities, and emerging attack techniques.
• Familiarity with industry trends and emerging technologies in QA.
• Strong collaboration skills to work closely with development, product management, and other cross functional teams.
• Expertise in managing complex test environments and ensuring their stability and reliability.
• Proficient in defining and tracking key performance indicators (KPIs) for testing processes.
• Ability to generate comprehensive test reports for management.

Preferred Qualifications:

• 12 years of hands-on experience in software quality assurance.
• 8 years of experience using test automation technologies.
• A master's degree in computer science, Information Technology, or a related field.
• In-depth knowledge of industry best practices in quality assurance.
• Proficiency in penetration testing tools such as Burp Suite, Nessus, Metasploit, Kali Linux, Wireshark, and others.
• Strong knowledge of web application security (OWASP Top 10), network security, and cloud security
• Strong understanding of TCP/IP, HTTP, DNS, and other network protocols.
• Certifications such as CISSP, CEH, AWS Certified Security Specialty, or similar are a plus.
• Proven leadership skills with the ability to lead and mentor a team of QA professionals.
• Proficient in designing and implementing robust and scalable automation frameworks.
• Ability to make strategic decisions regarding the selection and implementation of automation tools and frameworks.
• Proven experience with mock frameworks (e.g., Mockito, JMockit).
• In-depth knowledge of scripting and programming languages relevant to Selenium and JMeter (e.g., Java, Python).
• Proven ability to identify and assess project risks related to quality and testing.
• Experience in implementing risk mitigation strategies.
• Proactive in identifying opportunities for process improvements and implementing changes.
• Ability to communicate testing insights effectively to diverse stakeholders.
• Understanding of regulatory requirements and compliance standards related to software testing.
• Experience in strategic planning for long-term quality assurance initiatives.

Tool Experience:

• Testing tools: DBeaver (or similar), Beyond Compare, OWASP tools like OWASP ZAP, OWASP Dependency-Check.
• Automation testing tools: Selenium.
• Test artifact management: Zephyr.
• API testing tools: SoapUI, Postman.
• Defect and task tracking: Jira.

#Dice

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.