Mobile Phone Test Engineer with Chinese Language

Are you interested in working with the World’s leading AI-powered Quality Engineering Company? Ready to advance your career, team up with global thought leaders across industries and make a difference every day? Join us at Qualitest!

We are looking for an Application Security Engineer to join our growing team in the United States!

Role : Application Security Engineer

Location : Remote (US)

Job Description :

• Operate a hands-on role involving penetration testing and vulnerability assessment activities of complex web applications, APIs, operating systems, wired, wireless networks, and mobile applications/devices, Cloud (Azure, AWS, Google, OCI, etc.) apps and software.
• Set up environment and maintain required tools needed for the team.
• Develop and maintain security testing plans.
• Experience in setting up SAST (Static Application Security Testing), SCA (Software Composition Analysis), and DAST (Dynamic Application Security Testing) solutions as part of DevSecOps.
• Experience in conducting false positive and false negative analysis as part of SAST, DAST, and SCA.
• Able to automate penetration and other security testing on networks, systems, and applications.
• Develop meaningful metrics to reflect the true posture of the environment allowing the organization to make educated decisions based on risk.
• Produce actionable, threat-based reports on security testing results.
• Act as a source of direction, training, and guidance for less experienced staff.
• Consult with application developers, systems administrators, and management to demonstrate security testing results, explain the threat presented by the results, and consult on remediation.
• Communicate security issues to a wide variety of internal and external “customers” to include technical teams, executives, risk groups, vendors, and regulators.
• Deliver the annual penetration testing schedule and conduct awareness campaigns to ensure proper budgeting by business lines for annual tests.
• Foster and maintain relationships with key stakeholders and business partners.

Must Haves :

• Penetration testing and vulnerability assessment activities of complex web applications, APIs, operating systems, wired, wireless networks, and mobile applications/devices, Cloud (Azure, AWS, Google, OCI, etc.) apps and software.
• Experience in setting up SAST (Static Application Security Testing), SCA (Software Composition Analysis), and DAST (Dynamic Application Security Testing) solutions as part of DevSecOps.
• Able to automate penetration and other security testing on networks, systems, and applications.