Senior Security QA Engineers

col-narrow-left   

Nơi làm việc:

Hà Nội 

Lĩnh vực chuyên môn:

Ecommerce, QA QC, Security
col-narrow-right   

ID công việc:

13381

Ngày hết hạn:

10/05/2017
col-wide   

Mô tả công việc:

The Senior Security QA Engineer is responsible to:
- Analyze security requirements from software development team to define the security software testing strategy;
- Participate in client meetings to discuss and agree on security testing approach and follow it up in new security test opportunities;
- Plan, estimate and perform security testing of application designs, source code and deployments, covering all kinds of applications,web application, web service, mobile application in software development;
- Work with internal IT team to plan, design, implement IT security controls and perform security assessment to ensure security of company information systems and infrastructures;
- Work on improvements for provided security services, including the continuous enhancement of existing methodology material and supporting assets;
- Train and mentor QA Engineer on proper selection, design and implementation of Security Testing.

Yêu cầu công việc:

- University level with bachelor degree in computer science or equivalence;
- Has 3+ years of working experience in software testing is an advantage;
- Has 1+ years of hand-on experience in security testing:
o Security review and Source code review: Application, web app, mobile app;
o Penetration testing : System and network (internal/external, whitebox/blackbox).
- Have knowledge of security principles, techniques and technologies (OWASP Top 10 For Web application or Mobile application);
- Experience performing web/mobile application security testing and using vulnerability testing tools (e.g: ZAP, Acunitex, BurpSuite, Netsparker, N-Stalker, sqlmap, kali linux …);
- Understand the different of communication protocols;
- Understand the telecommunications network which allows computers to exchange data and its encryption;
- Is able to review the source code of applications which are written in C#, Java, PHP,… to find the security risks;
- Good understanding of network protocols, design and operations;
- Good English skills to understand specification (written and oral);
- Excellent problem solving skills and attention to detail;
- Strong analytical skills;
- Time management skills;
- Ability to work independently;
- ISTQB/ISEB Foundation level or equivalence is an advantage;
- Industrial certifications holder : CISSP, CEH, SCP, GIACs, ComTIA Security+ is an advantage.

Quyền lợi:

- Professional and friendly environment
- Vietnamese Labor code based insurance and annual leave benefit
- Other benefits (promotion, vaction, 13th salary month....)

Anyone interested in please send your resume to v.phuongltm2@vincommerce.com

Magento là gì và lập trình viên Magento làm gì?Lương trung bình của lập trình viên tại Việt Nam là bao nhiêu3 việc nóng nhất ngành IT năm 2017