Security Quality Engineer

Ensoft Consulting Sdn Bhd
ashley-avatar-image

AI-generated summary

beta
speech-bubble-tail-image

Oops, looks like Ashley forgot to summarize this job! We apologize for the inconvenience. Please read the complete Job Description for full details and additional information.

Undisclosed

KL

Full-Time

Job Description

  • To advance software security topics to support Quintiq’s business goal
  • Perform various kind of security penetration testing, inclusive of web application, mobile application and cloud infrastructure
  • Lead/assist in secure software development lifecycle in terms of: 
1. Architecture design security review
2. Secure code review
3. Relevant development process review
  • Experiment, create and extend frameworks and infrastructures for security testing
  • Ensure that security is part of the product development cycle - from requirement specification through to final release
  • Working closely with developers in the design and implementation of software features via agile methodology in security test design and execution
  • Collaborating with developers in security risk analysis for quality assurance
  • Prioritize and execute test cases, analyze output, identify discrepancies and clearly report defects with precise information
  • Contribute to continual improvement of Quality, Performance, Scalability & Security of Quintiq software products via relevant tools and processes

Job Requirements

  • Must have keen interest in modern software testing methodology, incorporating security testing within that
  • Natural curiosity for the way software works (and doesn't work)
  • Have working programming/scripting skills to automate test scripts and/or develop test harness/test tools
  • Should know at least one, and preferably two of the following:

1. Web application penetration testing. (You know your way around burp, and can do SQLi without using SQLmap.)
2. Infrastructure penetration testing. (You understand that this doesn’t just mean running Nessus.)
3. Mobile App Penetration Testing. (You know that Drozer is the best tool ever for Android testing and you’ll also know what you’d use for testing on the other major platforms.)

  • Should see problem solving as a thrilling activity
  • Working knowledge in using both Windows console and Linux shell is an advantage
  • Being certified in OSCP or OSCE is a big advantage
  • Good people skills
  • Effective oral and written English communication skills
  • Experienced in Non-Functional test methodologies is highly desired
  • Experienced in HP ALM, HP Load Runner, HP UFT would be a plus
  • Working knowledge in security test (OWASP top 10) is an added advantage
  • Relevant experience in software testing/development, test automation or integration roles
  • A degree in computer science, software engineering, mathematics, econometrics, artificial intelligence or similar fields

Additional Info

Experience Level

0 - 7 Years of Experience

Job Specialisation

General IT

Company Profile

Ensoft Consulting Sdn Bhd-logo-image

Ensoft Consulting Sdn Bhd

EnSoft was incorporated mainly to concentrate on Software Application Support Services, Network / Data Center Maintenance and Monitoring, Systems Support Services (on-site), IT Consulting .
We provide an array of services.
  • Web Design & Development
  • Software Application Support
  • On-site System Support
  • Network/Data Center Management
  • Staff Augmentation

Mission: To provide highly efficient and most economic IT Solutions with 100% transparency and credibility, yet at a faster pace.

Security Quality Engineer

Ensoft Consulting Sdn Bhd

Undisclosed

KL

Full-Time

This job is no longer available