Let’s get started
By clicking ‘Next’, I agree to the Terms of Service
and Privacy Policy
Jobs / Job page
Security Quality Engineer image - Rise Careers
Job details

Security Quality Engineer

AffiniPay is a leading fintech company based in Austin, Texas, seeking a Security Quality Engineer to integrate security within their quality engineering processes, focusing on vulnerability management and compliance.

Skills

  • Security testing
  • Scripting (Python preferred)
  • Test management tools
  • Compliance standards knowledge

Responsibilities

  • Conduct comprehensive security assessments and validate remediations.
  • Participate in red team activities to identify security gaps.
  • Audit and refine test cases in TestRail.
  • Collaborate with Platform Engineering/SRE team.
  • Develop and maintain training documentation for QC team.

Education

  • Bachelor's degree in Information Security or related field

Benefits

  • Fully covered medical, dental, and vision insurance
  • 401K with company match
  • Flexible paid time off
  • Equity options
  • Professional development opportunities
To read the complete job description, please click on the ‘Apply’ button
AffiniPay Glassdoor Company Review
3.8 Glassdoor star iconGlassdoor star iconGlassdoor star icon Glassdoor star icon Glassdoor star icon
AffiniPay DE&I Review
No rating Glassdoor star iconGlassdoor star iconGlassdoor star iconGlassdoor star iconGlassdoor star icon
CEO of AffiniPay
AffiniPay CEO photo
Dru Armstrong
Approve of CEO

Average salary estimate

$135000 / YEARLY (est.)
min
max
$120000K
$150000K

If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.

What You Should Know About Security Quality Engineer, AffiniPay

Hey there! If you’re looking to take your security skills to the next level, then we've got an exciting opportunity for you as a Security Quality Engineer at AffiniPay! As a leading fintech company based in beautiful Austin, Texas, we’re not just about making payment solutions; we’re all about creating a secure environment for professional services like legal and accounting. In this remote role, you’ll be the hero of our Quality Engineering processes, integrating your security expertise to manage vulnerabilities and compliance. Work closely with our Security Engineer to address vulnerabilities and ensure that security best practices are embedded in our testing strategies. You’ll have the unique chance to engage in red team exercises, audit critical test cases in TestRail, and collaborate with the Platform Engineering/SRE team to bolster the security of our innovative Practice Management and fintech products. If you're excited about security assessments and training others on best practices, and you have a knack for scripting in Python, you’ll find your rhythm in our team. Let’s work together to build a safer tech world that empowers professionals to focus on what they do best!

Frequently Asked Questions (FAQs) for Security Quality Engineer Role at AffiniPay
What are the main responsibilities of a Security Quality Engineer at AffiniPay?

As a Security Quality Engineer at AffiniPay, your main responsibilities will include conducting thorough security assessments to validate and remediate vulnerabilities, participating in red team activities, and ensuring compliance with frameworks like SOC 2 and PCI-DSS. You'll audit and refine test cases in TestRail while collaborating closely with the Platform Engineering/SRE team to enhance our security posture.

Join Rise to see the full answer
What qualifications do I need to become a Security Quality Engineer at AffiniPay?

To join AffiniPay as a Security Quality Engineer, you should have a Bachelor’s degree in Information Security, Computer Science, or a related field, or equivalent work experience, along with at least 3 years in a security testing role. Familiarity with TestRail and security testing tools, as well as proficiency in Python scripting, are essential for success in this role.

Join Rise to see the full answer
How does the Security Quality Engineer role at AffiniPay support Agile practices?

The Security Quality Engineer role at AffiniPay aligns with Agile practices by promoting secure testing methodologies within our CI/CD pipeline. You’ll collaborate with the SDET team to automate security-specific tests, ensuring that our processes remain agile while emphasizing robust security measures.

Join Rise to see the full answer
What security frameworks should I be familiar with to work as a Security Quality Engineer at AffiniPay?

Familiarity with standard security frameworks such as OWASP and NIST is crucial for the Security Quality Engineer position at AffiniPay. Understanding compliance standards like PCI DSS will also be beneficial, as you’ll work to audit and refine test cases to meet these requirements.

Join Rise to see the full answer
What does AffiniPay offer in terms of professional development for Security Quality Engineers?

At AffiniPay, professional development is a priority! As a Security Quality Engineer, you’ll have access to mentorship programs, leadership courses, and our AffiniPayU initiatives, which are designed to enhance your skills and advance your career within the fintech industry.

Join Rise to see the full answer
Common Interview Questions for Security Quality Engineer
What experience do you have with conducting security assessments?

When asked about your experience with security assessments, be specific about the types of assessments you've conducted. Discuss the tools you used and any frameworks or standards that guided your approach. Focus on how your findings contributed to improving security measures, and highlight any projects where your assessments helped remediate vulnerabilities.

Join Rise to see the full answer
Can you describe a time when you identified a vulnerability and how you handled it?

In answering this question, describe a specific incident where your skills helped uncover a vulnerability. Discuss the steps you took from identification, through documentation and remediation, to communicating with stakeholders. Emphasize the importance of collaboration and continual improvement in security practices.

Join Rise to see the full answer
How do you stay updated on the latest security threats and best practices?

Explain how you engage with industry resources such as security blogs, webinars, conferences, and certification programs. Mention specific communities, forums, or publications that help you stay informed, showcasing your proactive approach to continuous learning in the field of cybersecurity.

Join Rise to see the full answer
What tools do you prefer for security testing, and why?

Talk about your experience with specific security testing tools you have used, such as OWASP ZAP, Burp Suite, or others. Explain why these tools are effective for the tasks you perform and how they integrate into your overall testing strategy, providing clear examples of their impacts on security outcomes.

Join Rise to see the full answer
How would you prioritize security testing in a CI/CD pipeline?

Describe your approach to prioritizing security testing within a CI/CD pipeline, emphasizing aspects such as risk assessment, collaboration with DevOps teams, and integrating automated security tests. Highlight any prior experiences that illustrate your ability to ensure security without hindering the overall development process.

Join Rise to see the full answer
What role does compliance play in your security testing processes?

Discuss how compliance requirements, such as SOC 2 and PCI DSS, influence your security testing practices. Explain how you align your testing methodologies with these frameworks to ensure that all security considerations are met and documented properly to meet regulatory standards.

Join Rise to see the full answer
Describe your experience with mentoring others in secure coding practices.

Share any instances where you've mentored colleagues or team members in secure coding practices. Focus on the strategies you used to educate them, such as conducting workshops or developing training materials, and how this not only improved their coding practices but also contributed to a stronger security posture.

Join Rise to see the full answer
How do you ensure that security considerations are included in test case audits?

Highlight your approach to auditing test cases by discussing the checklist or criteria you use to ensure security aspects are covered. Share examples of how applying these audits has led to identifying potential security risks in test cases and promoted a culture of security awareness within teams.

Join Rise to see the full answer
Give an example of how you handled a security incident.

Describe a specific security incident you managed, detailing the context, actions you took, and how you communicated findings to relevant stakeholders. Highlight what led to the incident, how you responded, and what preventive measures were implemented afterward to avoid similar occurrences in the future.

Join Rise to see the full answer
What are your security testing strategies when working with Agile teams?

Talk about how you adapt your security testing strategies to fit Agile methodologies, focusing on collaboration with the development team, conducting security assessments continuously throughout the sprint, and integrating feedback mechanisms to ensure ongoing security compliance.

Join Rise to see the full answer
Similar Jobs
Photo of the Rise User
Posted 10 days ago
Photo of the Rise User
Posted 10 days ago
Photo of the Rise User
Posted 9 days ago
Photo of the Rise User
Pontera Remote Herzliya, Tel Aviv District, Israel
Posted 5 days ago
Photo of the Rise User
Solvd Remote No location specified
Posted 22 hours ago
Photo of the Rise User
YPrime Hybrid Raleigh, North Carolina
Posted 4 days ago
Photo of the Rise User
Posted 17 hours ago

At AffiniPay, our mission is to empower professionals with the financial technology solutions they need to thrive.

88 jobs
MATCH
Calculating your matching score...
FUNDING
SENIORITY LEVEL REQUIREMENT
TEAM SIZE
SALARY RANGE
$120,000/yr - $150,000/yr
EMPLOYMENT TYPE
Full-time, remote
DATE POSTED
January 22, 2025

Subscribe to Rise newsletter

Risa star 🔮 Hi, I'm Risa! Your AI
Career Copilot
Want to see a list of jobs tailored to
you, just ask me below!