Member of Technical Staff - QA Security
Description
MTS - QA Security
Position Overview:
We are seeking a highly skilled and experienced MTS(Member of Technical Staff) to join our dynamic team at Aryaka. As an MTS, you will play a crucial role in ensuring the security and integrity of our SASE products by conducting thorough security assessments, designing and executing test plans, and collaborating with development teams to address vulnerabilities. Your expertise will help shape our network security solutions and contribute to the success of organizations worldwide.
Key Responsibilities:
- Conduct Security Assessments:
- Perform comprehensive security assessments of SASE products to identify vulnerabilities, weaknesses, and misconfigurations.
- Utilize both manual and automated testing tools to uncover security vulnerabilities and potential exploitation vectors.
- Design and Execute Test Plans:
- Develop and implement test plans and methodologies to evaluate the effectiveness of firewall configurations in defending against unauthorized access, malicious activities, and other security threats.
- Perform penetration testing on firewall devices to simulate real-world attacks and assess resilience against advanced threats.
- Analyze and Report Findings:
- Analyze firewall logs, traffic patterns, and rule sets to identify anomalies and security incidents.
- Generate detailed reports outlining findings, including identified vulnerabilities, potential impacts, and recommended remediation measures.
- Collaborate with Development Teams:
- Work closely with firewall development teams to prioritize and address security issues identified during testing phases.
- Provide technical guidance and recommendations regarding firewall security best practices, configuration hardening, and threat mitigation strategies.
- Stay Informed on Security Trends:
- Keep up to date with the latest firewall technologies, security trends, and industry best practices to continuously improve firewall testing methodologies.
- Participate in the development and implementation of security policies, procedures, and standards related to firewall security testing.
Qualifications:
- Education: Bachelor’s degree in Computer Science or a related field.
- Experience: 3-7 years of experience as a QA Engineer.
- Technical Skills:
- Strong understanding of firewall technologies, including stateful inspection, packet filtering, application layer filtering, and intrusion prevention systems (IPS), CASB, and DLP.
- Knowledge of common security vulnerabilities and attack vectors, including OWASP Top 10, SQL injection, cross-site scripting, and buffer overflows.
- Familiarity with web application security standards and protocols (e.g., SSL/TLS, OAuth, SAML).
- Experience with cloud security (AWS, Azure, GCP) and container security is a plus.
- Hands-on experience with firewall testing tools such as Nmap, Nessus, Metasploit, and Wireshark.
- Understanding of network protocols, the TCP/IP stack, and common attack vectors used to exploit firewall vulnerabilities.
- Experience with scripting languages (e.g., Python) for automation and custom tool development is a plus.
- Soft Skills:
- Excellent analytical and problem-solving skills with the ability to identify and mitigate security risks effectively.
- Strong communication skills to convey technical concepts to both technical and non-technical stakeholders.
- Ability to work independently and as part of a team in a dynamic and fast-paced environment.
- Certifications: CISSP, CCSP, or CEH certifications are preferred.
Employee Value Proposition (EVP):
At Aryaka, we offer a dynamic and innovative work environment where you will have the opportunity to make a significant impact in the network security industry. Our commitment to cutting-edge technology and customer satisfaction provides a platform for continuous learning and professional growth.
Who Are we-
Aryaka is the leader and first to deliver Unified SASE as a Service, the only SASE solution designed and built to deliver performance, agility, simplicity and security without tradeoffs. Aryaka meets customers where they are on their unique SASE journeys, enabling them to seamlessly modernize, optimize and transform their networking and security environments. Aryaka’s flexible delivery options empower enterprises to choose their preferred approach for implementation and management. Hundreds of global enterprises, including several in the Fortune 100, depend on Aryaka for cloud-based software-defined networking and security services. For more on Aryaka, please visit www.aryaka.com
Why Aryaka –
We have won “Great Places to Work” World-Wide for 4 consecutive years because we have an amazing company culture that is inviting, collaborative, supportive, and inclusive to our employees. We encourage our employees to expand their knowledge base and provide the tools to help them get there. We are always innovating and looking at ways to improve and expand, and we listen to our employees and their ideas. We have an amazing group of very respected “Thought Leaders” who are always open to mentoring. We consider ourselves great Corporate Citizens which we show through our “Women In Technology” Program and “AryakaCares” Program as well as others. Our Benefits are World-Class, we have unlimited PTO, and a flexible work structure to allow you to maximize on your work/life balance. As Aryakans, we are 100% dedicated to being an equal opportunity employer and supporter of Diversity, Inclusion, and Belonging.
Third-Party Agency Notice: Aryaka does not accept unsolicited resumes from 3rd party agencies. Should any agency send a resume to any employee within Aryaka without explicit invitation, the resume will be considered a gift, and no fee will be paid. All agencies must have a signed contract from Talent Acquisition management prior to any engagement.