Security QA (DevSecOps)

Security QAHybrid in New JerseyRole OverviewThis role sits at the intersection of application security, DevSecOps, and quality engineering. You’ll work closely with engineering, platform, and product teams to identify risks early, strengthen release confidence, and build scalable automation solutions across applications and services.Key Responsibilities Security Engineering & Vulnerability ManagementIdentify, triage, and remediate vulnerabilities across applications, cloud, and infrastructureIntegrate security testing into CI/CD pipelines (SAST, DAST, SCA, container scanning)Detect and resolve cloud misconfigurations and security risksEnforce secure coding practices aligned with OWASP principles (shift-left security)Support audit and compliance initiatives (PCI-DSS, internal security reviews) Test Automation & Quality EngineeringDesign and maintain scalable automation frameworks for web, API, and backend systemsIntegrate automated testing into CI/CD pipelines for better regression coverageSupport release validation and production readinessBuild tools to enhance test execution, reporting, and reliability DevSecOps & Platform SecurityImplement secrets management and secure access controls (IAM, least privilege)Monitor applications, infrastructure, and pipelines for vulnerabilitiesDrive patching, remediation, and infrastructure hardeningCollaborate on incident response, debugging, and root cause analysis