Software testing • sunnyvale ca
Calibri,sans-serif"><b><span style="font-size:12.Role: Penetration Testing / Security Test Engineer </span></span></b></span></span></p> &l... Show more
Hardware Engineer 3 - Electrical Validation & Testing This role has been designed as ''Onsite' with an expectation that you will primarily work from an HPE office.Who We Are: Hewlett ... Show more
A Leading Defense Contracting Agency is seeking a Cleared Git DevSecOps Engineer to join their team in Sunnyvale, CA!.Provide ClearCase and GIT expertise in support of LM architecture, d... Show more
Software Engineer Job Duties: Develops information systems by designing, developing, and instal... Show more
At Cadence, we hire and develop leaders and innovators who want to make an impact on the world of technology.We are looking for a highly motivated software intern to work on the research and develo... Show more
Lab Technician – Semiconductor / Chip Testing Santa Clara, CA OnSite Overview We are seeking a hands-on Lab Technician to support semiconductor validation and testing for next-generation GPU and AI... Show more
We are seeking an experienced and highly technical Hardware Verification & Validation Engineer to drive the end-to-end testing of our cutting-edge ASIC designs.In this dynamic role, you will bridge... Show more
We are hiring for an Applications Engineer for our Santa Clara, CA location.The Application Engineer supports the development, execution, and debug of bench and automated test solutions for advance... Show more
Lab Technician – Semiconductor / Chip Testing.This role is responsible for executing test plans, supporting silicon bring-up, and ensuring the reliability and performance of chipsets in a lab envir... Show more
We are hiring for an Applications Engineer for our Santa Clara, CA location.The Application Engineer supports the development, execution, and debug of bench and automated test solutions for advance... Show more
We’re looking for Customer Support Product Testers across the US to work from home and help top brands improve their products before they hit the market. Show more
Roles: (Principal and Team Lead).Bonus, unlimited Vacation, equity option, healthcare.We have an immediate opening for a Senior / Principal Software Quality Engineer with strong technical and commu... Show more
Product Testers are wanted to work from home nationwide in the US to fulfill upcoming contracts with national and international companies.We guarantee 15-25 hours per week with an hourly pay of bet... Show more
Our partner is hiring Software Engineers to help build and launch new products across their portfolio companies.You'll work closely with founders and small teams to build systems from scratch and i... Show more
Engineer – Automation I.Location: Hybrid in Santa Clara, CA (must be onsite Tues/Thurs/Fri) .Contract Duration: Up to 18 months .Contract Type: W2 through Staffing Supplier .M... Show more
The Testing Office provides testing and proctoring services that support student academic progression, graduation requirements, and certification needs.Responsibilities include coordinating Credit ... Show more
We are helping our client hire .In this role, you will execute test plans, support a wide range of testing functions, and report on testing outcomes to provide crucial information for the soft... Show more
Under limited supervision will be responsible for defining the system architecture, configuration and designing the end- to-end workflow according to business requirements.Understanding the functio... Show more
Collaborate closely with developers to identify, reproduce, and resolve defects.Maintain test environments and continuous integration pipelines.Document test plans, test cases, and results clearly ... Show more
The average salary range is between $ 80,006 and $ 152,000 year , with the average salary hovering around $ 107,500 year .
Role: Penetration Testing / Security Test Engineer
Location: Santa Clara, CA
Role Summary
The Application Security & Penetration Testing Specialist will be responsible for conducting security assessments across web, mobile, thick client, and instrumented applications. The role includes vulnerability analysis, criticality-based reporting, and close collaboration with development, application, and product teams to support remediation. The position also provides platform administration and analytics support for SAST, DAST, SCA, and vulnerability management tools, along with cloud and infrastructure assistance as required.
Key Responsibilities
Instrument / Network Penetration Testing
• Conduct security testing of instrumented or connected applications, including exposed network services and interfaces
• Use Nessus / Tenable.SC for vulnerability scanning and configuration assessment
• Analyse and prioritize vulnerabilities based on criticality
• Prepare detailed vulnerability reports and support application teams during remediation
Web Application Penetration Testing
• Perform security scanning and manual penetration testing of in-scope web applications
• Identify, analyze, classify, and prioritize vulnerabilities based on agreed standards such as:
o OWASP Top 10
o CVSS / CVS
o Organization-specific security standards
• Produce criticality-based vulnerability reports with clear remediation guidance
• Provide clarification and consultation support to Application, Development, and Asset Owner teams during vulnerability remediation
Mobile Application Penetration Testing
• Conduct security testing of in-scope mobile applications (Android/iOS)
• Analyze identified vulnerabilities and prioritize them based on severity and business risk
• Generate criticality-based reports for stakeholders
• Support application teams with remediation-related clarifications
Thick Client Penetration Testing
• Perform security assessments of thick client applications
• Analyze vulnerabilities related to client-server communication, authentication, authorization, and data protection
• Prioritize findings and prepare severity-based reports
• Provide consultation support to development and application teams
Additional Security Platform & Tooling Support
SAST (Static Application Security Testing)
• Provide operational and administrative support for:
o Coverity on Polaris
o Polaris
o GitHub Application Security
• Manage user access, configurations, and scan operations
• Import SAST data into Power BI for:
o Security trend analysis
o Risk dashboards
• Generate management and operational reports from Power BI
DAST (Dynamic Application Security Testing)
• Provide support for WhiteHat DAST tool operations
• Administer tool configurations and access
• Import scan data into Power BI for analytics and reporting
• Generate vulnerability trend and compliance reports
SCA (Software Composition Analysis)
• Provide support for Black Duck SCA
• Administer tool usage, scan scheduling, and configurations
• Import vulnerability and license risk data into Power BI
• Generate trend, risk, and compliance reports
Vulnerability Management (Tenable)
• Provide support for Tenable.SC / Nessus
• Run vulnerability scans for product teams as required
• Provide tool administration, configuration, and access management
• Import scan data into Power BI
• Generate vulnerability posture and trend reports
Required Skills & Competencies
Technical Skills
• Strong knowledge of:
o Web, Mobile, Thick Client, and Network Security
o OWASP Top 10, CVSS, secure coding concepts
• Hands-on experience with:
o Nessus / Tenable.SC
o WhiteHat DAST
o Black Duck SCA
o Coverity / Polaris / GitHub Security
o Power BI (data import, analysis, dashboard creation)
• Understanding of AWS Cloud, containers, and infrastructure security
• Exposure to Jira administration
Soft Skills
• Strong analytical and problem-solving skills
• Ability to communicate security risks clearly to technical and non-technical stakeholders
• Collaborative mindset with application, development, and product teams
• Good documentation and reporting skills
Preferred Qualifications
• Certifications such as:
o CEH, OSCP, GWAPT, AWS Security Specialty (preferred)
• Experience in regulated or enterprise environments
• Familiarity with DevSecOps practices and CI/CD security integration
