Do you want to be part of a business that genuinely values entrepreneurialism, innovation and individual accountability? We focus on our customers and are proud of the difference our technology makes. We partner with some of the biggest manufacturing companies in the world and our technical innovations are used to enhance well-known brands across multiple industries.
Title Software Security Test Automation Engineer
Department R&D
Location Niwot, CO (Hybrid)
Reports To Software Test Manager
Your Impact
We are looking for a Software Security Test Automation Engineer who will contribute to the success of the R&D Team, applying their expertise in Software Testing and Security to support the achievement of team and company goals and deliver innovative, reliable solutions. In this role, the successful candidate will collaborate effectively with colleagues and cross-functional teams, demonstrate strong problem-solving and decision-making skills, and maintain a commitment to professional excellence, quality and continuous improvement.
The Role
As a Software Security Test Automation Engineer, you’ll be working on a team of highly skilled Software Test Engineers to test application software and embedded firmware on complex facility management systems and instruments throughout the product lifecycle. You will take care of the preparation and execution of the tests necessary to verify the compliance of the software related cyber security. The ideal candidate has experience in software security testing and vulnerability assessment activities, with the ability to identify, analyze and document security weaknesses in software applications and systems.
Job Responsibilities
-
Participate in and contribute to the entire software development life cycle process.
-
Execution of Security Assessments:
-
Vulnerability assessments: perform the assessment.
-
Penetration testing: manual and automated test.
-
Threat Modeling: conduct threat modeling to identify potential security threats, assess risks, and define appropriate mitigation strategies.
-
SAST/DAST analysis: to analysis, validate and triage and with developers and cyber security team the findings.
-
Vulnerability validation and security reporting: to ensure compliance with cybersecurity requirements.
-
Planning and implementation of testing strategies: Define detailed plans to test the various functionalities of the software for cyber security side.
-
Review system requirements and use cases with software developers and other technical team members.
-
Develop, document and execute detailed test scripts, both manual and automated, to cover software/firmware functionality and ensure traceability to requirements.
-
Research issues, create test reports that detail testing results and solutions, track defects and verify bug fixes in a timely manner.
-
Design and develop reliable, scalable and maintainable test automation frameworks with Java/Python.
-
Implement and maintain automation scripts for web application using Java/Selenide/Junit.
-
Collaborate with Developer and QA team to contribute to Git repositories and perform peer code reviews.
-
Document test processes and peer review documentation for clarity and precision; develop and maintain QA guidelines.
- Integrate test automation scripts into the CI/CD pipeline with Jenkins.
-
Recommend and implement automated test tools and strategies.
-
Share automation-related knowledge and best practices, and train other testers on test execution.
-
This job description is not intended to be all-inclusive. Responsibilities may evolve over time, and other related duties may be assigned to meet the ongoing needs of the company.
Required Qualifications
-
A BS degree in Computer Science, Software Engineering, or equivalent.
- At least 5 years’ experience as an Automation Software Test Engineer developing and executing automation software/firmware test scripts, testing and tracking defects.
-
Security Testing and Vulnerability Assessment: Experience in identifying, validating and documenting software vulnerabilities and security risks.
-
Manual and Tool-Based Penetration Testing: Ability to perform security assessments using both manual techniques and industry-standard penetration testing tools.
-
Static and Dynamic Application Security Testing (SAST/DAST): Experience using source code analysis and dynamic testing methodologies to identify security vulnerabilities throughout the software development lifecycle.
-
Vulnerability Risk Assessment: Knowledge of CVSS (Common Vulnerability Scoring System) methodology for vulnerability classification, prioritization and risk evaluation.
-
Secure Development Lifecycle: Understanding of security integration within Agile, DevSecOps and CI/CD environments.
-
Security Reporting: Ability to produce clear technical reports detailing findings, risk levels, remediation recommendations and validation results.
-
Expertise on test-driven development, developing different levels of automated tests, such as functional test, integration test, system test, or performance test.
-
Experience in Web application automation using Selenium/Selenide.
-
Working experience with IntelliJ or other IDE’s, as well as Java, Python, C#.
-
Working experience with Ranorex Studio.
-
Strong analytical and problem-solving skills, with strong attention to detail.
-
Clear oral and written communication skills, especially technical writing.
- Self-starter and capable of working effectively with minimal supervision.
Preferred Qualifications
-
Knowledge of public security advisories, CVE databases and vulnerability disclosure processes.
-
Experience reviewing and understanding public CTF (Capture The Flag) writeups and security research publications.
-
Familiarity with the MITRE ATT&CK framework and adversarial techniques.
-
Security certifications such as OSCP (Offensive Security Certified Professional), CEH (Certified Ethical Hacker), GPEN (GIAC Penetration Tester) or equivalent certifications.
-
Experience with common security testing tools such as Burp Suite, OWASP ZAP, Nessus, Nmap, Metasploit or similar.
-
Experience working within an Agile Development Environment is preferred.
-
Knowledge of Jira, Jama, and Confluence is preferred.
-
Working knowledge of generative AI tools such as Copilot for software development or testing is preferred.
Work Environment & Physical Requirements
-
This role primarily operates in an office/lab/manufacturing environment.
-
Must be able to sit, stand, and use a computer for extended periods of time.
-
This is a hybrid position, “in-office” minimum 3 days per week.
-
Occasional lifting of up to 20 lbs. may be required.
-
Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions of this role.
Compensation & Benefits
-
Competitive base salary range: $90000 - 120000
-
Our compensation philosophy: we offer competitive pay based on market data, including local, national, and industry benchmarks. For new hires, offers are generally within the established min- to mid-point of the range for the role, with flexibility to recognize experience, skills, and education. Our approach ensures fair pay internally while remaining competitive externally and allows room for growth.
- Comprehensive benefits package:
-
Health coverage: medical, dental, vision, fsa, onsite clinic (CO employees), life insurance
-
401(k) retirement plan with company match
-
Vacation, holiday, and leave policies
-
Tuition reimbursement, Employee recognition programs, Employee assistance programs
Particle Measuring Systems is proud to be an Equal Opportunity Employer and are committed to building an inclusive and supportive workplace where everyone can thrive.