What are the responsibilities and job description for the Security QA (DevSecOps) position at Arnex Solutions LLC?
Security QA
Hybrid in New Jersey
Role Overview
This role sits at the intersection of application security, DevSecOps, and quality engineering. You’ll work closely with engineering, platform, and product teams to identify risks early, strengthen release confidence, and build scalable automation solutions across applications and services.
Key Responsibilities
1. Security Engineering & Vulnerability Management
- Identify, triage, and remediate vulnerabilities across applications, cloud, and infrastructure
- Integrate security testing into CI/CD pipelines (SAST, DAST, SCA, container scanning)
- Detect and resolve cloud misconfigurations and security risks
- Enforce secure coding practices aligned with OWASP principles (shift-left security)
- Support audit and compliance initiatives (PCI-DSS, internal security reviews)
2. Test Automation & Quality Engineering
- Design and maintain scalable automation frameworks for web, API, and backend systems
- Integrate automated testing into CI/CD pipelines for better regression coverage
- Support release validation and production readiness
- Build tools to enhance test execution, reporting, and reliability
3. DevSecOps & Platform Security
- Implement secrets management and secure access controls (IAM, least privilege)
- Monitor applications, infrastructure, and pipelines for vulnerabilities
- Drive patching, remediation, and infrastructure hardening
- Collaborate on incident response, debugging, and root cause analysis