• Create and execute test cases based on product requirements, user workflows, and release goals. • Perform functional, regression, and exploratory testing across multiple builds, configurations, and environments. • Validate end-to-end workflows including setup/onboarding, connectivity behaviors, updates, alerts/indicators, and device functional states. • Identify, document, and track defects with strong reproduction steps, logs, and environment details. • Partner with developers to isolate root cause signals (logs, configuration, steps to reproduce). • Verify fixes and prevent regressions through targeted retest and added coverage. • Maintain clear test evidence and traceability (requirements → tests → results). • Contribute to release readiness reporting (what’s tested, what’s not, known risks, and gaps). • Assist in building or maintaining test scripts and lightweight automation (primarily Python-based). • Help improve test repeatability through tooling, checklists, fixtures, and structured procedures. • Support test bench setup and maintenance for reliable, repeatable validation. • Capture logs and diagnostics to support issue reproduction and verification.

Do you enjoy attacking networks? Do you enjoy sifting through large amounts of attack surface, crafting novel attack chains to breach a client's perimeter, gaining initial access, laterally moving, and demonstrating impact, all while evading security teams and their controls? As a penetration tester on the Global Services team at Rapid7, you will help our clients improve their security posture through your technical skills and knowledge of both offensive and defense strategies. As a penetration tester on the Global Services team at Rapid7, you will help our clients improve their security posture through your technical skills and knowledge of both offensive and defense strategies About the Team Vector Command is an always-on Red Team operation supporting multiple customers. As part of a specialized team, you will emulate real adversaries by performing large-scale reconnaissance, identifying exposed or high-value assets, and discovering weaknesses that can be leveraged for compromise. After gaining access, the team continues with post-compromise objectives to demonstrate real impact, evade detection, and assess the effectiveness of security controls. This service evaluates far more than vulnerabilities-it tests the customer's entire security posture and defense-in-depth strategy. In addition to offensive operations, you will support customers through external attack surface analysis, exposure reconnaissance, integration of accounts and tools, preparation of monthly Red Team reports, and prioritization of customer requests. Daily collaboration with Vector Command operators is essential, as is maintaining awareness of new vulnerabilities, shifts in customer attack surfaces, and changes across customer environments. About the Role Your primary responsibility is to deliver Rapid7's Vector Command Continuous Red Teaming service. In this role, you will conduct external network penetration testing and manage vulnerability scan dashboards, exploiting vulnerabilities, identifying the impact of exposures, and then searching for vulnerabilities that automated tooling may miss. The focus is on continuous perimeter testing to identify attack vectors that could lead to a breach. Specifically, your focus will be to: - Manage automated vulnerability scan data across numerous customers, identifying and validating vulnerabilities which can be used to gain initial access into an organization. - Perform external network penetration testing activities across a large attack surface, searching for vulnerabilities and misconfigurations that automation often misses. - Upon successful exploitation, work with your Vector Command team to evaluate the impact through post-compromise breach simulation. - Collaborate closely with a team of Red Team operators, participating in daily meetings to establish attack objectives and operational direction. - Develop and maintain positive relationships with clients and understand their business and needs - Create additional value for clients through continual insights and consultative advice based on experience with the client, their industry, established standards and leading practices The skills and qualities you'll bring include: - 3+ years in an active technical security role. - Knowledge of Cybersecurity standards and industry best practices - Bug Bounty experience, identifying novel vulnerabilities in arbitrary internet-facing attack surfaces - The ability to translate technical concepts and convey them to non-security personnel - Technical competencies, including previous technical consulting experience - High quality report writing and peer reviewing - Certifications such as GPEN, CPTS, OSCP, CREST - Experience with Red & Purple Teams - Excellent communication skills both with internal and external stakeholders - Collaborative mindset, contributing to knowledge sharing and cross training - Demonstrate a commitment to the "end-to-end" testing process, from the initial pre-engagement planning to providing accountable support during the final remediation phase. - Core Value Embodiment: Embody our core values to foster a culture of excellence that drives meaningful impact and collective success. We know that the best ideas and solutions come from multi-dimensional teams. That's because these teams reflect a variety of backgrounds and professional experiences. If you are excited about this role and feel your experience can make an impact, please don't be shy - apply today. #LI-Remote #LI-PB1 About Rapid7 At Rapid7, our vision is to create a secure digital world for our customers, our industry, and our communities. We do this by harnessing our collective expertise and passion to challenge what's possible and drive extraordinary impact. We're building a dynamic and collaborative workplace where new ideas are welcome. Protecting 11,000+ customers against bad actors and threats means we're continuing to push the envelope just like we' ve been doing for the past 20 years. If you 're ready to solve some of the toughest challenges in cybersecurity, we're ready to help you take command of your career. Join us.

• Lead efforts to gather, draft, and finalize epics, user stories, and related functional and non-functional technical requirements on a multi-year software development project. • Perform human-in-the-loop testing of new Artificial Intelligence-enabled (AI-enabled) software features related to intelligence document processing, purpose-built intelligence, and semantic/reverse image search

Role Description We are seeking a QA Test Engineer to ensure the quality, security, and performance of digital banking applications across mobile (iOS/Android) and web platforms. The role involves testing end-to-end customer journeys, API integrations, and core banking connectivity (Temenos T24). You will work closely with cross-functional teams to deliver a seamless and secure digital banking experience. - Analyze business requirements and prepare test plans, test cases, and scenarios - Execute functional, integration, regression, and compatibility testing across mobile and web platforms - Perform API testing (REST/JSON) using tools like Postman or SoapUI - Validate end-to-end integration between digital channels and T24 Core Banking - Test key banking workflows such as onboarding, eKYC, login, payments, and fund transfers - Identify, track, and manage defects using JIRA/Azure DevOps - Conduct root cause analysis and ensure defect resolution - Validate security controls (MFA, OTP, biometric authentication, session management) - Support performance testing and release cycles (SIT/UAT/Regression) - Collaborate with teams in Agile/Scrum environments - Contribute to automation initiatives (Appium/Selenium) and continuous QA improvements Qualifications - Bachelor’s degree in Computer Science, IT, or related field - ISTQB Certification (Mandatory) - 5+ years of QA experience, preferably in banking/financial services - Minimum 3 years of mobile app testing (iOS & Android) - Strong experience in Web and API testing - Experience with Temenos T24 integration testing (preferred) - Familiarity with tools: Postman, JIRA, Selenium/Appium (good to have) - Knowledge of payment systems and secure authentication methods - Experience working in Agile/Scrum delivery models Requirements - Preferred Immediate joiner only