QA Automation Engineer, API/Security

Summary

Join Keeper Security as a highly motivated and experienced QA Engineer focusing on API and security testing for our enterprise-grade applications. This 100% remote position offers a hybrid schedule option for candidates in El Dorado Hills, CA, or Chicago, IL. Keeper's cybersecurity software is trusted globally by millions and thousands of organizations. You will play a critical role in ensuring the reliability, performance, and security of Keeper's API services. Collaborate with developers, QA engineers, and product managers to design and implement automated test suites. Contribute to internal QA standards for secure coding and test automation practices.

Requirements

• 4+ years of experience in QA automation, with a strong focus on API testing
• Proficiency in tools such as Postman, REST Assured, or similar API test frameworks
• Experience scripting in Python, JavaScript, or a comparable language
• Familiarity with OAuth2, JWT, API keys, and other authentication methods
• Understanding of common API vulnerabilities (e.g., OWASP API Top 10) and how to test for them
• Experience integrating automated tests into CI/CD GitHub Actions pipeline
• Solid understanding of HTTP, JSON, and common API protocols
• Strong communication and collaboration skills

Responsibilities

• Design, develop, and maintain automated test suites for RESTful and GraphQL APIs
• Validate API behaviors including authentication, authorization, rate limiting, and error handling
• Conduct security-focused testing, including token validation, input fuzzing, and access control verification
• Integrate API tests into CI/CD pipelines and ensure coverage across staging and production-like environments
• Collaborate with developers to test API contract adherence and backward compatibility
• Assist in evaluating and testing secure integrations with third-party services and identity providers
• Analyze test failures and production incidents to continuously improve test coverage and reliability
• Contribute to internal QA standards for secure coding and test automation practices

Preferred Qualifications

• Experience with security-focused testing tools (e.g., Burp Suite, OWASP ZAP)
• Exposure to security compliance frameworks (e.g., SOC 2, ISO 27001, FedRAMP)
• Familiarity with cloud services (e.g., AWS API Gateway, Lambda, Secrets Manager)
• Background in performance testing or load testing APIs

Benefits

• Medical, Dental & Vision (inclusive of domestic partnerships)
• Employer Paid Life Insurance & Employee/Spouse/Child Supplemental life
• Voluntary Short/Long Term Disability Insurance
• 401K (Roth/Traditional)
• A generous PTO plan that celebrates your commitment and seniority (including paid Bereavement/Jury Duty, etc)