Overview
Skills
Job Details
Compensation: $55.00-$75.00/Hour
Location: 100% remote
Duration: 10 month contract
Work Requirement: , Holder, or Authorized to work in the U.S.
Our client is seeking a QA Engineer with a strong background in security testing, specializing in permissions and access control validation. This role will focus on ensuring that our systems enforce correct user roles, access boundaries, and workflow rules across both low-code/no-code platforms and custom-built solutions. Additionally, this role will collaborate closely with business stakeholders, engineering teams, and information security to design, execute, and automate test plans that protect our applications from security and compliance risks.
Responsibilities
- Develop, maintain, and execute test plans for access control, permissions, and workflow security.
- Partner with Infosec, Product, and Engineering teams to define security testing requirements and acceptance criteria.
- Perform manual and automated security testing of role-based access controls, authentication flows, and authorization rules.
- Validate workflow-driven applications and low/no-code systems for correctness, escalation rules, and data leakage prevention.
- Build and maintain automated test suites using tools like Testim.io (or similar frameworks).
- Identify gaps in access policies, privilege escalation risks, and workflow misconfigurations.
- Document test cases, defects, and results clearly for both technical and business audiences.
- Advocate for secure development and testing practices within the engineering lifecycle.
- 4+ years of experience in QA engineering, with a focus on security testing.
- Strong understanding of permissions models, RBAC/ABAC, and access control testing.
- Experience working with workflow automation, BPM, or low/no-code platforms (e.g., Appian, Salesforce, PowerApps).
- Ability to collaborate with business teams, engineers, and security experts to translate requirements into effective tests.
- Hands-on experience with test automation tools (preferred: Testim.io, Selenium, Cypress, Playwright).
- Familiarity with CI/CD pipelines and integrating automated security/QA tests.
- Strong problem-solving skills, attention to detail, and ability to work independently.
- Experience with threat modeling or penetration testing.
- Knowledge of OWASP Top 10 security risks.
- Exposure to compliance frameworks (SOC2, ISO27001, GDPR, etc.).
- Programming or scripting background (JavaScript, Python, Java).
- Comprehensive medical benefits
- Competitive pay
- 401(k) retirement plan
- ...and much more!
Technology is our focus and quality is our commitment. As a national expert in delivering flexible technology and talent solutions, we strategically align industry and technical expertise with our clients' business objectives and cultural needs. Our solutions are tailored to each client and include a wide variety of professional services, project, and talent solutions. By always striving for excellence and focusing on the human aspect of our business, we work seamlessly with our talent and clients to match the right solutions to the right opportunities. Learn more about us at inspyrsolutions.com.
INSPYR Solutions provides Equal Employment Opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability, or genetics. In addition to federal law requirements, INSPYR Solutions complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities.