Security Quality Engineer

Hi, We’re AffiniPay! 

AffiniPay is a leading fintech company, based out of Austin, Texas. As the market leader in professional services payments and practice management software, AffiniPay’s tech products serve legal, accounting, architectural, engineering and construction firms. AffiniPay has been recognized as one of Inc. 5000’s fastest growing companies in the U.S. for 13 years in a row, and as a result, our teams continue to grow as well! 

The Security Quality Engineer will be vital in integrating security within our Quality Engineering processes, with a focus on vulnerability management, compliance, and secure testing practices in support of our Practice Management and Fintech platform. This role will work closely with the Security Engineer to remediate vulnerabilities and ensure that security best practices are embedded in testing strategies. Additionally, the Security Quality Engineer will audit test cases in TestRail, participate in red team exercises, and collaborate with the Platform Engineering/SRE team to enhance the security posture of the infrastructure through effective testing and monitoring practices in support of our practice management platform.

What You'll Do:

1. Security Testing, Validation, and Red Team Involvement
• Conduct comprehensive security assessments and validate the remediation of issues identified by the Security Engineer, ensuring thorough testing of vulnerabilities and security controls, including Intrusion Detection Systems (IDS).
• Participate in red team activities to proactively identify security gaps, contributing insights to improve overall security measures and response capabilities.
• Authors and audits test cases in Test Rail across product feature teams for relevant security coverage.
• Works closely with SDET team to automate security-specific tests for inclusion in CI/CD pipeline where appropriate.
2. Audit and Compliance Support
• Audit and refine test cases in TestRail, ensuring that security considerations are consistently applied and validated against compliance frameworks (ie, SOC 2, PCI-DSS).
• Collaborate with the Platform Engineering/SRE team to ensure that security testing aligns with operational practices and compliance requirements.
3. Training and Security Best Practices for the QE Team
• Develop, deliver, and maintain training documentation and presentations to educate the QE team on secure testing methodologies, promoting the integration of security practices into testing workflows.
• Mentor QE team members to foster a security-focused culture, enhancing awareness of secure coding and testing principles.

About You:

• Bachelor’s degree in Information Security, Computer Science, or related field or equivalent work experience.
• 3+ years of experience in security testing within a quality engineering environment
• Familiarity with Test Rail, Tricentis QTest or other Test Management Tools.
• Proficiency in scripting, preferably in Python.
• Understanding of standard security testing tools and frameworks (ie, OWASP, NIST).
• Experience with PCI DSS and related compliance standards
• Strong understanding of TCP/IP Networking, Intrusion Detection Systems, firewalls, etc.
• Understanding of Cryptography and how it pertains to data security
• Experience working within an Agile environment

Soft Skills:

• Excellent communication skills for effectively conveying security concepts to the QE team and other stakeholders.
• Detail-oriented with strong analytical capabilities to maintain audit-compliant documentation and secure testing practices.

Additional Information

The annual salary range for this position is $120,000 to $150,000 per year. The salary range for performing this role outside of the US / Austin / California may differ.  AffiniPay is committed to offering competitive, fair and commensurate compensation and has provided an estimated pay range for this role. Actual compensation may vary based on job-related knowledge, skills, experience and education.

Our Story

Founded in 2005, AffiniPay’s mission is to build technology products that helps professionals focus on the work they love. As the leader in the professional payments industry, AffiniPay’s products serve legal, accounting, architectural, engineering and construction firms. Our portfolio of software solutions include MyCase (Legal Practice Management Software), CASEpeer (Practice Management for Personal Injury Firms), Docketwise (Immigration & Case Management Software), and Woodpecker (Legal Document Automation). Our portfolio of payment solutions include LawPay (Legal), AffiniPay for Associations (Associations), CPACharge (Accounting Professionals), and ClientPay (Architect, Engineer, and Construction). AffiniPay’s products serve over one hundred thousand users, and we are noted as one of the fastest growing tech companies in Austin, Texas. We are constantly looking for talent to join our team to continue playing a key part in unlocking our potential. 

Diversity, Equity & Inclusion at AffiniPay

At AffiniPay, we recognize that innovation occurs with a strong team of people who are diverse in background, personality, talent and ideas. Experience comes in many forms and ensuring a diverse and inclusive workplace where we continue to learn from each other is an integral part of our culture. We are committed to creating a welcoming and transparent environment for all that embraces those differences through education, equal access to opportunities and information, inclusionary programs, and community outreach. 

Benefits that Benefit You! 

As a people first culture, we believe it is important that our teammates are happy, healthy, and productive.  In order to best support that, AffiniPay provides award-winning benefits that can make a difference in your life - right now and for the future.

• All employees receive fully covered medical, dental and vision coverage - Choose from our 2 available health plans based on what fits you and/or your family!
• Have some fur babies? - We offer them insurance too!
• RELAX and enjoy your time away with our flexible paid time off policy! 
• We will help you plan for your future - 401K, or RRSP if in Canada, with a company match
• Competitive compensation packages that include mid-year and end-of-year bonuses and equity options for all full-time employees
• Health Wellness Program that includes nutrition consultations, mental health apps, and access to discounted memberships
• Have plans to grow your family? - Parental resources, including 16 weeks of paid time off for primary caregivers
• Professional development opportunities including mentorships, leadership programs and our AffiniPayU courses
• We believe it is important to give back with our Matching Gift Program and organized activities focused on donations, volunteerism and supporting the local communities throughout the country
• D&I initiatives provide educational opportunities regarding multicultural issues, tolerance, and celebrating diversity among our entire staff
• An incredible, in-office experience at our headquarters in Austin and San Diego including free lunch delivery, a fully stocked kitchen, and some “sweet” surprises for those afternoon pick-me-ups

Security Advisory

Our hiring teams at AffiniPay are dedicated to recruiting top talent that share our passion for serving the professional services industry through innovative financial technology.  As such, our Talent Acquisition Team only follows legitimate hiring practices.  We will always communicate with our candidates using emails with the AffiniPay domain and will never ask for sensitive/personal data during the application process.  All interviews take place over phone call, Zoom/Google Meet or in person.  All offers are communicated verbally by our Talent Acquisition Specialists with a written offer letter as a follow up.