Total 5 quality assurance specialist job vacancies in Others category in The Philippines

We are looking for a DevOps Middleware Engineer for a team of motivated, enthusiastic and committed colleagues who always take the time to look at complex issues from all sides, who together master the challenges of day-to-day business, and who make the job of "running the bank" in Avaloq a success.
On our way to the cloud, we are providing an ever-increasing range of microservices to best combine availability and scalability.

Your key tasks

• Declaration of infrastructure components in Terraform for Oracle, GPC, AWS, MS Azure, and the private cloud of our service provider.
• Use of current technologies and tools for continuous improvement and automation of system operation.
• Set-up, operation, monitoring and maintenance of the systems for the realization of the offered services.
• Assumption of tasks within the ITSM lifecycle, especially in performance, service, change, asset, incident, and problem management.
• Participation in on-call duties.
• Administration and configuration of web application server
• Coding of automation and monitoring scripts
• Infrastructure as Code (IaC) with Terraform to ensure efficient and scalable deployment processes
• Issues investigation and troubleshooting
• Contribution to the design, technical documentation, implementation, and administration of enterprise applications
• Middleware refreshment and patching
• Collaboration with specialists of different areas for the implementation of cross-domain activities
• Ticket management (L2/L3 support) in collaboration with our strategic 3rd party suppliers
• On-call service (7x24) and early/late shifts

You will be part of a well-established international Information Security team focused on Offensive Security activities. As a Red Team Specialist, you will play a critical role in assessing and enhancing our organization's security defenses.

Your primary responsibility is to simulate attacks on the organization's systems, networks, and applications to identify vulnerabilities and weaknesses; document the findings, and work with stakeholders to ensure that any findings are understood and addressed. You will collaborate closely with other security professionals, including Blue team members (defenders) and Cyber Security Operations Center (CSOC) analysts. Together, you will strengthen the organization's security posture. Your role will contribute to the success of the team and will be reporting to the Head of InfoSec Assurance.

Your key tasks 

• Conduct Red team exercises to evaluate the effectiveness of security controls.
• Mimic real-world attacks to identify vulnerabilities and provide actionable recommendations.
• Carry out continuous implementation and testing sophisticated Tactics, Techniques, and Procedures (TTPs) to be engineered as part of the offensive knowledge base (KB).
• Design and implement advanced attack scenarios targeting modern computer networks and cloud environments.
• Contribute to the continuous improvement of the existing offensive knowledge base (KB).
• Execute testing, validation, and verification activities (e.g., field testing, performance testing, etc..) to evaluate and certify the effectiveness and stability of engineered capabilities.
• Collaborate with Blue team members and CSOC team to improve detection and response capabilities.
• Produce reports documenting findings and present them to stakeholders.
• Coordinating the engagement of specialized external companies for penetration tests when these activities cannot be carried out by internal personnel.
• Stay up-to-date with the latest attack techniques and security trends.

Your Team 

Vendor Management optimizes expenditure with external vendors and maintains mutually fruitful relationships with our Third Parties. We help Avaloq select, contract, and manage vendors in a way that allows meeting business objectives and quality expectations, minimizing operational disruptions, and avoiding undesired risks, at a competitive price.

Your key tasks 

• Implement and operate vendor segmentation based on performance and risks
• Create meaningful and actionable reporting across the Third Party/vendor portfolio
• Continuously improve and automate segmentation and reporting processes
• Support implementation of ESG-management throughout the supply chain
   

About You

You are passionate about Group Controlling. You understand complex systems and can explain them in a simple way to colleagues and management. You keep manuals up to date and you love to elaborate concepts and to bring them to implementation. You can think out of the box and come up with solutions and proposals for various challenges.

We are in the middle of our S4H project. You will follow closely the controlling streams and will support the controlling team in many tasks related to the SAP project. Furthermore, you will be involved in various processes in the Group Controlling team and will be responsible for activities in the monthly closing process, support the constant further development of controlling guidelines and activities and will support to organize the yearly budget process and monthly forecast.

Your Responsibilities:

• Support the SAP project with many controlling related tasks and activities
• Creation of controlling manuals and assist in defining, improving and updating our internal controlling standards and processes
• Support to steer the group wide financial planning activities (budget, forecast)
• Ad-hoc analysis
• Responsible for group controlling tasks in the monthly closing process
• Support the further development of the monthly management report and KPI
• Your reporting line is to the Head Group Controlling

We are seeking a highly skilled and experienced Vulnerability Management Specialist to join our SecOps team. The Vulnerability Management Specialist will be responsible for conducting regular vulnerability assessments, analysing scan results, prioritizing vulnerabilities, and working collaboratively with stakeholders to remediate identified security weaknesses. The ideal candidate will have a strong technical background in vulnerability, hands-on experience with vulnerability scanning tools, and the ability to communicate effectively with technical and non-technical audiences.

Your key tasks 

• Conduct regular vulnerability assessments and scans across systems, applications, and network infrastructure.
• Analyse scan results and prioritize vulnerabilities based on severity, potential impact, and exploitability.
• Collaborate with system administrators, developers, and other stakeholders to remediate identified vulnerabilities in a timely manner.
• Develop and maintain vulnerability management processes, procedures, and documentation.
• Monitor industry sources for emerging threats and vulnerabilities and assess their potential impact on the organization.
• Provide guidance and recommendations to improve security posture and mitigate risks associated with identified vulnerabilities.
• Participate in incident response activities as needed, particularly in assessing the impact of vulnerabilities exploited during security incidents.
• Communicate effectively with stakeholders, including technical teams, management, and external auditors, to provide updates on vulnerability management activities and findings.
• Stay abreast of the latest trends, tools, and best practices in vulnerability management and cybersecurity.