Security Test Automation Engineer
Colgate-Palmolive · Piscataway, NJ · 1 wk ago
HybridQuality Assurance$97k–$137k/yrFull-time
No Relocation Assistance Offered
Job Number #173456 - Piscataway, New Jersey, United States
Who We Are
is a global consumer products company operating in over 200 countries specializing in Oral Care, Personal Care, Home Care, Skin Care, and Pet Nutrition. Our products are trusted in more households than any other brand in the world, making us a household name!
Join Colgate-Palmolive, a caring, innovative growth company reimagining a healthier future for people, their pets, and our planet. Guided by our core values—Caring, Inclusive, and Courageous—we foster a culture that inspires our people to achieve common goals. Together, let's build a brighter, healthier future for all.
Role Summary
We are seeking an innovative DevSecOps Automation Engineer to bake security directly into our QA lifecycle. In this role, you will apply your deep knowledge of cloud architecture and InfoSec to automate security checks for high-volume eCommerce sites. You will leverage AI tools, implement AppSec frameworks, and ensure that our business innovations are secure from day one.
Responsibilities
- Security Automation: Deep expertise in automating security checks (SAST/DAST) within high-traffic, consumer-facing eCommerce environments. Experience integrating tools like Wiz, Snyk, or GitGuardian into daily testing cycles.
- Cloud & InfoSec Foundations: A strong grasp of Cloud Architecture and broad Information Security principles to ensure robust, secure deployments and protect customer transaction data.
- AI-Forward Mindset: Experience or strong interest in leveraging AI tools to perform predictive risk analysis on new code commits.
- Vulnerability Management & Penetration Testing: The ability to act as the primary technical liaison between our Application Security and Quality Assurance teams, creating automated security regression tests targeting common vulnerabilities (e.g., OWASP Top 10). Familiarity with applying manual or automated penetration testing techniques to uncover complex flaws in critical eCommerce flows.
- Business Alignment: Strong stakeholder management skills, with the ability to partner with business leaders to align security practices with the strategic direction and feature roadmap of our eCommerce platforms.
- Education: Bachelor’s degree in Computer Science, Cybersecurity, Information Systems, or related field.
- Experience: Minimum 5 years of experience in Application Security, DevOps, or specialized QA Automation with a heavy emphasis on security and cloud infrastructure.
- Certifications: Relevant industry certifications are highly desirable (e.g., AWS/GCP/Azure Security certifications, CISSP, CEH, or DevSecOps specific credentials)
- Foundational knowledge of security testing (SAST/DAST) tools and concepts.
- Experience or strong interest in integrating security checks into CI/CD pipelines.
- Basic understanding of cloud architecture and core Information Security principles.
- Good collaboration and communication skills to work with security and QA teams.
- Experience with automated testing frameworks and scripting (e.g., for common vulnerabilities like OWASP Top 10).