Software QA Engineer

Come work at a place where innovation and teamwork come together to support the most exciting missions in the world!

Job Summary:

We are looking for a detail-oriented and technically skilled Windows Patch Catalog QA Engineer to join our security content or patch management team. The role focuses on validating and verifying the accuracy, completeness, and functionality of Windows patch catalogs across different platforms and tools. The ideal candidate will work closely with developers, content engineers, and system administrators to ensure reliable and high-quality patch metadata that supports secure and compliant system operations.

Key Responsibilities:

    Review and validate Windows patch catalog entries (e.g., KB articles, supersedence, classification, severity, product applicability).

    Perform functional testing of detection logic for vulnerabilities and patch deployment workflows.

    Ensure alignment of patch metadata with Microsoft advisories, CVEs, and vendor bulletins.

    Verify applicability of patches across various Windows OS versions and editions (e.g., Windows 10/11, Server 2016–2022).

    Collaborate with developers to identify and resolve logic errors or metadata inconsistencies in the patch catalog.

    Conduct regression testing on recurring content updates (e.g., Patch Tuesday releases).

    Maintain QA test environments, virtual machines, and snapshots for validation across different system configurations.

    Create, maintain, and execute automated and manual test cases and checklists.

    Log and track defects in bug tracking systems (e.g., JIRA, Azure DevOps) and support timely resolution.

    Support documentation efforts, including test plans, validation reports, and release notes.

Required Skills and Qualifications:

    Solid understanding of Windows patching mechanisms (Windows Update, WSUS, SCCM/Intune).

    Familiarity with Microsoft KB articles, CVE-based patching, and cumulative/superseded patch structures.

    Experience with QA methodologies and tools (manual and automated).

    Proficient in scripting (e.g., PowerShell) to assist with test automation or validation.

    Comfortable working with virtualization platforms (e.g., VMware, VirtualBox, Hyper-V).

    Experience with bug tracking and test case management tools (e.g., JIRA, TestRail, Zephyr).

    Strong analytical skills with high attention to detail and documentation accuracy.

Preferred Qualifications:

    Exposure to security content platforms (e.g., Qualys, Tanium, BigFix, Ivanti, ManageEngine).

    Understanding of vulnerability management lifecycle and security configuration benchmarks (e.g., CIS, NIST).

    Experience testing patch-related functionality in enterprise environments.

    ISTQB or similar QA certification.

Soft Skills:

    Strong problem-solving and communication skills.

    Ability to work in fast-paced environments with changing patch data.

    Passion for accuracy and consistency in metadata and patch intelligence.

    Collaborative team player with proactive QA mindset.