Project Quality
Resume:
Professional Summary
Over *+ Years of experience in the area of Quality assurance testing with ISTQB certified and specialized skills in application vulnerability assessment. Worked with fast-paced, fortune 500 companies and deadline driven environments managing multiple projects and leading quality assurance and security assessment team .
PROFESSIONAL HIGHLIGHTS:
Working experience in Agile & Scrum development environment
Good understanding of Quality assurance life cycle and Software Development life cycle
Experienced in performing security testing for various web applications, web services, and mobile applications - Androids, salesforce, IOS and google analytics integrations.
Good exposure to Mercury interactive product Mercury Quality Center latest versions
Skilled resource in conducting code review manually and using automated tools such as Fortify
Strong experience with manual interception proxies such as Burp, Fiddler and Charles Proxy
Hands on experience with various automated vulnerability assessment tools such as WebInspect, Burp Suite.
Professional demeanor possessing the ability to communicate security related issues with compliance, executive management, IT developers and auditors.
Documented executive summary of security reports identifying the vulnerabilities, its risk and mitigation strategy.
Expertise working and leading security assessment (OWASP top ten)
Well versed in preparing test plans, test summary reports, source code and vulnerability assessment reports, application security metrics and dashboards.
Identify application security gaps, document and rate severity of the finding, create and distribute report of findings with acceptable recommendations to respective project teams.
TECHNICAL SKILLS & EXPERTISE:
Defect Tracking Tools
Test Director 7.2, Quality canter 8.0,10.0,AT Task
Security Tools
Burp Suite,Fortify,HP Web Inspect, SOAP UI,WS Digest
Training
PCI 3.0 training
QualysGuard Vulnerability Management
InfoSec Web application penetration testing
Domain Experience
Auto & Health Insurance, Travel,e-commerce, Mobile Devices
Certification & Awards
ISTQB Certified Tester Foundation Level
QualysGuard Certified Specialist Vulnerability Management
CSI Certified Tester
INFOSEC Web Application Penetration Testing
Project Experience
Project: Managed Testing Center Jan 2014 – Till Date
Role: Lead Security Analyst
Client: American Automobile Association, Phoenix, Arizona
Responsibilities:
Lead Application security vulnerability assessment team.
Responsible to define scope, estimates, timelines and managing multiple project releases and sign offs.
Responsible for working with the enterprise compliance team for defect prioritization and hardening guides.
Working with various application teams for defect escalations and fixing.
Responsible to provide detailed reports to internal auditors on application security assessment.
Responsible to provide metrics for application security assessment.
Responsible for mobile applications and devices assessment.
Perform web scans, source code scans and manual testing for various applications, web services.
Review and analyze security vulnerabilities and monitor them in Quality Center.
Review and monitor work performed by security assessment team.
Interact with client IT security engineers and development team to prioritize and resolve security vulnerabilities.
Multiple contributions to various AAA application projects as a part of security testing
Project: HCR On/Off Exchange Shopping Enrollment Apr 2013 – Jan 2014
Role: Sr Software Quality Analyst
Client: Blue Cross Blue Shield of Arizona (BCBSAZ)
Responsibilities:
Understanding of the CRM Sales Force business processes and managing the overall test planning and execution efforts for Blue Cross Blue Shield of Arizona.
Providing feedback on test process improvements; developing expertise in the E2E business process flow to properly identify gaps in expected results.
Worked with combination of tool based & manual testing.
Identifying and recommending improvements to review processes, business products and services, particularly those that enhance customer satisfaction, minimize business risk and maximize efficiency.
Elimination of false positives generated from the tool reports, Vulnerability Indexing and Categorization
Benchmarking with OWASP Top Ten and determining Risks and Severity.
Identifying the impact of vulnerability on business
Analyzing/recommending application specific fixes (Code level/Deployment level)
Recommending best practices for securing the application
Generation of reports customized for audience.
Project: Royal Web & Infrastructure Re-design July 2012 – Dec 2012
Role: Software Quality Analyst II
Client: Royal Caribbean Cruise Lines Ltd, Miami, Florida
Responsibilities:
Lead testing coordinator, providing business subject matter expertise and serving as the single point of contact and liaison between offshore testing teams, project development team, the Quality Assurance and Business Teams.
Led a team of large offshore resources, established work plans and resource allocation for the testing effort for every testing stage of the project ensuring delivery of all projects within established SLAs.
Participated in reviews of functional and technical design specifications, prepared by the Project team to understand the requirements and validate the flow of the application.
Prepare Test plan which includes details regarding objectives, strategy/approach, scope, assumption, risks, entry and exit criteria and defect management.
Provide daily Test Summary reports and conduct meetings with the business team to review testing defects. Created bug fix reports and coordinated teams for risk analysis
Participation in Test execution and created Test schedule for system testing. Responsible for defect tracking. Worked on BAU for stage implementation
Estimate and obtain management support for the time, resources and budget required to perform the testing. Organize the testing kick-off meeting.
Participated in project meetings and used leadership, analytical and problem solving skills to contribute to the quality of the product.
Develop the test plan for the tasks, dependencies and participants required to mitigate the risks to system quality and obtain stakeholder support for this plan.
Effectively communicated, documented, and validated software defects across departments.
Project: E-Commerce Testing Jan 2012 – July 2012
Role: Software Quality Analyst II
Client: Destination Rewards Inc., Boca Raton, Florida
Responsibilities:
Performed responsibilities of writing test procedures,defect identification and reporting metrics
Organize the status meetings and send the Status Report (Daily, Weekly etc.) to the Client
Act as the single point of contact between development and testers.
Track and prepare the report of testing activities like test testing results, test case coverage, required resources, defects discovered and their status, performance baselines etc.
Review various reports prepared by test engineers and ensure the timely delivery of different testing milestones.
Prepares / updates the metrics dashboard at the end of a phase or at the completion of project.
Involved in Testing all the client partner website sites as well as the Database testing
Working in agile methodology, attending sprint walk through, stand up scrum calls to ensure the sprint enhancements are tested according to requirements.
Responsible for conducting manual exploratory testing under the guidelines of senior test managers
Project: Mobile Application Testing (Web & Device) Aug-2011 – Jan-2012
Role: Software Quality Analyst
Client: Tracfone Wireless Inc., Miami, Florida
Responsibilities:
Perform functional testing, integration testing, sanity testing, regression and user acceptance testing.
Develop the test plan for the tasks, dependencies and participants required to mitigate the risks to system quality and obtain stakeholder support for this plan.
Arrange the hardware and software requirement for the test setup and assign task to all testing team members and ensure that all of them have sufficient work in the project.
Ensure content and structure of all testing documents / artifacts is documented and maintained.
Document, implement, monitor, and enforce all processes for testing as per standards defined by the organization.
Check / Review the test cases documents and keep track of the new requirements / change in requirements of the Project.
Builds business requirements vs. test case matrix and executes SIT phase of projects and/or BAU’s.
Extensive experience in defect resolution using mercury’s quality center to maintain records of testing defects
Provide production support for software products by investigating and recreating reported defects
Create detailed QA documentation including QA reports,actively participated in SQA and project status meeting
Project: Identity and Access Management Implementation Jan 2008-Jun 2009
Role: Software Quality Tester
Client: Experts Vision
Responsibilities:
Writing and execution of test cases on different enterprise roles,application and business specific roles
Design,execute, analyze and maintain functional and black box test plan and test procedure
Execute test cases on different end systems like Active Directory, Identity manager application,
Developed tools for documentation, Status reporting, Minutes of meeting, logging test bed issues and monitoring Action Items
Tested end user access controls on web portals and groups and role based access control.
GUI testing on identity manager application
Project: B2C Project in Telecom Jan-2005 – Dec 2007
Role: Software Quality Tester
Client: Tata Teleservices
Responsibilities:
Design and Analysis of the telecom packages.
Worked on Billing System Evaluation, Billing System Approval, Billing System Implementation
Worked on Toad, Arbur and Scripting tools and with the circle tariff.
Contact this candidate