QA Automation Engineer, API / Security

About the Role

Location Type: Remote Employment Type: Full-time

Keeper Security is hiring a highly motivated and experienced QA Engineer to focus on API and security testing for our enterprise-grade applications. This is a 100% remote position, with an opportunity to work a hybrid schedule for candidates based in the El Dorado Hills, CA or Chicago, IL metro area.

Keeper’s cybersecurity software is trusted by millions of people and thousands of organizations, globally. Keeper is published in 21 languages and is sold in over 120 countries. Join one of the fastest-growing cybersecurity companies and help us maintain and improve the quality, performance, and security of the products we deliver to our customers.

About Keeper

Keeper Security is transforming cybersecurity for people and organizations around the world. Keeper’s affordable and easy-to-use solutions are built on a foundation of zero-trust and zero-knowledge security to protect every user on every device. Our award-winning, zero-trust, privileged access management platform deploys in minutes and seamlessly integrates with any tech stack and identity application to provide visibility, security, control, reporting and compliance across an entire enterprise. Trusted by millions of individuals and thousands of organizations, Keeper is an innovator of best-in-class password management, secrets management, privileged access, secure remote access and encrypted messaging.

About the Job

As a QA Engineer, you will play a critical role in ensuring the reliability, performance, and security of Keeper’s API services. You’ll work closely with developers, QA engineers, and product managers to design and implement automated test suites that validate API functionality, enforce secure access patterns, and proactively identify vulnerabilities or regressions across our platform.

Responsibilities

• Design, develop, and maintain automated test suites for RESTful and GraphQL APIs
• Validate API behaviors including authentication, authorization, rate limiting, and error handling
• Conduct security-focused testing, including token validation, input fuzzing, and access control verification
• Integrate API tests into CI/CD pipelines and ensure coverage across staging and production-like environments
• Collaborate with developers to test API contract adherence and backward compatibility
• Assist in evaluating and testing secure integrations with third-party services and identity providers
• Analyze test failures and production incidents to continuously improve test coverage and reliability
• Contribute to internal QA standards for secure coding and test automation practices

Requirements

• 4+ years of experience in QA automation, with a strong focus on API testing
• Proficiency in tools such as Postman, REST Assured, or similar API test frameworks
• Experience scripting in Python, JavaScript, or a comparable language
• Familiarity with OAuth2, JWT, API keys, and other authentication methods
• Understanding of common API vulnerabilities (e.g., OWASP API Top 10) and how to test for them
• Experience integrating automated tests into CI/CD GitHub Actions pipeline
• Solid understanding of HTTP, JSON, and common API protocols
• Strong communication and collaboration skills

Preferred Qualifications

• Experience with security-focused testing tools (e.g., Burp Suite, OWASP ZAP)
• Exposure to security compliance frameworks (e.g., SOC 2, ISO 27001, FedRAMP)
• Familiarity with cloud services (e.g., AWS API Gateway, Lambda, Secrets Manager)
• Background in performance testing or load testing APIs

Benefits

• Medical, Dental & Vision (inclusive of domestic partnerships)
• Employer Paid Life Insurance & Employee/Spouse/Child Supplemental life
• Voluntary Short/Long Term Disability Insurance
• 401K (Roth/Traditional)
• A generous PTO plan that celebrates your commitment and seniority (including paid Bereavement/Jury Duty, etc)

Keeper Security, Inc. is an equal opportunity employer and participant in the U.S. Federal E-Verify program.