PCI Compliance Tester

The concept of “Blizzard polish,” that is, the infinite care and loving detail put into every aspect of our games, is something we take seriously and pride ourselves on delivering to our players.  It’s a responsibility shared across the company – and its undisputed heart and soul is Blizzard QA. We’re searching for like-minded folks with a passion for QA to help us continue to deliver unforgettable gaming experiences for years to come. Blizzard QA is a close-knit team; we care about iteration, problem solving, and succeeding as a group. We genuinely love what we do for a living, and expect the same from everyone who joins us! If your career is ready for its next great challenge, get in touch and let’s get to work!

About the Job

We are looking for an analytical advocate of quality. As a Senior Test Analyst, you will contribute to the testing efforts by generating test documentation, providing early feedback to shape the product, and executing test cases. Your critical thinking skills, and passion for improving our processes will give gamers the best experiences on the arena.

Your main duties will be to form key test initiatives around Security & Compliance. This includes; but is not limited to, PCI Compliance, Business Continuity and Information protection, Security Incident response, Vulnerability and Penetration testing.

Responsibilities:

• Plan regular vulnerability and penetration testing across all public facing sites, working with web teams and third parties to remediate any vulnerabilities.
• Creation and implementation of test standards related to security and compliance policies as it relates to Blizzard QA needs.
• Work with teams in support of PCI compliance assessments.
• Working with the group compliance team to implement key regulatory compliance around data protection.
• Work with internal audit to conduct compliance and security assessments; analyze audit findings to improve compliance and governance of IT controls as well as coordinating remediation activities within the IT teams.

Requirements:

• Bachelor’s degree in related field or equivalent experience
• A minimum of 5 years' software testing experience
• Certified ISTQB Advanced Test Analyst or equivalent
• Experience with build systems, continuous integration and test value for such an environment.
• Experience with game engines, content and asset editors, and shared technologies
• Able to analyze and interpret data/workflows, recognize critical issues, and raise concerns
• Understands various software development life cycle best practices
• Domain knowledge expertise
• Passion for video games and software quality

Pluses:

• Technical IT security background including information protection and security incident response (SIEM)
• Experience with conducting regular vulnerability and penetration testing across all public facing websites, working with web teams and third parties to remediate any vulnerabilities
• Clear and abiding interest in information security
• Understanding of PCI DSS, Data Protection Act, ISO27001, ISO27002.
• Knowledge of data protection policies, procedures, and products
• Able to take to the lead in identifying areas for improvement and recommending how to improve them
• Able to work across a global business and time zones
• Security certification (SSCP, CISSP, CISM)