AUTOMATION QA LEAD

WHAT IS EDENRED?

Edenred is a leading digital platform for services and payments and the everyday companion for people at work, connecting more than 60 million users and more than 2 million partner merchants in 45 countries via 1 million corporate clients. Edenred offers specific-purpose payment solutions for food (such as meal benefits), engagement (such as gift cards and engagement platforms), mobility (such as multi-energy solutions, including EV charging, maintenance, toll and parking) and corporate payments (such as virtual cards). 

True to the Group's purpose, "Enrich connections. For good.", these solutions enhance users’ well-being and purchasing power. They improve companies’ attractiveness and efficiency, and vitalize the employment market and the local economy. They also foster access to healthier food, more environmentally friendly products and sustainable mobility.

Edenred’s 12,000 employees are committed to making the world of work a connected ecosystem that is safer, more efficient and more responsible every day. In 2024, thanks to its global technology assets, the Group managed close to €45 billion in business volume, primarily carried out via mobile applications, online platforms and cards.

Edenred is listed on the Euronext Paris stock exchange and included in the following indices: CAC 40, CAC 40 ESG, CAC Large 60, Euronext 100, Euronext Tech Leaders, FTSE4Good, DJSI Europe Index, DJSI World Index, and MSCI Europe.

YOUR ROLE

Edenred is seeking a seasoned QA Automation Lead with blend of application/security testing and QA automation. Responsible for planning and executing penetration tests, strengthening product security, and building automated test coverage for APIs and customer-facing applications.

Key Responsibilities

• Plan and execute penetration tests for web apps, APIs, mobile apps, thick clients, infrastructure, and cloud.

• Identify and exploit vulnerabilities using both manual techniques and approved automated tooling; produce PoC exploits where appropriate.

• Document findings with clear risk ratings, remediation recommendations, and high‑quality reports; present results to stakeholders.

• Collaborate with Engineering, Product, and Security to remediate issues and verify fixes; champion secure coding practices.

• Participate in secure code reviews and contribute to threat modeling for new features/services.

• Help develop and maintain internal security tooling and testing processes.

• Design, develop, and maintain automated test cases and reusable test frameworks (e.g., TestNG/JUnit).

• Create comprehensive test plans; perform manual and automated testing for APIs and customer applications, covering positive/negative and edge cases.

• Use Bruno/Postman (or equivalent) for API testing; validate request/response payloads, assertions, and workflows.

• Log and track defects; manage releases via JIRA; create clear tickets and drive closure with Product and Tech.

• Write utilities/scripts in Java/Python to support test automation and data setup; run SQL queries to validate test results.

• Stay current on emerging attack techniques, vulnerabilities, and security tools.

QUALIFICATIONS

• BE/B.Tech in Computer Science, Information Technology, or related field.

• 5+ years of experience in QA automation with significant hands‑on security testing.

• Hands‑on use of formal pentest methodologies (OSSTMM, PTES) and strong Burp Suite experience.

• Strong API testing skills with Bruno/Postman (or similar) and deep understanding of API validation.

• Proven experience writing automation scripts and building/maintaining reusable automation frameworks (TestNG/JUnit).

• Scripting/programming proficiency (e.g., Python, Ruby, Bash, PowerShell) for automation and custom tools.

• Familiarity with operating systems and networks (Unix/Linux, Windows/macOS), virtualization (VMware/Xen/VirtualBox), cloud platforms (AWS/Azure/GCP), and Active Directory.

• Solid understanding of common application vulnerabilities and remediation techniques (OWASP Top 10).

• Knowledge of secure SDLC; experience across Waterfall, Agile, DevOps/DevSecOps environments.

• Able to produce high‑quality documentation (test reports, guidance, playbooks).

• Strong communication skills; comfortable working with both technical and non‑technical stakeholders across the release lifecycle.

• Automation‑first mindset focused on efficiency and scalability.

• Advanced JIRA usage for ticketing, release management, and workflow automation.

• Self‑starter who can work independently and as part of a team in a fast‑paced environment.

PREFERRED SKILLS

• Working knowledge of threat‑modeling methodologies and ability to run threat models for new applications/services.

• Familiarity with enterprise security/compliance standards (ISO 27001, NCSC Cyber Essentials) and frameworks (NIST, CIS).

• ISTQB or relevant testing/security certifications.

• Exposure to performance testing tools (e.g., JMeter, k6).

• Experience integrating tests into CI/CD pipelines and tooling (e.g., Azure DevOps, Jenkins, GitLab CI).

POSITION DETAILS

Initial 6-month contract, with option to renew thereafter.

OTHER DETAILS

Location: Thane, Mumbai. We follow a hybrid schedule, where employees are expected to be in the office three days a week.

Start Date:1^st April 2026

OUR COMMITMENT

Edenred is all about meritocracy. You come as you are, and you contribute. Indeed, the Edenred Group recognizes, recruits and develops all talents and singularities. We are committed to preventing all forms of discrimination and to providing all our candidates with equal opportunities regardless of their gender and gender expression, disability, origin, religious belief and sexual orientation or any other criteria.

‍