Software Qa Engineer
San Jose, California, Us
Automation Test framework development.Performed security threat modelling, static code analysis, code review, various runtime software quality analysis tools and product performance profiling instrumentation.Symantec Enterprise Endpoint (vsn 2.0, 3.0)* Performed threat modelling for detecting potential weak software requirements, design and architecture * Developed test strategy, test plan and test cases for Product Migration, an area that is traditionally received the least customer satisfaction, generated the most support calls.* Led a team for Migration Scenario testing. This results 97% success rate, the best customer experience, in migration since product inception. * Performed code review, design review and functional specification review. Evaluate several security tools and other third party tools, as part of best practices, to improve software defects prevention. * Used Numega Bounds Checker to identify resource leaks, Intel VTune to profile for potential hotspots and Code Coverage on C++ code base. Used Coverity for static code scan on Symantec Corporate CodeBase for to discover potential suboptimal coding practice and/or security vulnerability such as buffer overrun. * Employed Eclipse plugin Checkstyle, Findbugs & Jikes to help in identifying potential bad practice and security vulnerability on Java Application such as SQL injection. * Identified and fixed defects in Symantec Reporting Manager. Programmed Perl scripts to plugin into Nessus. TOAST (Test automation system) * Enhanced, tested and fixed TOAST, a customized JUNIT based framework, for basic acceptance test. The automation system lets users create, edit and submit tests to the backend server, deploy tests, request the machines to re-image themselves and execute tests and report test results from webpage frontend.Development environment: MS VC++, C++, Java, Perl, Eclipse, Tomcat, Struts, Postgres, MYSQL, RedHat, Windows (Various client and server platforms).