Our mission at EU CR CX Solutions and Release is to: Increase the reach of Cloud RAN by ensuring flexible business solutions that embrace the Cloud ecosystem and are profitable for Ericsson.

We are a senior team who put the e2e customer experience in focus for EU Cloud RAN. We develop solutions that are service-ready, including key metrics for dimensioning, guidelines for integrating selected cloud infra and HW, and blueprints for supported configurations (DRAN, CRAN, enterprise). We provide customers the documentation to deploy and manage our solutions, and we drive and validate quality targets to ensure the high-quality release of Cloud RAN solutions. We forge the path towards continuous release and deployment, ensuring Cloud RAN embraces Cloud Native standard methodologies.

We are now looking for a Test Automation Developer having background in VA testing to join the Cloud RAN solution team. The main responsibility is to focus on our Cloud RAN business solution ecosystem and products and cover the common activities for security testing and analysis.

What You Will Do

As Test Automation Engineer you will be responsible for the following functions:

• Develop and maintain automated test frameworks based on Ericsson internal tools like AAT/MJE/JCAT/TGF/TestNG/Robot, ensuring scalability, reliability, and maintainability
• Integrate automated tests into the CI/CD pipeline using Jenkins and Spinnaker, enabling faster feedback and efficient release cycles
• Setup Penetration testing framework and complete tests
• Perform fuzzing testing and prepare fuzzing test suites with suitable framework for regression
• Perform ad-hoc penetration testing of our System Verified and Validated solution. Verify security risks and discover new vulnerabilities not identified by generic security tools
• Solve and debug test failures, working closely with development teams to identify root causes and provide timely resolutions
• Work with an international cross-site team who are experts in the area of CNF, 5G and RAN
• Support on the scanning of internal components and analysis of new security issues not detected previously by our development organization
• Analyze all reports generated by the tools
• Determining if it is false positive or not
• Stablishing the criticality of each vulnerability applied in the product context
• Support on Critical and High vulnerabilities found in internal components
• Help preparing vulnerability analysis reports
  
  

You will bring

• Bachelor's or master’s degree preferably in information and/ or Cybersecurity, Computer Science, or a related field.
• Proven testing experience, vulnerability (VA) testing knowledge is a must.
• Strong background in UNIX/Linux, and proficient in script programming, such as shell or Python, etc.
• Experience in developing and automating (Penetration) test cases
• Experience in white and grey box offensive penetration testing with different offensive security tools and techniques.
• Knowledge of threat modelling methodologies and related frameworks
• Knowledge about cloud native products, its infrastructure and different delivery artifacts (Docker, Kubernetes, Dockerfile, Helm charts, etc.)
• Good knowledge in ICT security area preferably with Security certification such as CISSP, CCSP and/or CISM is desirable but not required
• Experience in Cloud and/or in Cloud native technologies (k8s for example)
• Technical understanding and experience in working with RAN and/or Core mobile technologies id desirable
• Working experience of Ericsson Security Manager is desirable
• Good English language skills in both writing and conversation