Spin.AI is a global SaaS cybersecurity company that protects mission-critical data across Google Workspace, Microsoft 365, Salesforce and Slack. Our product – SpinOne unifies SSPM, ransomware protection, DLP, backup & recovery in one platform trusted by enterprise customers worldwide.
As our platform evolves and new features are delivered faster, the volume of manual testing has increased. To keep our quality standards high and ensure stable releases, we are looking for a Middle Manual QA Engineer who takes real ownership of product quality. We expect someone who thinks critically, challenges requirements, spots risks before they turn into incidents, and is comfortable diving into UI, APIs, databases, and backend workflows.
You will become part of a strong QA team of 7 engineers, including both Manual and Automation QA specialists, working closely together to maintain high product quality and continuously improve our testing processes.
This role is based in our Lisbon office in a hybrid format. If you are not currently in Portugal, we are open to remote work during the trial period, with relocation to Lisbon afterward.
🧰 Day-to-Day Responsibilities
Perform manual testing across UI, APIs, integrations, and backend-driven workflows.Analyze requirements and acceptance criteria, proactively identifying risks and gaps together with PO/PM/Dev.Own and maintain test documentation in Zephyr: create, review, and update test cases and checklists; develop and manage test plans and test cycles; prepare test result reports when required.Validate data integrity and system behavior using database queries.Run and analyze automated test results to identify problem areas, support root-cause analysis, assist with prioritization, and align on next steps with the team.Review product documentation, analyze it critically, and suggest improvements.When needed, deliver short demos or walkthroughs to align with PO/PM.
📌 Requirements
3+ years of manual QA experience in Web/SaaS products (CRM/eCommerce is a plus).Strong test design skills (exploratory, risk-based, negative scenarios, regression) and solid bug reporting.Web fundamentals: HTTP, DevTools (Network/Console), basic HTML/CSS, general understanding of Java.Databases are mandatory: understanding core DB concepts + hands-on verification using PostgreSQL.Practical understanding of test plan / test cycle / test case concepts and ability to apply them in Zephyr.Ability to read documentation, analyze it critically, and suggest changes.Critical thinking and initiative to uncover risks and non-obvious defects.English: Intermediate+.
🛠 Tooling (used daily)
Jira — bug tracking, tasks, defect communicationZephyr — test management (test plans, test cycles, test cases, regression)Database tools (PostgreSQL) — data validation and verification via SQL queriesBrowser DevTools (Chrome/Firefox) — Network/Console for request / http analysis, UI behavior, errorsAutomated tests (CI / project runs) — running and reading results/logs to identify weak spots and support defect analysis and alignment on next steps with the development teamNice to have: Postman, Swagger, Confluence (or similar), AI tools for QA, Jenkins
Nice-to-Have:
REST API testing (Postman, Swagger). SQL beyond basics.Exposure to test automation (running tests, reading logs/reports).Experience using AI tools to improve QA efficiency.Knowledge of cloud platforms: AWS, GCP, and Azure (basic services, IAM/permissions, core cloud concepts).Java understanding (reading code / following logic is a plus).
🌍 Why Spin.AI
Work in a fast-moving, high-impact cybersecurity company recognized by Gartner, Forrester, and G2.Work on a real product with real users and visible business impactWork on an interesting and large-scale productSolve complex, non-trivial security and engineering challengesOpportunity to influence technical and product decisionsTrust from management and autonomy in day-to-day workStrong, professional team with deep expertise
🎁 What we offer
Annual performance-based salary reviewAnnual performance-based bonusReferral bonusesEducational budgetSport & hobby compensationMedical insurance compensationCompany presents (birthdays, anniversaries, weddings, etc.)Corporate travel parties twice a year