QA Engineer (Tbilisi, Onsite)

Description
Astra Tech is a UAE-based company building one big app (Botim) where you can do everything: call, send messages, pay bills, move money, shop, book services, and even talk to AI — all without jumping between dozens of separate apps. By plugging new services into behaviours people already have (chat and calls), Astra Tech solves platform fatigue and creates a sticky ecosystem for 150M+ users across 155 countries.
Their flagship product, the Botim Ultra App, combines communication, fintech (Botim Money), e‑commerce, government services, and AI assistants under one brand, with a clear motto: “Blueprint of Simplicity” — make everyday life easier, not more complex

Requirements

• Bachelor’s degree or above in Computer Science, Engineering, or a related field.
• Proven QA experience in fintech, payment, digital wallet, banking, or lending systems.
• Solid understanding of KYC, AML, risk control, and compliance processes.
• Hands-on experience testing risk engines, rule-based systems, or transaction monitoring platforms.
• Strong experience in backend API testing and database validation.
• Familiarity with third-party integrations and regulatory-driven systems.
• Strong analytical and logical thinking skills, especially for complex business rules and decision engines.
• Experience working in Agile/Scrum development environments.
• Good communication skills in English, with the ability to work cross-functionally with Risk, Compliance, and Engineering teams.
• Automation testing experience for APIs or workflows is a strong plus.

Responsibilities

• Perform end-to-end QA testing for user activation and onboarding flows, including registration, KYC initiation, verification, approval, rejection, and re-submission scenarios.
• Validate KYC integrations with external vendors such as identity verification, document OCR, liveness detection, and sanctions screening
• Test risk control and risk engine rules, including user risk grading, transaction limits, velocity checks, blacklists/whitelists, and behavioral risk controls.
• Validate transaction monitoring workflows, including suspicious transaction detection, alerts, rule triggers, manual review, and enforcement actions.
• Verify compliance-related business logic aligned with regulatory requirements (e.g., AML, KYC, sanctions, and internal risk policies).
• Conduct backend API testing for activation, KYC, risk control, compliance, and monitoring services.
• Validate data consistency across systems, including KYC status, risk level, transaction status, account restrictions, and audit logs.
• Execute negative, boundary, and abuse-case testing to uncover fraud, bypass, or risk loopholes.
• Support UAT, regulatory readiness testing, and production verification for activation and risk-related releases.
• Collaborate closely with Product, Backend, Risk, Compliance, Operations, and Data teams to clarify requirements and identify quality and risk gaps early.
• Track, analyze, and report defects with clear root-cause analysis and business risk impact assessment.
• Contribute to test strategy, test case design, test data preparation, and continuous improvement of QA processes within the Activation & Risk Control squad.

Working conditions
There is requirement to go to office

...and of course, your benefits:

• Direct work with the customer, ownership culture.
• 20 working days of vacation and 15 sick leaves (all Ukrainian public holidays included).
• Health insurance (after trial).
• Fitness membership (after trial).
• Company legal and accounting support.
• Flexible working hours (no time trackers).
• Corporate events.