Talent.com
This job offer is not available in your country.
Lead Principle Security QA Engineer

Lead Principle Security QA Engineer

OofBelfast, Northern Ireland, United Kingdom
30+ days ago
Job type
  • Full-time
Job description

Join to apply for the Lead Principle Security QA Engineer role at Opplæringskontoret for Offshore fag

Role : Lead Principle Security QA Engineer

Rate : Inside IR35

Location : likely 2 days a week onsite in London or Croydon.

Duration : 6 months +

SC cleared or eligible.

The Role

The Home Office is developing an internal Security Testing capability within the Quality Assurance and Testing function. As a Principal Cyber Security Professional, you will work within the Home Office Cyber Security (HOCS) team, collaborating with senior security stakeholders to develop security testing services and represent security testing for the organization. Communication and professionalism are essential, as you'll work closely with senior security colleagues daily.

You will lead the delivery of security testing, vulnerability assessments, and security compliance to secure Home Office services and advise on technical security risks.

You will collaborate with business and technical stakeholders to provide security testing advice, enabling secure delivery of solutions and services.

Responsibilities

  • Lead development and delivery of security testing documentation to support ongoing services.
  • Manage and provide security testing assurance in collaboration with internal and external partners.
  • Support security assessments, penetration testing, and other non-functional security testing, documenting findings.
  • Provide expertise in vulnerability management and security compliance across on-premise and cloud solutions.
  • Work with project teams to advise on security testing requirements.
  • Act as escalation point for security testing incidents.
  • Research and adopt new security technologies and methodologies.
  • Assess threats and vulnerabilities, monitoring deviations from security baselines.
  • Communicate security risks, threats, and vulnerabilities clearly to stakeholders.
  • Evaluate new threats and security alerts, recommending remedial actions.

Essential Criteria

  • Experience applying technical security controls in real environments, understanding threats, vulnerabilities, and best practices.
  • Passion for security testing and continuous development in this field.
  • Relevant industry certifications (e.g., CREST, Offensive Security, SANS / GIAC) and IT security experience.
  • Experience conducting diverse security tests in various environments.
  • Proficiency with vulnerability management tools, reporting, and assessment activities.
  • Strong communication skills for engaging stakeholders at all levels.
  • Experience working collaboratively within teams, sharing knowledge, and training colleagues.
  • Knowledge of vulnerabilities like OWASP Top 10, CVE databases.
  • Understanding of Agile and DevOps practices, CI / CD security integration.

    • Desirable Criteria

    Additional knowledge or experience in :

  • Penetration testing tools and techniques.
  • Security testing reporting and stakeholder engagement.
  • Security aspects of project delivery.
  • IT infrastructure and application architectures.
  • Network protocols, encryption algorithms, PKI, SSL / TLS, SIEM, OS patching.

    • Applicants with high-level security clearance or previous clearance are encouraged to apply. Clearance process can take up to 10 weeks. LA International is a recognized ICT recruitment agency, awarded by The Queen’s Award for Enterprise : International Trade.

    Additional Details

  • Seniority level : Mid-Senior level
  • Employment type : Contract
  • Job function : Engineering and IT
  • Industry : Computer and Network Security

    • J-18808-Ljbffr

    Create a job alert for this search

    Lead Qa Engineer • Belfast, Northern Ireland, United Kingdom