At a Glance
- Tasks: Lead security engineering and testing for innovative platforms and services.
- Company: Dynamic tech company focused on security and innovation.
- Benefits: Hybrid/remote work, 35 days annual leave, enhanced pension, and private health.
- Other info: Join a collaborative team with opportunities for career growth and community involvement.
- Why this job: Make a real impact in security while mentoring the next generation of engineers.
- Qualifications: Expertise in web application security and cloud platforms, plus mentoring skills.
The predicted salary is between 60000 - 80000 £ per year.
A senior technical role leading security engineering and testing across a growing portfolio of platforms and services.
The Role
- Lead security engineering and testing efforts, setting direction on methodology, tooling, and engagement scoping.
- Working alongside agile delivery teams, embed good security practice throughout the software development lifecycle and help grow the skills of more junior engineers.
- Lead security testing engagements, including penetration tests on web applications, networks, and infrastructure.
- Define and evolve our security testing methodology, outputs, and tool selection.
- Conduct source code reviews and embed security into CI/CD pipelines.
- Coach and develop a small team, supporting performance and career growth.
- Advise customers and colleagues on security best practice, translating complexity for varied audiences.
Experience
- Expertise securing web applications and cloud platforms (AWS or Azure).
- Hands-on experience with manual and automated security testing tools.
- Strong knowledge of security standards such as NCSC, NIST, OWASP ASVS, GDPR, and PCI.
- Familiarity with common attack vectors including OWASP Top 10, XSS, SQL injection, and MITM.
- Experience in Continuous Security, CI, and CD practices.
- Proven ability to mentor and develop team members.
- Scripting or programming experience across Windows, Linux, or macOS.
Desirable
- Penetration testing qualification such as OSCP, CREST, or TIGER.
- Experience with tools including Burp Suite, OWASP-ZAP, Nmap, Nessus, or Metasploit.
- Background working in agile delivery environments.
- Active involvement in the security community.
Package
- Share options
- Hybrid/Remote working - Belfast
- 35 days annual leave inc stat
- Enhanced pension scheme
- Private health
Please apply now if you are meeting the above criteria or contact Andrew Harrison directly.
Skills: Penetration testing, Web application, Cloud security, OWASP, CI/CD, DevSecOps
Benefits: Work From Home
Lead Security Engineer TLNT1_NI in Belfast employer: Ocho
As a Lead Security Engineer at our Belfast location, you will join a forward-thinking company that prioritises employee growth and development within a collaborative and agile work culture. We offer an attractive benefits package including hybrid/remote working options, 35 days of annual leave, and an enhanced pension scheme, ensuring a healthy work-life balance while empowering you to lead security initiatives and mentor junior engineers in a dynamic environment.
StudySmarter Expert Advice🤫
We think this is how you could land Lead Security Engineer TLNT1_NI in Belfast
✨Tip Number 1
Network like a pro! Reach out to folks in the security community, attend meetups, and connect with professionals on LinkedIn. You never know who might have the inside scoop on job openings or can refer you directly.
✨Tip Number 2
Show off your skills! Create a portfolio showcasing your security projects, including any penetration tests or code reviews you've done. This will give potential employers a taste of what you can bring to the table.
✨Tip Number 3
Prepare for interviews by brushing up on common security scenarios and methodologies. Be ready to discuss how you've tackled security challenges in the past and how you can help embed good practices in their teams.
✨Tip Number 4
Don't forget to apply through our website! We love seeing candidates who are genuinely interested in joining us. Plus, it makes tracking your application a breeze!
We think you need these skills to ace Lead Security Engineer TLNT1_NI in Belfast
Some tips for your application 🫡
Tailor Your CV:Make sure your CV reflects the skills and experiences that match the Lead Security Engineer role. Highlight your expertise in security testing, cloud platforms, and any relevant qualifications like OSCP or CREST.
Craft a Compelling Cover Letter:Use your cover letter to tell us why you're passionate about security engineering. Share specific examples of how you've led security initiatives or mentored junior engineers in the past.
Showcase Your Technical Skills:Don’t forget to mention your hands-on experience with tools like Burp Suite or OWASP-ZAP. We want to see your familiarity with security standards and methodologies, so be clear about your technical prowess.
Apply Through Our Website:We encourage you to apply directly through our website for the best chance of getting noticed. It’s the easiest way for us to keep track of your application and ensure it reaches the right people!
How to prepare for a job interview at Ocho
✨Know Your Security Standards
Make sure you brush up on key security standards like NCSC, NIST, and OWASP ASVS. Being able to discuss these in detail will show that you’re not just familiar with them but can also apply them in real-world scenarios.
✨Demonstrate Your Hands-On Experience
Be ready to talk about your hands-on experience with security testing tools like Burp Suite or OWASP-ZAP. Share specific examples of how you've used these tools in past projects, especially in penetration testing and CI/CD environments.
✨Showcase Your Mentoring Skills
Since the role involves coaching junior engineers, think of examples where you've successfully mentored others. Highlight how you’ve helped team members grow their skills and how you approach performance development.
✨Prepare for Technical Questions
Expect technical questions around common attack vectors like XSS and SQL injection. Prepare to explain how you would address these vulnerabilities in a practical setting, demonstrating your problem-solving skills and technical knowledge.
