Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead security testing and vulnerability assessments to protect Home Office services.
- Company: Join Opplæringskontoret, a respected agency in ICT recruitment with a royal award.
- Benefits: Enjoy flexible work with 2 days onsite in London or Croydon and competitive pay.
- Why this job: Be part of a dynamic team shaping security practices and making a real impact.
- Qualifications: Experience in security controls, relevant certifications, and strong communication skills required.
- Other info: High-level security clearance applicants are encouraged; process may take up to 10 weeks.
The predicted salary is between 54000 - 84000 £ per year.
Join to apply for the Lead Principle Security QA Engineer role at Opplæringskontoret for Offshore fag
Role: Lead Principle Security QA Engineer
Rate: Inside IR35
Location: likely 2 days a week onsite in London or Croydon.
Duration: 6 months +
SC cleared or eligible.
The Role
The Home Office is developing an internal Security Testing capability within the Quality Assurance and Testing function. As a Principal Cyber Security Professional, you will work within the Home Office Cyber Security (HOCS) team, collaborating with senior security stakeholders to develop security testing services and represent security testing for the organization. Communication and professionalism are essential, as you\’ll work closely with senior security colleagues daily.
You will lead the delivery of security testing, vulnerability assessments, and security compliance to secure Home Office services and advise on technical security risks.
You will collaborate with business and technical stakeholders to provide security testing advice, enabling secure delivery of solutions and services.
Responsibilities
- Lead development and delivery of security testing documentation to support ongoing services.
- Manage and provide security testing assurance in collaboration with internal and external partners.
- Support security assessments, penetration testing, and other non-functional security testing, documenting findings.
- Provide expertise in vulnerability management and security compliance across on-premise and cloud solutions.
- Work with project teams to advise on security testing requirements.
- Act as escalation point for security testing incidents.
- Research and adopt new security technologies and methodologies.
- Assess threats and vulnerabilities, monitoring deviations from security baselines.
- Communicate security risks, threats, and vulnerabilities clearly to stakeholders.
- Evaluate new threats and security alerts, recommending remedial actions.
Essential Criteria
- Experience applying technical security controls in real environments, understanding threats, vulnerabilities, and best practices.
- Passion for security testing and continuous development in this field.
- Relevant industry certifications (e.g., CREST, Offensive Security, SANS/GIAC) and IT security experience.
- Experience conducting diverse security tests in various environments.
- Proficiency with vulnerability management tools, reporting, and assessment activities.
- Strong communication skills for engaging stakeholders at all levels.
- Experience working collaboratively within teams, sharing knowledge, and training colleagues.
- Knowledge of vulnerabilities like OWASP Top 10, CVE databases.
- Understanding of Agile and DevOps practices, CI/CD security integration.
Desirable Criteria
Additional knowledge or experience in:
- Penetration testing tools and techniques.
- Security testing reporting and stakeholder engagement.
- Security aspects of project delivery.
- IT infrastructure and application architectures.
- Network protocols, encryption algorithms, PKI, SSL/TLS, SIEM, OS patching.
Applicants with high-level security clearance or previous clearance are encouraged to apply. Clearance process can take up to 10 weeks. LA International is a recognized ICT recruitment agency, awarded by The Queen’s Award for Enterprise: International Trade.
Additional Details
- Seniority level: Mid-Senior level
- Employment type: Contract
- Job function: Engineering and IT
- Industry: Computer and Network Security
#J-18808-Ljbffr
Lead Principle Security QA Engineer employer: Oof
Contact Detail:
Oof Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Lead Principle Security QA Engineer
✨Tip Number 1
Network with professionals in the cybersecurity field, especially those who have experience in security testing. Attend industry events or webinars to connect with potential colleagues and learn about the latest trends and technologies.
✨Tip Number 2
Familiarise yourself with the specific tools and methodologies mentioned in the job description, such as vulnerability management tools and penetration testing techniques. Being able to discuss these in detail during interviews will demonstrate your expertise.
✨Tip Number 3
Prepare to showcase your communication skills by practising how you would explain complex security concepts to non-technical stakeholders. This is crucial for the role, as you'll need to convey risks and findings clearly.
✨Tip Number 4
Stay updated on the latest security threats and vulnerabilities, particularly those listed in the OWASP Top 10. Being knowledgeable about current issues will help you stand out as a candidate who is proactive and engaged in the field.
We think you need these skills to ace Lead Principle Security QA Engineer
Some tips for your application 🫡
Understand the Role: Before applying, make sure to thoroughly read the job description for the Lead Principle Security QA Engineer position. Understand the key responsibilities and essential criteria required for the role, as this will help you tailor your application.
Highlight Relevant Experience: In your CV and cover letter, emphasise your experience with security testing, vulnerability assessments, and any relevant certifications. Be specific about your past roles and how they relate to the responsibilities outlined in the job description.
Showcase Communication Skills: Since strong communication skills are essential for this role, provide examples in your application that demonstrate your ability to engage with stakeholders at all levels. This could include experiences where you successfully communicated complex security concepts.
Tailor Your Application: Customise your CV and cover letter to reflect the specific requirements of the job. Use keywords from the job description, such as 'vulnerability management' and 'security compliance', to ensure your application stands out to recruiters.
How to prepare for a job interview at Oof
✨Showcase Your Technical Expertise
Be prepared to discuss your experience with technical security controls and how you've applied them in real environments. Highlight specific examples of security tests you've conducted and the outcomes, as this will demonstrate your hands-on knowledge.
✨Communicate Clearly and Professionally
Since communication is key in this role, practice articulating complex security concepts in a way that stakeholders at all levels can understand. Use clear examples to illustrate your points and ensure you convey your passion for security testing.
✨Familiarise Yourself with Relevant Tools
Make sure you're well-versed in the vulnerability management tools and techniques mentioned in the job description. Being able to discuss your proficiency with these tools will show that you're ready to hit the ground running.
✨Prepare for Scenario-Based Questions
Expect to face scenario-based questions that assess your problem-solving skills in security incidents. Think through potential threats and vulnerabilities you might encounter and how you would address them, demonstrating your analytical thinking and expertise.
