At a Glance
- Tasks: Take ownership of security testing in a complex digital programme using Checkmarx ZAP.
- Company: Join WRK digital, a forward-thinking consultancy focused on innovative tech solutions.
- Benefits: Enjoy competitive pay and the flexibility of contract work outside IR35.
- Other info: Opportunity for autonomy and career growth while collaborating with talented teams.
- Why this job: Make a real impact by shaping security testing practices in a dynamic environment.
- Qualifications: Hands-on experience with DAST solutions and Azure DevOps integration required.
The predicted salary is between 50000 - 60000 £ per year.
WRK digital are shortlisting for an experienced Contract Security Test Engineer on an Outside IR35 consultancy basis to take end‑to‑end ownership of the security testing capability within a complex digital programme built around Power Platform & Dynamics 365. This role is outcomes‑driven and focused on delivering a scalable, robust DAST implementation using Checkmarx ZAP, working independently while collaborating closely with engineering and testing teams.
You will be responsible for the design, build, and evolution of ZAP‑based DAST pipelines, ensuring security testing is embedded seamlessly across delivery. Operating with a high degree of autonomy, you will define best practice, own tooling decisions, and ensure knowledge is transferred to internal teams to support long‑term sustainability.
Key Responsibilities- Design, build, scale, and maintain ZAP‑based DAST pipelines across all API and UI testing
- Support assisted channels, including platforms built on Power Platform and D365
- Create and maintain Azure DevOps (ADO) pipeline scripts, including YAML
- Partner with multiple build squads to enable adoption, configuration, and consistent security testing standards
- Provide hands‑on troubleshooting and technical guidance during the Build phase
- Ensure security testing is embedded as delivery progresses into early and full end‑to‑end (E2E) testing
- Act as the single point of ownership for tooling stability, upgrades, and continuous improvement
- Transfer knowledge and capability to squad testers and NFT testers, reducing long‑term dependency
- Proven, hands‑on experience implementing DAST solutions, ideally using Checkmarx ZAP
- Strong experience integrating security testing into CI/CD pipelines, particularly Azure DevOps
This is a clearly defined, deliverables‑led engagement offering genuine ownership of a critical security capability, with the freedom to shape how security testing is embedded at scale.
Contract Software Test Engineer - Web Security in Leeds employer: WRK digital
At WRK digital, we pride ourselves on fostering a dynamic and collaborative work culture that empowers our employees to take ownership of their projects. As a Contract Software Test Engineer, you will enjoy the flexibility of working outside IR35 while contributing to innovative digital programmes, with ample opportunities for professional growth and skill enhancement in a supportive environment. Our commitment to excellence and continuous improvement ensures that you will be part of a team that values your expertise and encourages knowledge sharing for long-term success.
StudySmarter Expert Advice🤫
We think this is how you could land Contract Software Test Engineer - Web Security in Leeds
✨Tip Number 1
Network like a pro! Reach out to your connections in the industry, especially those who work with security testing or have experience with DAST solutions. A friendly chat can lead to insider info about job openings that aren't even advertised yet.
✨Tip Number 2
Show off your skills! Create a portfolio or a GitHub repository showcasing your experience with Checkmarx ZAP and Azure DevOps. This gives potential employers a tangible look at what you can do and sets you apart from the crowd.
✨Tip Number 3
Prepare for interviews by brushing up on your knowledge of DAST pipelines and security testing best practices. We recommend doing mock interviews with friends or using online platforms to get comfortable discussing your expertise.
✨Tip Number 4
Don't forget to apply through our website! We make it easy for you to find roles that match your skills and interests. Plus, applying directly can sometimes give you an edge over other candidates.
We think you need these skills to ace Contract Software Test Engineer - Web Security in Leeds
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the role of Contract Software Test Engineer. Highlight your experience with DAST solutions and any specific tools like Checkmarx ZAP. We want to see how your skills match what we're looking for!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're passionate about security testing and how you can contribute to our team. Keep it concise but impactful, showing us your personality and enthusiasm.
Showcase Relevant Projects:If you've worked on projects involving Azure DevOps or security testing, make sure to mention them. We love seeing real-world examples of your work, so don’t hold back on the details that demonstrate your expertise!
Apply Through Our Website:We encourage you to apply through our website for a smoother process. It helps us keep track of applications and ensures you get all the updates directly from us. Plus, it shows you're keen on joining our team!
How to prepare for a job interview at WRK digital
✨Know Your Tools Inside Out
Make sure you’re well-versed in Checkmarx ZAP and any other tools mentioned in the job description. Be ready to discuss your hands-on experience with DAST solutions and how you've integrated them into CI/CD pipelines, especially Azure DevOps.
✨Showcase Your Problem-Solving Skills
Prepare to share specific examples of troubleshooting and providing technical guidance during the build phase. Highlight situations where you’ve had to think on your feet and how you resolved issues effectively.
✨Understand the Bigger Picture
Familiarise yourself with the Power Platform and Dynamics 365. Being able to discuss how security testing fits into these platforms will show that you understand the context of your role and can contribute to the team’s goals.
✨Emphasise Collaboration
Since this role involves working closely with engineering and testing teams, be prepared to talk about your experience in collaborative environments. Share examples of how you’ve partnered with others to ensure consistent security testing standards.
