Contract Cyber Security Engineer

Summary: The role of Cyber Security Engineer involves supporting a Public Sector client within their Application Security Team for an initial 5-month contract. The engineer will be responsible for conducting penetration testing, evaluating security tooling, collaborating with developers, and providing expertise in cloud security. SC Clearance is a mandatory requirement for this position.

Key Responsibilities:

• Perform penetration testing and vulnerability assessments of web applications, APIs, and cloud infrastructure.
• Evaluate the automated security tooling into CI/CD pipelines (SAST, DAST, dependency checking, IaC etc), and make necessary recommendations.
• Collaborate with developers to remediate identified vulnerabilities and ensure secure code practices.
• Provide expert input on cloud security (AWS, Azure, or GCP) and DevSecOps tooling.
• Assist in maintaining security assurance across the SDLC in line with set guidelines.
• SC Clearance is an essential requirement for this role, as a minimum you must be willing & eligible to undergo checks.

Key Skills:

• Penetration testing, ethical hacking, or vulnerability assessments.
• Security testing tools (eg, Burp Suite, OWASP ZAP, Nikto, Nmap, Metasploit, etc.).
• DevSecOps principles and tools (eg, Veracode, SonarQube, GitHub Advanced Security, IaC scanning, etc.).
• Secure Cloud Infrastructure, specifically AWS and Azure.
• Scripting and automation using Python and Bash.
• Certifications: OSCP or Crest/TIGER Scheme.
• Strong communication skills and the ability to explain security issues to technical and non-technical stakeholders.

Salary (Rate): undetermined

City: London

Country: UK

Working Arrangements: undetermined

IR35 Status: inside IR35

Seniority Level: undetermined

Industry: IT

Detailed Description From Employer:

WA Consultants is currently recruiting for a Cyber Security Engineer for an initial 5-month contract.

The successful candidate will support a Public Sector client of ours within their Application Security Team and will be responsible for the following:

• Perform penetration testing and vulnerability assessments of web applications, APIs, and cloud infrastructure.
• Evaluate the automated security tooling into CI/CD pipelines (SAST, DAST, dependency checking, IaC etc), and make necessary recommendations.
• Collaborate with developers to remediate identified vulnerabilities and ensure secure code practices.
• Provide expert input on cloud security (AWS, Azure, or GCP) and DevSecOps tooling.
• Assist in maintaining security assurance across the SDLC in line with set guidelines.
• SC Clearance is an essential requirement for this role, as a minimum you must be willing & eligible to undergo checks.

Essential criteria:

• Penetration testing, ethical hacking, or vulnerability assessments.
• Security testing tools (eg, Burp Suite, OWASP ZAP, Nikto, Nmap, Metasploit, etc.).
• DevSecOps principles and tools (eg, Veracode, SonarQube, GitHub Advanced Security, IaC scanning, etc.).
• Secure Cloud Infrastructure, specifically AWS and Azure.
• Scripting and automation using Python and Bash.
• Certifications: OSCP or Crest/TIGER Scheme.
• Strong communication skills and the ability to explain security issues to technical and non-technical stakeholders.

Please note, this role has been deemed inside of IR35. For further information, please contact Alexander Wilson.

WA Consultants is an Employment Business and an Employment Agency as described within The Conduct of Employment Agencies and Employment Businesses Regulations 2003.