Contract Cyber Security Engineer

WA Consultants is currently recruiting for a Cyber Security Engineer for an initial 5-month contract.

The successful candidate will support a Public Sector client of ours within their Application Security Team and will be responsible for the following:

• Perform penetration testing and vulnerability assessments of web applications, APIs, and cloud infrastructure.
  
• Evaluate the automated security tooling into CI/CD pipelines (SAST, DAST, dependency checking, IaC etc), and make necessary recommendations.
  
• Collaborate with developers to remediate identified vulnerabilities and ensure secure code practices.
  
• Provide expert input on cloud security (AWS, Azure, or GCP) and DevSecOps tooling.
  
• Assist in maintaining security assurance across the SDLC in line with set guidelines.
  
• SC Clearance is an essential requirement for this role, as a minimum you must be willing & eligible to undergo checks.

Essential criteria:

• Penetration testing, ethical hacking, or vulnerability assessments.
  
• Security testing tools (e.g., Burp Suite, OWASP ZAP, Nikto, Nmap, Metasploit, etc.).
  
• DevSecOps principles and tools (e.g., Veracode, SonarQube, GitHub Advanced Security, IaC scanning, etc.).
  
• Secure Cloud Infrastructure, specifically AWS and Azure.
  
• Scripting and automation using Python and Bash.
  
• Certifications: OSCP or CREST / TIGER Scheme.
  
• Strong communication skills and the ability to explain security issues to technical and non-technical stakeholders.

Please note, this role has been deemed inside of IR35. For further information, please contact Alexander Wilson.

WA Consultants is an Employment Business and an Employment Agency as described within The Conduct of Employment Agencies and Employment Businesses Regulations 2003.