Lead Security Engineer

Lead Security Engineer

Hybrid/Remote (N.Ireland wide) | Ability to obtain SC Clearance

Are you a senior security engineer ready to lead, shape, and grow a high-performing penetration testing function? We are looking for a technical leader who can set direction on security methodology, embed best practice across agile delivery teams, and develop the next generation of security talent.

Role

This is a broad security engineering leadership role, not a pure penetration testing position. You will set direction on security methodology and tooling, work shoulder to shoulder with agile delivery teams to build security in from the start, and develop a small team of security engineers. Client-facing consultancy and the ability to communicate security risk clearly to varied audiences are just as important as technical depth.

Day-to-day

  • Leading penetration tests across web applications, networks, and infrastructure
  • Embedding security into CI/CD pipelines and conducting source code reviews
  • Defining and evolving security testing methodology, tooling, and engagement scoping
  • Advising customers and delivery teams on security best practice throughout the development lifecycle
  • Coaching and developing a small team, supporting their performance and careers
  • Translating security complexity clearly for both technical and non-technical audiences
  • Staying current on emerging threats and attack types

Experience

  • Expertise securing web applications and cloud platforms (AWS or Azure)
  • Hands-on experience with manual and automated security testing, including penetration testing
  • Strong knowledge of NCSC, NIST, OWASP ASVS, GDPR, and PCI standards
  • Solid understanding of common attack vectors including OWASP Top 10, XSS, SQL injection, and MITM
  • Experience embedding Continuous Security into CI/CD pipelines and agile delivery
  • Proven ability to mentor, coach, and develop team members
  • Scripting or programming skills across Windows, Linux, or macOS

Nice to Have

  • OSCP, CREST, or TIGER qualification
  • Experience with Burp Suite, OWASP-ZAP, Nmap, Nessus, or Metasploit
  • Experience working with external pen test providers and translating findings into actionable tasks
  • Active involvement in the security community, conference speaking, or knowledge sharing

Package

  • Up to £85k salary
  • Share options
  • Hybrid/remote working across UK
  • 35 days annual leave including statutory
  • Enhanced pension scheme
  • Private health cover

⚠️ Applicants must be eligible for UK Security Check (SC) clearance. This role requires SC clearance or the ability to obtain it prior to starting.

Apply Now
Apply Now

Job Details

Company
Ocho
Location
Northern Ireland, United Kingdom
Hybrid / Remote Options
Posted