Sub banner
Back to Jobs

Lead Security Engineer

Job description.

Lead Security Engineer
A senior technical role leading security engineering and testing within a cyber security team that has doubled in size over the past six months and is continuing to grow.

The Opportunity
This is a genuinely exciting moment to join. The team has gone from 6 to 16 people in six months, with plans to reach 30 to 35 within the year. It is led by a CISO who is quality-focused and culturally driven, building a commercially credible, specialist-led security practice rather than hiring for headcount.

The Role
You will lead security engineering and testing efforts, setting direction on methodology, tooling, and engagement scoping. Working alongside agile delivery teams, you will embed good security practice throughout the software development lifecycle, advise clients directly, and help grow the skills of more junior engineers.

Day-to-day

  • Lead security testing engagements, including penetration tests on web applications, networks, and infrastructure.
  • Define and evolve our security testing methodology, outputs, and tool selection.
  • Conduct source code reviews and embed security into CI/CD pipelines.
  • Coach and develop a small team, supporting performance and career growth.
  • Advise customers and colleagues on security best practice, translating complexity for varied audiences.

Experience

  • Expertise securing web applications and cloud platforms (AWS or Azure).
  • Hands-on experience with manual and automated security testing tools.
  • Strong knowledge of security standards such as NCSC, NIST, OWASP ASVS, GDPR, and PCI.
  • Familiarity with common attack vectors including OWASP Top 10, XSS, SQL injection, and MITM.
  • Experience in Continuous Security, CI, and CD practices.
  • Proven ability to mentor and develop team members.
  • Comfortable advising clients directly and communicating clearly with non-technical audiences.

Desirable

  • Penetration testing qualification such as OSCP, CREST, or TIGER.
  • Experience with tools including Burp Suite, OWASP-ZAP, Nmap, Nessus, or Metasploit.
  • Background working in agile delivery or consultancy environments.
  • Active involvement in the security community.

Package

  • Share options
  • Hybrid/Remote working - Belfast
  • 35 days annual leave inc stat
  • Enhanced pension scheme
  • Private health

Please apply now if you are meeting the above criteria or contact Andrew Harrison directly.

Submit CV for this Job.

Apply for this job now
Posted
Job Details:
Belfast, County Antrim£70000 - £90000 per annum
Job reference:
AH - 135
ANDREW HARRISON

ANDREW HARRISON

Principal Technology Consultant at Ocho

Andrew brings a wealth of experience in IT Infrastructure, alongside a comprehensive understanding of Cyber, Cloud, Support, and Networking solutions. He’s not just leading the IT Infrastructure desk. He’s set to make impactful contributions across various tech disciplines at Ocho.

Read More