Lead Test Engineer

Lead Test Engineer (Security)
Location: Remote (UK-based) | Contract: Permanent
Salary: £41,571 – £56,784

We’re delighted to be supporting a UK government organisation as they continue to transform their digital services. They are now seeking a Lead Test Engineer (Security) to take ownership of the security testing strategy across their platforms.

This is an opportunity to lead, mentor, and influence security testing practices in an agile, forward-thinking digital department with a strong focus on public value, collaboration, and continuous improvement.

Key responsibilities

• Lead the organisation’s approach to non-functional security testing across the full software development lifecycle.
  
  
• Manage and support a team of testers, providing coaching, mentoring, and oversight of workstreams.
  
  
• Run and oversee vulnerability assessments and penetration tests using tools such as Burp Suite.
  
  
• Design, implement, and maintain automated security testing pipelines and reporting mechanisms.
  
  
• Act as a subject matter expert and advocate for secure development and testing practices.
  
  

What we’re looking for

• Proven experience in security testing, with a strong focus on non-functional testing approaches.
  
  
• Hands-on experience leading, coaching, or managing technical teams.
  
  
• Certification in ethical hacking or penetration testing (e.g. 7Safe CSTA, GIAC), or evidence of working towards one.
  
  
• Experience using at least 5 of the following:
  
  
  • Burp Suite, OWASP ZAP, Postman or SOAP UI, OAuth2/OpenID
    
    
  • Jenkins/Concourse, Unix/Linux, AWS
    
    
  • SQL/MongoDB/Oracle, Git, Karate DSL or Rest Assured
    
    
  • SAST/DAST tools, IaC scanning, secrets detection tools
    
    
  • Threat modelling (e.g. STRIDE, PASTA), OWASP Top 10 testing
    
    

Salary & benefits

• Base salary: £41,571 – £45,784
  
  
• DDaT allowance: £4,350 – £11,000 (depending on skills/experience)
  
  
• Civil Service Pension: Employer contribution of 28.97%
  
  
• Leave: 30 days annual leave + 8 bank holidays + 1 privilege day
  
  
• Flexible working: No core hours, hybrid/remote working
  
  
• Part-time options: Minimum 30 hours per week over 4 or 5 days
  
  

About the organisation This is a high-profile government organisation committed to delivering secure, user-friendly digital services. Their culture promotes inclusion, learning, and wellbeing, with flexible working at its core. As a Disability Confident Leader and an equal opportunity employer, they welcome applications from all backgrounds.