Lead Test Engineer (Security)

 

Remote working (anywhere in the UK)

 

This is an exciting opportunity in the Digital Services team! You'll be joining our team at a time of transformation, and you will be part of shaping the future of our department. We use Agile Methodologies and promote a culture of continuous improvement.  

We are looking for an enthusiastic Lead Test Engineer with great technical skills able to coach and mentor other testers and lead the non-functional testing workstreams such as Security and Performance testing. 

You will be part of our lead tester group, working collaboratively with your team and overseeing the testing journey with management responsibilities. 

This provides an opportunity to make the test community thrive by exploring new and emerging tools and approaches and working out how you can help the organisation deliver better services.  

This is a rewarding role within the Test Team and provides an opportunity to contribute to the success of existing and future services provided by Companies House. 

We are currently using a hybrid approach to the way we work. Remote contracts will only be offered to successful candidates who are not within a commutable distance to our Cardiff, Belfast or Edinburgh offices. If you are located in a reasonable distance to one our offices, you will receive a hybrid contract aligned to one of our offices. 

Our approach to hybrid working provides opportunities for you to be adaptable in the way you work so that you can achieve a healthy balance between your work and home life. We currently expect people to attend their base office a minimum of one day a week but the exact degree of choice you have will depend on your role and your day-to-day work activities and should be agreed through discussions with your line manager.

Job description

Responsibilities   

As a Lead Test Engineer focusing on security and performance you will:   

• Take ownership security testing within the software development lifecycle. This will involve running vulnerability scans using tools such as Burp, coordinating with relevant teams, testing security related issues. 
• Take ownership of performance testing using our in-house framework based on Jmeter, InfluxDB and Grafana. 
• As a manager, you will provide advice, coaching and mentoring to testers on non-functional testing subjects such as security, performance and accessibility testing.   
• Attend meetings and provide stakeholders with updates. 
• Design and execute manual and automated non-functional test cases using standard testing techniques.
• Design and implement pipeline solutions for any non-functional testing services. 

Person specification  

We are looking for the following experience, which will be assessed at sift and at interview. Please use these essential, desirable and experience when writing your personal statement.  

Essential  

• A relevant certification to ISTQB or relevant functional and non-functional technical testing experience is essential.
• A relevant certification in ethical hacking or penetration testing, such as such as 7Safe CSTA or GIAC Penetration testing, or evidence that you are working towards this or have proven working experience is essential.
• Proven experience writing and executing performance testing scripts. 

Desirable 

• Certified Agile Tester or equivalent Agile working experience.
• Experience of Non-Functional testing practices including Security, Performance and Accessibility Testing.
• Has a working knowledge of a minimum of 5 of the following: 

1. Jenkins / Concourse
2. JMeter
3. API
4. OAuth2
5. SQL
6. XML
7. AWS 
8. Unix based systems 
9. MongoDB 
10. InfluxDB
11. Oracle
12. Version control
13. Postman/SOAP UI
14. Karate/Rest
15. Burp Scanner
16. OWASP ZAP
17. Accessibility tools such as Wave & Screen readers 

Experience to be assessed at sift and interview 

We are looking for someone with experience in:  

• Penetration testing or ethical hacking 
• Performance or load testing 

Qualifications

A relevant certification to ISTQB or relevant functional and non-functional technical testing experience is essential.

A relevant certification in ethical hacking or penetration testing, such as such as 7Safe CSTA or GIAC Penetration testing, or evidence that you are working towards this or have proven working experience is essential.

 

We'll assess you against these behaviours during the selection process:

• Making Effective Decisions
• Managing a Quality Service
• Working Together
• Seeing the Big Picture

Technical skills

We'll assess you against these technical skills during the selection process:

• Penetration testing or ethical hacking
• Performance or load testing

Benefits

Alongside your salary of £38,000, Companies House contributes £10,260 towards you being a member of the Civil Service Defined Benefit Pension scheme.

Join us at Companies House and experience the difference of working within a culture that values you, not only as an employee, but as an integral part of our Companies House team. 

We believe that our success is driven by the well-being and satisfaction of our team members at all levels of the organisation. At Companies House we're committed to providing a comprehensive benefits package that goes beyond the ordinary, ensuring your career journey with us is not only fulfilling, but also rewarding. We pride ourselves on offering a quality work-life balance with our employee wellbeing being central to our working practices. 

We celebrate diversity... 

As an equal opportunity employer, we celebrate diversity, being committed to ensuring we're representative of the citizens we serve and creating an inclusive environment. Everyone in Companies House brings something different, and so will you. To fulfil our commitment to recruiting and attracting diverse talent we welcome applications from underrepresented groups. We also welcome applications from Welsh speakers. 

We are proud to be a disability confident leader.? Our recruitment process is fully inclusive and we can make adjustments as needed through our process. These could include having an interview buddy, extra time at interviews/assessments and receiving interview questions in advance, to name a few. 

Where will you be working? 

You will be aligned to our Cardiff Office, where we are currently using a hybrid approach to the way we work. Our approach to hybrid working provides opportunities for you to be adaptable in the way you work so that you can achieve a healthy balance between your work and home life. The degree of choice you have will depend on business need, your role and your day-to-day work activities and will be discussed at offer stage.

We're currently exploring options for new office space in the Cardiff and surrounding areas as we're due to be moving from our current building - join us on this journey where we can support you in your career and professional growth. Details are still being confirmed about our new building and we're keeping all our colleagues updated.