Description
Security Analyst Glasgow / Edinburgh (Hybrid)
Outside IR35
Clearance: BPSS required
We are hiring multiple Security Analysts to join a multi-year Quality Assurance transformation programme for a major UK client.
As part of a fast-paced SAFe Agile delivery, this is not a compliance-only role—you will run meaningful resilience tests, validate disaster recovery (DR) and failover readiness, and help prepare for formal Information Assurance (IA) testing and ITHC phases. You’ll contribute directly to reducing platform risk and increasing system integrity.
What you'll do:
Execute security-focused QA tests: failover, backup/restore, DR validation
Support ITHC preparation: test scenarios, evidence generation, documentation
Validate resilience KPIs and maintain live dashboards for risk tracking
Support environment lockdowns, access control testing and risk assessments
Drive traceability of test artefacts and ensure recovery mechanisms are tested and proven
Work closely with NFT, infrastructure and QA governance teams on risk simulations and mitigation planning
What you'll bring:
Experience in QA security and resilience testing across DR, failover and backup
Hands-on experience preparing systems for ITHC and formal security assurance
Ability to simulate risk scenarios and failure modes, not just run scans
Strong knowledge of resilience validation and recovery mechanisms
Ability to collaborate across QA, infrastructure, NFT and governance teams
Excellent documentation of security artefacts and test results
Tech environment:
Must-have:
Test & Reporting: qTest, Jira, Xray, Allure, Confluence
CI/CD & Build: Jenkins, GitLab CI/CD pipelines, Git, Gradle
Security tools:
OWASP ZAP, SonarQube
Burp Suite, SQLMap, Nmap
Snyk, Prometheus
Nice to have:
NeoLoad, JMeter, BlazeMeter
Selenium, Playwright, Serenity BDD, Cucumber, Postman, REST Assured
Outside IR35
Clearance: BPSS required
We are hiring multiple Security Analysts to join a multi-year Quality Assurance transformation programme for a major UK client.
As part of a fast-paced SAFe Agile delivery, this is not a compliance-only role—you will run meaningful resilience tests, validate disaster recovery (DR) and failover readiness, and help prepare for formal Information Assurance (IA) testing and ITHC phases. You’ll contribute directly to reducing platform risk and increasing system integrity.
What you'll do:
Execute security-focused QA tests: failover, backup/restore, DR validation
Support ITHC preparation: test scenarios, evidence generation, documentation
Validate resilience KPIs and maintain live dashboards for risk tracking
Support environment lockdowns, access control testing and risk assessments
Drive traceability of test artefacts and ensure recovery mechanisms are tested and proven
Work closely with NFT, infrastructure and QA governance teams on risk simulations and mitigation planning
What you'll bring:
Experience in QA security and resilience testing across DR, failover and backup
Hands-on experience preparing systems for ITHC and formal security assurance
Ability to simulate risk scenarios and failure modes, not just run scans
Strong knowledge of resilience validation and recovery mechanisms
Ability to collaborate across QA, infrastructure, NFT and governance teams
Excellent documentation of security artefacts and test results
Tech environment:
Must-have:
Test & Reporting: qTest, Jira, Xray, Allure, Confluence
CI/CD & Build: Jenkins, GitLab CI/CD pipelines, Git, Gradle
Security tools:
OWASP ZAP, SonarQube
Burp Suite, SQLMap, Nmap
Snyk, Prometheus
Nice to have:
NeoLoad, JMeter, BlazeMeter
Selenium, Playwright, Serenity BDD, Cucumber, Postman, REST Assured