22 of 22 OWASP Jobs in the South East

architectures . Proven experience with risk assessment methodologies and maintaining enterprise risk registers . Working knowledge of risk assessment methodologies (e.g. ISO 31000, FAIR, OWASP risk rating). Strong understanding of Gov Assure, CAF, ISO 27001, Cyber Essentials, and NIST frameworks. Experience conducting or supporting security audits and implementing remediation ...

cloud architectures. Proven experience with risk assessment methodologies and maintaining enterprise risk registers. Working knowledge of risk assessment methodologies (e.g. ISO 31000, FAIR, OWASP risk rating). Strong understanding of Gov Assure, CAF, ISO 27001, Cyber Essentials, and NIST frameworks. Experience conducting or supporting security audits and implementing remediation plans. ...

Operations role within a large or complex enterprise environment. Strong understanding of cybersecurity standards and frameworks, including ISO 27001, NIST 800 53, CIS Controls, OWASP, and SOC1/2. Guidant, Carbon60, Lorien & SRG - The Impellam Group Portfolio are acting as an Employment Business in relation to this vacancy. ...

protocols (e.g. A2A) Familiarity with MCPs for tool and context integration in agentic systems Familiarity with secure-by-design development principles (ISO 27001, NIST, OWASP) Experience in defence, national security, or similarly regulated environments Contributions to open-source AI/ML projects Soft Skills Delivery-focused - you ship working systems ...

Essentials), and drive secure-by-design practices. Essential Skills: Designing & implementing secure cloud/infrastructure architectures Risk assessment & maintaining risk registers (ISO 31000, FAIR, OWASP) Knowledge of Gov Assure, CAF, ISO 27001, Cyber Essentials, NIST Conducting/supporting security audits & remediation Platform security (Entra ID, M365 E5, Azure IaaS/ ...

assurance/risk/governance roles Proven background in secure cloud or infrastructure design (Azure/M365) Experience with risk frameworks (ISO 31000, NIST, OWASP etc.) Knowledge of GovAssure, CAF, ISO27001, Cyber Essentials Entra ID/Azure/M365 SIEM/EDR/vulnerability management tools Access control models (RBAC ...

assurance/risk/governance roles Proven background in secure cloud or infrastructure design (Azure/M365) Experience with risk frameworks (ISO 31000, NIST, OWASP etc.) Knowledge of GovAssure, CAF, ISO27001, Cyber Essentials Entra ID/Azure/M365 SIEM/EDR/vulnerability management tools Access control models (RBAC ...

frameworks and best practices. Experience designing solutions across cloud platforms such as Microsoft Azure or AWS. Knowledge of secure architecture and development practices (e.g. OWASP, NCSC principles). Experience with DevOps, CI/CD pipelines and modern software delivery practices. Strong knowledge of microservices, APIs and web services (REST, SOAP ...

doing Lead backend architecture – Define and evolve scalable, secure, high-performance backend systems Set engineering standards – Champion best practices, secure coding (OWASP), and high-quality delivery Hands-on technical contribution – Support critical backend work and review complex code Guide teams & mentor engineers – Facilitate design discussions, code reviews, and technical decision ...

framework, and security maturity models such as OpenSAMM and C2M2. Strong working knowledge of recognised security frameworks and standards, including NIST Cybersecurity Framework, OWASP, SANS Top 25, and regulatory requirements such as GDPR and PCI DSS. Demonstrated technical expertise across modern technologies and architectures, including virtualisation, cloud computing, and serverless ...

execute the implementation of A/B testing experiences across Sagas sites, including but not limited to coding using HTML and Javascript. CyberSecurity OWASP Top 10 The Ideal Candidate You will have already worked as an Application Developer with proven experience in React and .NET. Additional experience with c#, HTML ...

adversarial TTPs • Proven ability to identify, validate, and clearly articulate vulnerabilities and risk • Experience producing high-quality reports with clear remediation guidance • Knowledge of OWASP and application security principles • Experience with automated, dynamic, and static security testing tools • Ability to perform threat modelling and attack surface analysis • Experience working with ...

lead the implementation of security controls across the Azure estate, including: Designing and deploying perimeter protection using Azure Front Door with WAF policies (OWASP Top 10, bot protection). Analysing traffic, tuning WAF rules, and working with stakeholders to reduce false positives. Defining and enforcing governance through Azure Policy, particularly ...

architecture — including supporting the transition to microservices on AWS. Security is taken seriously here, and you’ll be expected to apply and uphold OWASP standards as a matter of course. We want someone with strong, proven hands-on experience at senior level — comfortable with the full stack, confident ...

years of hands-on penetration testing experience across network, web, cloud, internal, red team, or purple team environments Excellent knowledge of: MITRE ATT&CK OWASP Threat modelling Attack surface analysis Experience with automated, dynamic, and static security testing tools Knowledge of regulatory frameworks including GDPR, PCI-DSS, and related compliance ...

experience delivering web application, API, and/or infrastructure penetration tests in a professional consultancy setting. Strong understanding of common vulnerability classes (e.g. OWASP Top 10), exploitation techniques, and remediation guidance. Confident client-facing communication skills, with the ability to explain technical findings to both technical and non-technical audiences. ...

Excellence for secure engineering, driving consistency and best practice Develop and embed SDLC frameworks, policies, and guardrails aligned to leading standards (NIST SSDF, OWASP, ISO) Create and scale a pan-European virtual capability, influencing without direct authority Partner with senior stakeholders across engineering, product, legal, and commercial teams to embed … complex environment. You’ll bring: Proven experience leading secure development or DevSecOps transformation at scale Deep knowledge of SDLC security frameworks (e.g. NIST SSDF, OWASP SAMM/ASVS, ISO 27034) Strong understanding of modern engineering practices (Agile, CI/CD, cloud, automation) Expertise in application security, threat modelling, and secure ...

Centralised Eval Platform: Operate a firm-wide service to measure success rates, uncertainty, hallucination, and bias across all non-deterministic systems. Secure Architecture: Map OWASP LLM Top 10 and agentic threats to technical controls; manage AWS Bedrock Guardrails and Knowledge Bases. AI Supply Chain: Own the AI-BOM , ensuring supply … Depth: Strong grasp of FMs, RAG, tool-use, and the failure modes of agentic workflows. Security & Compliance: Deep knowledge of NIST AI RMF, OWASP LLM Top 10, and UK/EU financial regulations (FCA/DORA). Testing Automation: Proven ability to build measurement frameworks for drift, memorization, and adversarial ...

Agile, WCAG 2.1 AA compliance, MVC, ASP.NET, C#.NET, .Net Core, Web API, Entity Framework, HTML, CSS, JavaScript, Angular, Umbraco, UI/UX, Responsive design, OWASP security, Azure cloud hosting, SQL server, CI/CD pipelines Remote with occasional travel 3 months initial contract – likely to extend … requirements into application specifications. Strong understanding of UI, UX, and responsive design. Experience in delivering accessible applications. Knowledge of secure application development practices addressing OWASP security concerns. Agile backlog management and experience of code quality reviews. Prototyping new techniques and solutions. Excellent engagement, collaboration, and communication skills. Experience with Azure ...

Agile, WCAG 2.1 AA compliance, MVC, ASP.NET, C#.NET, .Net Core, Web API, Entity Framework, HTML, CSS, JavaScript, Angular, Umbraco, UI/UX, Responsive design, OWASP security, Azure cloud hosting, SQL server, CI/CD pipelines Remote with occasional travel 3 months initial contract – likely to extend … requirements into application specifications. Strong understanding of UI, UX, and responsive design. Experience in delivering accessible applications. Knowledge of secure application development practices addressing OWASP security concerns. Agile backlog management and experience of code quality reviews. Prototyping new techniques and solutions. Excellent engagement, collaboration, and communication skills. Experience with Azure ...

version control . Collaborate closely with Product Managers and business users in an Agile SCRUM environment. Ensure quality assurance and compliance with OWASP Top 10 and security standards. Support Provide 2nd and 3rd line support across Dynamics CRM applications. Manage incidents, service requests, and changes following ITIL processes. Monitor …/CD , DevOps , and GIT version control. Proficient in SQL , SSIS , and Azure Data Factory (ADF) . Working knowledge of Agile/SCRUM and OWASP principles. Excellent stakeholder management, communication, and problem-solving skills. Desirable Exposure to Copilot and AI-driven tools . ITIL certification or experience working in ITIL ...

Expert, you will lead the organisation's Generative AI security strategy. Key responsibilities include: Advanced Threat Modelling: Leading structured sessions using STRIDE and OWASP LLM/Agentic frameworks to map out attack trees for complex, non-deterministic systems. Adversarial Engineering: Translating emerging threats-such as Prompt Injection, Sleeper Agents … deep knowledge of FCA compliance and DORA. Solid grasp of Foundation Models (FMs), RAG, and the risks of non-deterministic agentic behavior. Mastery of OWASP LLM Top 10 and the NIST AI Risk Management Framework. Hands-on experience securing AWS Bedrock and governing the full AI model lifecycle. Ability ...