1 to 25 of 28 OWASP Jobs in the South East

principles in customer-facing SaaS platforms. Deep understanding of application security and secure SDLC across modern stacks (JavaScript/React, C#/.NET, Azure services, containers). Knowledge of OWASP Top 10 and mitigation strategies. Experience with modern authentication and authorization protocols (OpenID Connect, OAuth2.0). Hands-on experience with SAST/DAST tools and integration into SDLC. Proficiency in More ❯

principles in customer-facing SaaS platforms. Deep understanding of application security and secure SDLC across modern stacks (JavaScript/React, C#/.NET, Azure services, containers). Knowledge of OWASP Top 10 and mitigation strategies. Experience with modern authentication and authorization protocols (OpenID Connect, OAuth2.0). Hands-on experience with SAST/DAST tools and integration into SDLC. Proficiency in More ❯

and Azure DevOps (CI/CD) Familiarity with scripting languages like PowerShell, YAML, JSON Hands-on with application security tools and DevSecOps processes Understanding of frameworks and standards like OWASP, NIST SSDF, ISO27001, NCSC Experience with threat modelling, risk assessments, and secure design reviews Confident owning security strategy and tooling across complex product landscapes A strong communicator - able to engage More ❯

. Proficient in Git or other version control systems. Desirable Knowledge, Skills and Experience: Certifications in OCI or other cloud platforms (AWS, GCP). Experience with security tools like OWASP ZAP, Burp Suite, etc. Familiarity with Jira, Confluence, or similar tools. Knowledge of compliance frameworks (e.g., GDPR, HIPAA, ISO 27001, ISO 13485). Background in start-up or scale-up More ❯

Provide mentoring, training, and security awareness support to internal teams. Essential Skills & Experience Strong hands-on experience in application and cloud security engineering. Deep understanding of web app vulnerabilities (OWASP Top 10, CWE) and secure coding practices. Proficiency with security testing tools and vulnerability management platforms. Broad knowledge of network and infrastructure security concepts (WAFs, ACLs, VPNs, etc.). Familiarity More ❯

certifications: CISSP, CISM, CISA, or equivalent Higher education sector experience Multi-tenant SaaS architecture security experience DevSecOps and CI/CD security integration knowledge Security frameworks: NIST, CIS Controls, OWASP Multi-jurisdictional data protection knowledge Enterprise sales cycle support experience Key Attributes: Strategic thinker who can balance security with business needs Pragmatic approach to security implementation Detail-oriented with strong More ❯

certifications: CISSP, CISM, CISA, or equivalent Higher education sector experience Multi-tenant SaaS architecture security experience DevSecOps and CI/CD security integration knowledge Security frameworks: NIST, CIS Controls, OWASP Multi-jurisdictional data protection knowledge Enterprise sales cycle support experience Key Attributes: Strategic thinker who can balance security with business needs Pragmatic approach to security implementation Detail-oriented with strong More ❯

or supporting the higher education sector. Strong understanding of multi-tenant SaaS security. Knowledge of DevSecOps and integrating security in CI/CD pipelines. Familiarity with NIST, CIS Controls, OWASP, and other security frameworks. Awareness of global data protection and multi-jurisdictional privacy requirements. Experience supporting enterprise sales cycles with security expertise and assurance. Benefits: 25 days' holiday plus bank More ❯

processes and code quality. Governance and Compliance Contribute to and follow coding standards and security policies, maintaining and supporting compliance with security standards/guidelines such as PCI v4, OWASP etc. Ensure Senior and Junior Developers are well trained in application security practices and knowledge is kept up to date. Strategy Contribute to long-term technical planning, identify areas for More ❯

anti-virus software, authentication systems, log management, content filtering, etc. Ability to discover and patch SQLi, XSS, CSRF, SSRF, authentication and authorization flaws, and other web-based security vulnerabilities (OWASP Top 10 and beyond). Experience with cloud platforms such as AWS, GCP, and setting up environments between them. Thorough understanding of the latest security principles, techniques, and protocols. Excellent More ❯

implementing secure infrastructure or cloud architectures. o Proven experience with risk assessment methodologies and maintaining enterprise risk registers. o Working knowledge of risk assessment methodologies (e.g. ISO 31000, FAIR, OWASP risk rating). o Strong understanding of Gov Assure, CAF, ISO 27001, Cyber Essentials, and NIST frameworks. o Experience conducting or supporting security audits and implementing remediation plans. o Proficiency More ❯

internals, Active Directory, and enterprise network architecture Experience with vulnerability research, exploit development, and threat emulation Strong knowledge of security frameworks such as MITRE ATT&CK, NIST-CSF, and OWASP Strong ability to analyse and distil complex issues and present succinct updates to management and associated committees. The ability to create clear documentation relating to Operational Processes and Procedures. Personal More ❯

processes. Key Requirements: Proven experience designing and implementing secure cloud solutions. Strong understanding of application and infrastructure architecture. Background in network and web application security (OSI, TCP/IP, OWASP, PKI, TLS). Knowledge of governance, risk, and compliance practices. Relevant certifications (OSCP, CREST, TIGER, etc.) are beneficial. Benefits Include: Up to £120,000 base salary + performance bonus Healthcare More ❯

processes. Key Requirements: Proven experience designing and implementing secure cloud solutions. Strong understanding of application and infrastructure architecture. Background in network and web application security (OSI, TCP/IP, OWASP, PKI, TLS). Knowledge of governance, risk, and compliance practices. Relevant certifications (OSCP, CREST, TIGER, etc.) are beneficial. Benefits Include: Up to £120,000 base salary + performance bonus Healthcare More ❯

improvement to development processes and code quality. Governance and Compliance Follow coding standards and security policies, maintaining and supporting compliance with security standards/guidelines such as PCI v4, OWASP etc. Keep training and knowledge on application security practices up to date. Strategy Support long-term technical planning, identify areas for improvement in existing systems and processes, and provide recommendations More ❯

Army or Defence background , ideally with knowledge of command, control, and intelligence systems . Deep understanding of architecture frameworks, design standards and methodologies. Experience with secure software development lifecycles , OWASP , GDPR , and NCSC Cloud Security Principles . Demonstrated ability to design and deliver secure, integrated solutions in sensitive or classified environments. Strong stakeholder engagement and communication skills, with the ability More ❯

App Gateway, Load Balancers) Experience with Next-Gen Firewalls (Palo Alto, Fortinet, Check Point, Cisco, etc.) Strong background in network security, traffic flows, segmentation, and application security Understanding of OWASP, threat mitigation, and secure configuration principles Experience in incident response, troubleshooting, and performance tuning Excellent communication and documentation skills Click apply to be considered. More ❯

across business, data, and technology domains. Strong knowledge of TOGAF or similar frameworks (Zachman, MODAF). Experience working in secure environments and applying best practice for solution security (e.g., OWASP, NCSC cloud security principles). Familiarity with Secure Software Development Lifecycle processes. Ability to work with multi-disciplinary teams and influence senior stakeholders. Excellent communication and stakeholder engagement skills. More ❯

WebSockets. Possess general software engineering skills, ideally in C# and Linux toolchains, Bash scripting and PowerShell. • Is familiar with relevant software and infrastructure security compliance frameworks and guidelines, e.g. OWASP, CVE and others. • Demonstrates strong written and verbal communication skills, with a proactive, self-starting mindset and a positive, collaborative approach to working independently and within teams. Additional experience with More ❯

manage scoping, requirements (functional/non-functional), design high-level artefacts, and document architecturally significant decisions. Security & Data Compliance: Strong practical experience applying best practices for solution security (e.g., OWASP, NCSC cloud principles) and handling personal data (e.g., GDPR). Got your attention? If you believe that you have the skills and experience for the Solutions Architect role - then please More ❯

and deploy cross-platform mobile applications (iOS & Android) using frameworks such as React Native or Flutter. Implement secure authentication flows, protect against common vulnerabilities (XSS, CSRF), and adhere to OWASP best practices. Integrate e-commerce tools and APIs (e.g., Klaviyo, Yotpo) for personalised content and loyalty features. Manage complex application state using libraries like Redux or Context. Ensure robust testing More ❯

and deploy cross-platform mobile applications (iOS & Android) using frameworks such as React Native or Flutter. Implement secure authentication flows, protect against common vulnerabilities (XSS, CSRF), and adhere to OWASP best practices. Integrate e-commerce tools and APIs (e.g., Klaviyo, Yotpo) for personalised content and loyalty features. Manage complex application state using libraries like Redux or Context. Ensure robust testing More ❯

Experience developing intelligence-led detection content and operational playbooks would be a bonus. Skills You’ll Need: Advanced understanding of attacker tools, techniques, and procedures. Knowledge of security frameworks: OWASP, NIST, MITRE ATT&CK, Unified Kill Chain. Proficient in risk analysis and information systems best practices. Expertise in intelligence gathering and analysis tools, including OSINT. Strong knowledge of malware analysis More ❯

to ensure all major business, technology, and data decisions are fully aligned with the overarching Enterprise Architecture strategy. Champion and apply best-practice principles for solution and data security (OWASP, NCSC, GDPR) at every stage of the delivery lifecycle. Required Skills: Active SC Security Clearance is a strict necessity, coupled with extensive, hands-on experience in a strong Defence/ More ❯

+ benefits Tech: AWS (EC2, Lambda, RDS, Route53, ELBs, EKS), Terraform, Kubernetes, Docker, CI/CD (Jenkins, GitHub Actions, CodePipeline), Python/Bash, Ansible, Security frameworks (CIS, OWASP), ** Sponsorship and offshore remote are not available for this position** Immersum continue to support one of the leading media businesses in the UK. They own and run a portfolio of household name … some GCP/Azure exposure Infrastructure as Code: Terraform, Ansible Containers & Orchestration: Kubernetes, Docker CI/CD: Jenkins, GitHub Actions, AWS CodePipeline Monitoring: Prometheus, Grafana, ELK, CloudWatch Security: CIS, OWASP frameworks, SAST/DAST tools, dependency scanning Web & Systems: LAMP stack (Varnish, Nginx, Apache), MySQL/Postgres, MongoDB Networking & Security: SSL/TLS, TCP/IP, Firewalls, WAFs, DNS, Load More ❯