22 Static Application Security Testing Jobs

Application Security Architect Day Rate: Excellent Day Rate/Above Market Rate (disclosed on application) IR35 Status: Inside IR35 Contract Length: 6 months initial (expected to extend multiple times) Hybrid Model: 3 days per week in office, 2 days remote Office Location: Central London Job Level: Senior … Services (experience essential) About the Client and Role: My client, a highly prestigious, globally renowned name in financial services is seeking a vastly experienced Application Security Architect to join the in-house security team on an initial 6-month (but fully expected to extend many times) basis. … secure coding practices in Java and C++, and DevSecOps practices Experience of automated build and deployment pipelines Experience of operating one or more of SAST, SCA, DAST, IAST, MAST Relevant qualifications or certifications To be considered, please ensure you complete your application on the Computappoint website. Services offered by more »

Job Title: Application Security Architect Day Rate: Excellent Day Rate (Inside IR35) Contract Length: 6 months Initial (expected to extend multiple times) Hybrid Model: 3 days per week in office, 2 days remote Office Location: Central London Industry/Sector: Financial Services About the Role: My client, a … highly prestigious, globally renowned name in financial services is seeking a vastly experienced Application Security Architect to join the in-house security team on an initial 6-month basis. The Application Security Architect will be responsible for translating the group-wide information and cyber security … secure coding practices in Java and C++, and DevSecOps practices Experience of automated build and deployment pipelines Experience of operating one or more of SAST, SCA, DAST, IAST, MAST Relevant qualifications or certifications To be considered, please ensure you complete your application on the Computappoint website. Services offered by more »

DevSecOps Engineer Engineering, Software Development, DevOps, DevSecOps, Security Hybrid working - 1 day London, 4 day's work from home @mecscomms is recruiting for a DevSecOps Engineer, on behalf a major telecommunications service provider. The role is crucial in the operational efficiency & security of software development & deployment processes, through … the following; Multi cloud environments, AWS, Azure, managing Splunk, defining data streams, indices, ingests & dashboards, adding security tooling to CI/CD pipelines, SAST, code security, SonarCloud, AWS Security Hub, Source code, Github, Github Actions, IaC tooling, Automation, AWS CLI, Python, PowerShell, Azure CLI, Docker, Kubernetes etc … environments AWS & Azure etc. * Using & managing Splunk including defining data streams, indices & ingests & dashboards * CI/CD pipelines & adding security tooling to these * SAST & other techniques to improve code security * SonarCloud, AWS Security Hub, etc. to improve security position * Source code systems & branching strategies; Github & Github more »

Senior DevSecOps Engineer | Senior Security Engineer | Cloud Security Engineer | Cyber Security Engineer | Cyber Specialist | SecOps Engineer | Security Operations | Cyber Architect | Cyber Security Architect | AppSec | Application Security | Security Engineering | OT Security | Offensive Security Brand new requirement for a company who operate … in the Renewable/Sustainability sector who are looking to hire a Cyber Security Specialist to join the Cyber-Security function. This company are growing quickly and are genuinely making very positive changes to our world and its future. The role sits within a new, merged team within … Terraform to deploy into the Azure Cloud. You'll also require skills in the likes of SIEM and familiar with the likes of DAST & SAST testing. Finally, strong knowledge of frameworks like ISO & NIST is required. Any experience of the OT/IoT sector would be very welcome too. If more »

consistency of service Makes decisions which impact on the success of assigned projects i.e. results, deadlines and budge Act in accordance with Computacenter Information Security Policies and report any potential or actual Security events or other Security risks to the organisation What youll need Experience of working … in a team of DevOps or DevSecOps practitioners DevOps Tooling experience (Automation, Orchestration, CI/CD, Testing etc.) An understanding of Agile Delivery (Kanban/SCRUM/XP/Lean/SAFe) An understanding of DevOps Management … JIRA, Confluence) Awareness of CI/CD tooling such as Jenkins, GitLab or similar Experience of Hashicorp Terraform Experience of Hashicorp Vault Awareness of SAST Security Testing - GitLab, Checkmarx, Veracode Awareness of DAST Security Testing - GitLab, Veracode Awareness of SCA Security Testing - Checkmarx, GitLab more »

consistency of service Makes decisions which impact on the success of assigned projects i.e. results, deadlines and budge Act in accordance with Computacenter Information Security Policies and report any potential or actual Security events or other Security risks to the organisation What you’ll need Experience of … working in a team of DevOps or DevSecOps practitioners DevOps Tooling experience (Automation, Orchestration, CI/CD, Testing etc.) An understanding of Agile Delivery (Kanban/SCRUM/XP/Lean/SAFe) An understanding of DevOps Management … JIRA, Confluence) Awareness of CI/CD tooling such as Jenkins, GitLab or similar Experience of Hashicorp Terraform Experience of Hashicorp Vault Awareness of SAST Security Testing - GitLab, Checkmarx, Veracode Awareness of DAST Security Testing - GitLab, Veracode Awareness of SCA Security Testing - Checkmarx, GitLab more »

Security Development Analyst Fully Remote - £35-45k Join a successful organisation as a Security Development Analyst. You'll review code, conduct security tests, and collaborate with key stakeholders within Software development. Candidates must be able to review code written in Java & C#. Key responsibilities for this … and addressing security vulnerabilities Working with stakeholders to enhance processes. Core skills & experience for this Security Analyst role: Security review methodologies: SAST, DAST, SBOM, SCA Implementing security tooling in CI/CD pipelines Threat modeling Code review (Java or C#) Familiarity with security frameworks like … more details, call 0161 438 1177 or follow us on Twitter @erinassociates for similar roles. Key words: Security Reviews, ISO Standards, SBOM, SCA, SAST, DAST, Threat Modelling, Security Tooling, Code Review, Manchester, North West, Java C#, Infosec, IT Security analyst Please get in touch on more »

DevSecOps practitioners. Experience of working within Agile project frameworks like Scrum, Kanban or Lean Software Development. DevOps Tooling experience (Automation, Orchestration, CI/CD, Testing etc.) understanding of Agile Delivery (Kanban/SCRUM/XP/Lean/SAFe) understanding of DevOps … Management (JIRA, Confluence) Awareness of CI/CD tooling such as Jenkins, GitLab or similar. Experience of Hashicorp Terraform Experience Hashicorp Vault Awareness of SAST Security Testing - GitLab, Checkmarx, Veracode Awareness of DAST Security Testing - GitLab, Veracode Awareness of SCA Security Testing - Checkmarx, GitLab … Veracode Awareness of IAST Security Testing - Checkmarx Awareness of Vulnerability Management - PA Prisma Awareness of QA Testing - Selenium Certification in Gitlab, Terraform and Vault would be preferable. Skills SC clearance required Experience of working with Cloud Native Applications practitioners. Experience of leading Cloud Native Application Development more »

SecurityDevelopment Analyst Remote - £35-45k Security Reviews, ISO Standards, SBOM, SCA, SAST, DAST, Threat Modelling, Security Tooling, Code Review This highly successful organisation is looking for a Security Development Analyst to join an established software team and work with key stakeholders in development. You will understand … workstreams and work with internal stakeholders to improve processes Core skills & experience for this SecurityDevelopmentAnalyst role includes: Conducting software security reviews using methodologies SAST, DAST, SBOM, SCA etc Implement automated security tooling within a CI/CD pipeline Conduct threat modelling of software Experience reviewing code in ideally … they offer excellent remuneration including an incentive scheme to truly recognise and reward their staff. Key words: Security Reviews, ISO Standards, SBOM, SCA, SAST, DAST, Threat Modelling, Security Tooling, Code Review Please get in touch on 0161 438 1177 if you would like further details. Please follow us more »

Information Security Specialist We are a globally recognized organisation who you can trust, with our nearly 25 year expertise and ever growing teams, we have become a leading name in our industry. Salary up to … + benefits Manchester office, 2 days per week onsite requirement Application Security/Software Development/OWASP/SCA/SAST/DAST/Containerisation Information Security Specialist Overview: As an information security specialist you will be looking at application security and code analysis … me on LinkedIn! I look forward to hearing from you. Key Skills: Application Security/Software Development/OWASP/SCA/SAST/DAST/Containerisation more »

Application Security Engineer Are you passionate about safeguarding cutting-edge financial technology? Do you thrive in a dynamic environment where your expertise shapes cyber security frameworks? Harrington Starr's key client is seeking an Application Security Engineer to bolster our clients cyber security initiatives … member of our clients team, you will collaborate closely with software and cloud engineering teams to embed best practices and fortify our client's security posture. Key Responsibilities: Perform continuous security threat modelling, risk, capability, and/or maturity assessments. Integrate security seamlessly into the development process … workstreams and the cloud engineering team. Required Knowledge & Experience: Hands-on experience in integrating and upholding secure development frameworks within established teams Proficiency with SAST and DAST related security tools like Appcheck, SNYK, GHAS, PRISMA, and NESSUS Experience with Cloud security tools, including those utilized in Microsoft Azure more »

A well-known software development company is looking to grow their London based cyber security team with talented Application Security Engineers. This will be 3 days per week in the office (central London). Hiring at multiple levels, you can expect a salary anywhere from … than 50% last year and use the most cutting edge technology available. If you're someone who is deeply technical and passionate about implementing security into the SDLC then I would love to speak with you. If you have expertise within software development/engineering and champion security … in speaking with you. You will be training developers on writing secure code, perform threat modelling and security testing of applications, run SAST, DAST, SCA and secret scanning tools, manage the bug bounty program and lead incident response for software bugs. Please apply if you're looking to more »

and ensure fulfillment of required QA resource needs. Review and update Programme Test Approach across all Test Phases (FIT/UAT/OAT/Security/Performance) and provide comprehensive reporting. Ensure adherence to GCP Azure Dev Ops pipeline standards. Identify and select appropriate test tools to optimise test … status against workstreams, aiding in risk-based decisions and milestone planning. Verify appropriate test coverage for Unit/Smoke/Integration and Security SAST/SAST tests in build/deploy pipelines, enabling early feedback on code quality. Ensure test failures in the pipeline halt build/deploy functionality more »

new permanent opportunity for an experienced Dev SecOps Engineer with fast growing specialist Fintech business. This is a great opportunity to join a new security focussed squad within their forward-thinking engineering team you will have a unique opportunity to shape what security means to the business. As … a passionate security advocate, you will navigate complex challenges and approach platform design pragmatically. Leverage modern tools, languages, and platforms to contribute to efficient, secure, and scalable delivery of high-performance products. Main responsibilities: Work within a newly formed Security squad to continuously improve security posture within … Mongo Atlas. Exposure to Audits/Compliance/Security frameworks (ISO27001, SOC2, OWASP, SAMM, DSOMM). Knowledge of embedded security (IDE plugins, SAST, DAST, SCA). Experience performing vulnerability scanning/penetration testing. Threat detection and prevention (IDS, IPS, SOC, Threat list blocking, WAF/SIEM). Cloud more »

Azure Security Engineer - 6 Month Contract - Hybrid - Inside IR35 Would you like to work for one of the largest Retails organisaiton on a 2 year transformation programme? You will have oppertunites to work with an experienced team on the newest Azure Security Tooling. This role is a … with the view for extension and scope for the next 16, 24 months. You will be involved in hands on DevSecOps responsabilties including: SaaC, SAST&DAST, Security policy configuration If this is of interest, please don't hesitate to reach out to harry.worden@hamilton-barnes.com Responsibilities: Working within DevSecOps … environments and initiating SAST and DAST. Creating and managing security policies for cloud-based systems to ensure compliance with industry regulations and company requirements Creating and implementing security measures to protect cloud-based systems and data. Skills: Strong technical prowess with implementing/integrating azure security solutions. more »

We are looking for a highly skilled, highly experienced Senior DevSecOps engineer to join a growing function within the business, focussing on infrastructure, automation, security practices and providing tooling solutions to streamline the path-to-live for development teams. The ideal candidate will be passionate about best practices within … technology teams, fully supportive of what the group is doing and who wishes to make a difference. Responsibilities: Drive shift left security culture uptake by assisting with security training friendly phishing campaigns as well as conducting brown bag sessions with all staff. Assist with the implementation of security … be an autonomous, proactive, confident, credible, and persuasive team player. Collaborate and support developers, analysts, and data scientists to continually improve and innovate. Conduct SAST and DAST testing as well as penetration testing and threat simulations to identify potential risks. Have a practical understanding of firewall networking, ingress more »

vulnerability testing, and incident management. Experience in security tolling and techniques e.g. Protectively Marked Systems, Splunk, GuardDuty, Nessus, Snort, OWASP, SonarQube, Snyk, SAST, DASTExperience of setup and configuration in a cloud environment. Experience with Infrastructure as Code and tooling (e.g. Terraform, CloudFormation, ARM) Experience working in complex, Agile … delivery environments Able to undertake and successfully gain SC level security clearance checks. Nice to have: · Public cloud certifications. (e.g. Microsoft Azure certification (AZ-400, AZ-204) Certified Kubernetes Administrator Experience of design and creation of dashboards for monitoring and alerting of services (Kibana/Grafana/Splunk) · Experience … with tools such as Packer, Terraform, Ansible, Chef, Puppet ITIL qualification (ITIL 4 certification preferred) · Work experience of development within an Application Support environment · Experience with large scale, complex Application Services customers. Experience of contributing to the development, test, release, update, and support processes for DevOps operations in more »

a DevSecOps engineer with extensive experience with Splunk. The client is interested in someone that has a solid split on both the DevOps and Security side of the role. If you are a truly balance DevSecOps engineer this would be a great fit. They are using a predominant AWS … is a permanent role and is Hybrid, with 1 day per week in their offices in Slough. Skills and experience Significant commercial experience with security operations management. Significant experience with cloud providers AWS and Azure. Experience in a commercial setting using and managing Splunk … including defining data streams, indices and ingests and dashboards. Experience of CI/CD pipelines and adding security tooling to these. Experience using SAST and other techniques to improve code security. Experience using SonarCloud, AWS Security Hub, etc. to improve security position. Source code systems and branching more »

DevSecOps Engineer A“shift-left mindset” Experience with tools like Terraform, Kubernetes, Jenkins etc Experience with AWS/Azure/GCP environments Experience doing SAST, DAST, IAST Experience integrating into CI/CD piplelines Scripting experience with Powershell, Bash etc Knowledge of ISO 27001 Experience collaborating with DevOps teams and … the wider Security Operations division As DevSecOps Engineer, you will implement and oversee Microsoft Defender and work with the development teams, across architecture, engineering and cloud, providing expert advice on embedding security in the code. The company are interviewing next week, so if you're interested please email more »

Role: Contract GCP Security Architect Length: 12 months (Hybrid, 3 days on site, 2 days remote) Day rate: £600 - £650 (Outside IR35) Spinks have partnered up with a consultancy working with a global … financial services client who are looking to bring on a GCP security architect. Key Skills: GCP cloud Architecture experience Security OWASP, NIST SAST/DAST/IAST If you'd be interested in hearing more about this position, please apply with your most up-to-date CV more »

capabilities Investigate and propose solutions to development and design problems. Participate in work estimation, sprint planning and forecasting. Adhere to architecture, design, implementation, and security standards Experience and skills required: Experience of an agile software development environment and a working knowledge of DevOps and CI/CD principles. Proficiency … control tools, e.g., GIT Exposure to infrastructure as code i.e., Terraform Awareness of CI/CD tools i.e., Azure DevOps, YAML pipelines Experience with SAST/DAST tooling Awareness of networking principles within AWS, as well as HTTP, TLS, VPN, LAN/WAN etc Must have the right to work more »

Job Title: Security Engineer Duration: 6 months initially Rate: £800 - 850/day umbrella Here is an exceptional opportunity for a Security Engineer seeking the thrill of securing data in one of the UK's top-tier banks. Overview: As the Security Engineer, your primary responsibility will … be ensuring the security of data. This involves implementing measures to protect data and related assets from potential vulnerabilities and threats, thereby preventing compromises to integrity and availability that could potentially harm customers. Responsibilities Serve as the main point of contact for data resilience security. Identify and address security … and guidance for operational resilience and change frameworks. Collaborate with teams to implement security controls and remediate gaps. Key technologies Qualys Ethical Hacking SAST & DAST CVSS SIEM (Splunk) Kafka S3 SentinelOne To be considered for this role, please submit your CV in application. We will contact you within more »