6 of 6 Contract OWASP Jobs in England

gateways (Apigee, Azure API Management, Kong, Mulesoft). Strong knowledge of OAuth2.0, OIDC, JWT, mTLS, TLS, and Zero Trust principles. Deep understanding of OWASP API Security Top 10 and secure design patterns. Experience designing security controls in cloud (Azure, AWS, or GCP). Ability to create architectural artefacts (HLDs, LLDs ...

regulated environment. Hands-on knowledge of tools such as Tenable, Nessus, Qualys , or similar scanning technologies. Solid understanding of security frameworks: ISO27001, NIST, OWASP, CVSS . Experience producing executive-level reporting , dashboards, or risk summaries. Ability to interpret technical vulnerability outputs and translate them into meaningful business risk insights. Proven ...

escalation and ensuring their posture remains within our risk appetite. Knowledge/Skills/Experience: Solid understanding of frameworks such as NIST, ISO27001, OWASP, CVSS. Formal security certifications desirable: CompTIA Security+, CISM/CISSP/CRISC beneficial. Working knowledge of regulatory requirements including DORA, CBEST, and BoE Operational Resilience. Degree ...

Product Security/Application Security/Secure SDL Familiarity with threat modelling and vulnerability assessments Good understanding of software principles Secure coding principles/OWASP Ability to engage with software teams and speak their language Hands-on, engineering-facing role with real influence across product development. ...

experience (mandatory) Strong background in vulnerability management within security engineering roles Solid understanding of risk scoring, remediation workflows, and security best practices (e.g., NIST, OWASP, MITRE) Clear communicator able to influence and guide technical teams Why this role Pure vulnerability management focus - deep, hands-on Tenable work. Opportunity to work ...

Security & Penetration Testing Qualifications & Certifications Degree (BS/MS) in Computer Science, Information Security, or equivalent experience Relevant certifications such as: CISSP CISA CSSLP OWASP ASVS/OWASP Top 10 GIAC (GWAPT, GCSA) CASE Certified DevSecOps Professional Key Competencies Strong business acumen with ability to align security to organisational objectives ...