10 of 10 Contract OWASP Jobs in England

conducting threat modelling (e.g. STRIDE, attack trees) and risk analysis Strong understanding of security frameworks and best practice such as ISO 27001, NIST, CIS, OWASP, NCSC guidance Experience working in the UK Public Sector and associated security standards and guidance including GovAssure/NCSC CAF, HMG Security Policy Framework. Knowledge ...

Working with shared/common government tech stacks (Node.js, PostgreSQL, Redis) Investigating and resolving technical issues across the stack Applying secure development practices, including OWASP principles and vulnerability management Collaborating with stakeholders and communicating technical concepts clearly Tech stack includes: Node.js, HAPI (web framework) API development (REST, OpenAPI) PostgreSQL, MongoDB ...

decisions aligning with organisational priorities. Desirable Criteria Experience of working in the energy sector. Experience in automated security testing. Experience with frameworks such as OWASP, NIST, ISO 27001, and CAF. Application Security Architect - SC cleared ...

government standards Writing clean, maintainable, and reusable code/configuration Supporting issue investigation, resolution, and continuous improvement Applying secure development practices, including awareness of OWASP principles Collaborating with stakeholders and clearly communicating technical concepts Tech and environment: Microsoft Power Platform (Power Apps, Power Automate, Dataverse) Integration with wider enterprise systems ...

management and application monitoring. Knowledge of advanced agent orchestration protocols (eg, A2A communication) and Model Context Protocols (MCPs). Familiarity with secure development frameworks (OWASP, NIST, ISO 27001). Background working in Defence, GovTech, aerospace, or similarly regulated sectors. ...

management and application monitoring. Knowledge of advanced agent orchestration protocols (e.g., A2A communication) and Model Context Protocols (MCPs). Familiarity with secure development frameworks (OWASP, NIST, ISO 27001). Background working in Defence, GovTech, aerospace, or similarly regulated sectors. ...

proficiency Strong communication and coaching abilities Quality-focused mindset Stakeholder management Preferred Skills Testing tools (JUnit, Playwright, Selenium, Cucumber), performance tools (Gatling), security tools (OWASP Zap), containerization (Docker, Kubernetes), cloud (AWS), and accessibility testing (WCAG, Wave, Axe). ...

secure design pattern development Experience designing and applying security controls across cloud and distributed systems Strong understanding of security frameworks and best practices (OWASP, NIST, CIS, etc.) Ability to work closely with engineering teams in fast-paced delivery environments Familiarity with common developer tools (GitLab, Azure DevOps, Terraform, YAML/ ...

direction, embedding automation, and confidently challenging stakeholders and delivery teams. Tech: AWS (Kubernetes), Java/Spring Boot, React, GitLab CI/CD, Playwright, OWASP, Gatling Role: Lead QA strategy and delivery across multiple teams Drive automation and modern QA practices Embed repeatable frameworks and standards Own test planning, risk ...

governance, assurance, and risk evaluation Design cloud-based solutions using Azure and/or AWS Produce architectural documentation, models, and prototypes Ensure compliance with OWASP, NCSC, and GDPR standards Contribute to architecture governance, standards, and best practices Support stakeholder engagement, bids, and technical assurance activities Mentor junior engineers and architects … Defence, Government, or secure environments Active SC Clearance (essential) Strong experience delivering complex, enterprise-scale systems Knowledge of secure development lifecycles (SSDLC) Experience with OWASP, NCSC Cloud Principles, GDPR Strong cloud experience (Azure and/or AWS) Background in microservices, APIs, and integration patterns Experience with DevOps and CI/ ...