13 of 13 Contract OWASP Jobs in England

GitHub Actions , CircleCI (or similar) Monitoring & logging: Prometheus , Grafana , ELK stack (or equivalent) DevSecOps: integrating security into pipelines and delivery (e.g., SonarQube , Snyk , OWASP practices) If you'd like to discuss this DevOps Engineer role in more detail, please send your updated CV to (url removed) and I will ...

pipelines (Jenkins, GitLab CI, GitHub Actions, CircleCI) Automates testing, integration, and deployment processes. Embed DevSecOps practices using tools such as SonarQube, Snyk, and OWASP Implement monitoring and logging (Prometheus, Grafana, ELK) Experience Required 5-10+ years in DevOps/Cloud Engineering Testing experience - can set the Testing process ...

architectures . Proven experience with risk assessment methodologies and maintaining enterprise risk registers . Working knowledge of risk assessment methodologies (e.g. ISO 31000, FAIR, OWASP risk rating). Strong understanding of Gov Assure, CAF, ISO 27001, Cyber Essentials, and NIST frameworks. Experience conducting or supporting security audits and implementing remediation ...

Infrastructure as Code (Terraform or CDK) Strong grounding in clean architecture, SOLID principles, and code maintainability Knowledge of API integration and secure development practices (OWASP) What you'll be doing: Delivering end-to-end software solutions in a modern tech stack Working closely with product managers, QA, and engineering leadership ...

assurance/risk/governance roles Proven background in secure cloud or infrastructure design (Azure/M365) Experience with risk frameworks (ISO 31000, NIST, OWASP etc.) Knowledge of GovAssure, CAF, ISO27001, Cyber Essentials Entra ID/Azure/M365 SIEM/EDR/vulnerability management tools Access control models (RBAC ...

CD. Key deliverables: Build and enforce secure Azure infrastructure using Terraform (modular, scalable, production-ready) Implement perimeter security with Azure Front Door + WAF (OWASP, bot protection, rule tuning) Define governance using Azure Policy as code (networking, firewall, compliance controls) Secure AKS workloads with container scanning and runtime protections Design ...

GovAssure. Requirements: Proven experience in cyber security assurance, secure architecture design, or related disciplines. Strong knowledge of risk assessment methodologies (ISO 31000, FAIR, OWASP risk rating). Hands-on experience with enterprise security frameworks including ISO 27001, NIST, CAF, and Cyber Essentials. Experience conducting security audits and implementing remediation strategies. ...

lead the implementation of security controls across the Azure estate, including: Designing and deploying perimeter protection using Azure Front Door with WAF policies (OWASP Top 10, bot protection). Analysing traffic, tuning WAF rules, and working with stakeholders to reduce false positives. Defining and enforcing governance through Azure Policy, particularly ...

design principles are consistently applied. Experience producing AppSec maturity roadmaps, target-state models, and governance frameworks. Strong understanding of industry standards and frameworks (OWASP ASVS, OWASP SAMM, NIST, ISO 27034). Desirable Skills/Knowledge/Experience Experience implementing or advising on secure use of AI/ML applications, including ...

Assessment Framework (CAF), CSA CAIQ, NIST, and our roadmap towards SOC 2 Establish and track quantifiable technical baselines - encryption coverage, log retention, API compliance (OWASP) and source-code analysis checks Verify data input/output integrity routines across critical business systems Turn high-level policies into step-by-step operational ...

render optimisation, code splitting, virtualisation) Ability to keep UI responsive under heavy interaction patterns and large datasets. Security-conscious delivery Security-minded development practices (OWASP awareness, auth/session hygiene, dependency hygiene) Comfortable operating in environments where confidentiality, disciplined change control and auditability matter Data visualisation (interactive charts; performance-conscious ...

Key responsibilities · Ability to develop, design secure solutions and produce a Security Design documenting the controls. · The ability to deconstruct a solution/network architecture. · Ability to identify and mitigate against threats and vulnerabilities associated ...

Key responsibilities Ability to develop, design secure solutions and produce a Security Design documenting the controls. The ability to deconstruct a solution/network architecture. Ability to identify and mitigate against threats and vulnerabilities associated ...