StaticCodeAnalysis Engineer - £145k p/a , 5 days on-site We are working with a Creandum backed stealth start-up who are looking for a StaticCodeAnalysis Engineer Creandum have backed the companies of tomorrow before it's obvious. They invest … vision a reality. The role is paying between £110-145k p/a + Stocks and requires 5 days on-site in London. StaticCodeAnalysis Engineer - £145k p/a , 5 days on-site more »
identification and analysis. You will be responsible for finding new and novel ways to identify and resolve security vulnerabilities in our products. This includes static and dynamic codeanalysis, security scanning, investigation of security reports from InfoSec, our bug bounty program, or other trusted partners, and direct … team.Core ResponsibilitiesPerform deep architecture and security reviews on highly complex products to identify vulnerabilitiesLead engineering teams in feature design, threat modeling, and security-critical code and architectureDevelop and implement automation to eliminate entire classes of weaknesses across the organizationDrive decision-making by determining the tradeoffs between security and product … experience and a deep passion for information securityExperience with a modern high-level programming language (e.g. Java, Golang, Javascript, Python, etc.)Demonstrated experience evaluating code for vulnerabilities and weaknessesExperience with complex architectures and codebases (e.g. SOA or micro-services)Experience utilizing/with CodeQL or other staticcodemore »
to work on some super exciting projects, then please apply! Main responsibilities: Integrate security tools and processes into the DevOps pipeline to ensure secure code deployment and infrastructure management. Design and implement automated security testing, including staticcodeanalysis, dynamic application security testing, and vulnerability scanning. … practices. Monitor security metrics and logs to detect and respond to security incidents. Lead and participate in security incident response activities, including root cause analysis and remediation efforts. To be considered for this role, you should have: Must have hands on experience in DevSecOps Engineering. Strong knowledge of security … such as SAST, DAST, vulnerability scanners, SIEM, and WAF. Proficiency with CI/CD tools like Jenkins, GitLab, CircleCI, or similar, and infrastructure-as-code tools like Terraform, CloudFormation, or Ansible. Hands-on experience with cloud platforms, AWS, Azure, or GCP, and securing cloud-based environments. Solid understanding of more »
City Of London, England, United Kingdom Hybrid / WFH Options
i3
concepts from LEAN to enhance productivity. The existing team of Cloud Engineers are responsible for delivering Cloud-native solutions that are fully automated through code, are scalable, and maximise availability and reliability 24 x 7. Your key responsibilities will be as follows: Have broad responsibilities to engineer and secure … testing and vulnerability assessments. Experience with SIEM tools, such as Splunk, ELK stack, or Azure Sentinel. Understanding of secure coding practices and experience with staticcodeanalysis tools. Incident response and forensics skills. Relevant security certifications, such as CISSP, CCSP, or cloud platform-specific certifications Infrastructure as … code: use Terraform and Azure DevOps CI/CD for automation, containerise environments (Kubernetes), and leverage Cloud technologies to meet the firms’ goals. Senior Cloud Security Engineer Azure Security Center, Terraform, Azure DevOps Financial Services Permanent West End, London/Hybrid (2 days a week in the office) Circa more »
West London, London, United Kingdom Hybrid / WFH Options
Investigo
/or DevSecOps environment, including unit testing, behaviour driven development, and continuous integration/continuous deployment Demonstrable experience in defining software metrics and using StaticCodeAnalysis (eg. SonarCloud) or similar tools (eg. CodeScene, Compass) to identify and improve software quality. Proven application of a variety of more »
infrastructure or DevOps environments. Management of cyber incidents and response procedures. Possession of OSP certification or equivalent. Familiarity with DevOps practices including Infrastructure as Code (IaC), Continuous Integration/Continuous Deployment (CI/CD) processes, tooling, and staticcode analysis. Qualifications and Experience: Demonstrable experience in pure more »
Start-up La Fosse is currently working with a cutting-edge artificial intelligence and cyber security start-up company specialising in AI for binary analysis, who are looking to hire a talented Senior Machine Learning Engineer into their high performing team. If you’re looking for an opportunity where … you will develop AI that fundamentally understands computer software at the binary level, then this is for you! You will combine static and dynamic program analysis with state-of-the-art AI models, to assist their customers in binary reverse engineering, vulnerability detection, exploit generation, software supply chain … of-the-art machine learning techniques into the product pipeline. You will contribute to the development of their foundational large language model (LLM) binary code embeddings and research new methods using graph-based models for segment classification. Key Responsibilities: Implement state-of-the-art ML techniques and integrate them more »