24 Permanent Dynamic Application Security Testing Jobs in the UK

Technical Information Security Consultant required for market-leading financial services firm. The role will be centred on ensuring security is delivered into a wide range of projects. There will be a focus on working closely with DevOps teams and embedding security throughout a software development life cycle. … Responsibilities: Act as the main security point of contact & SME for required projects Manage security risk for the whole project life cycle Perform security activities, including but not limited to, security design reviews, risk assessments, threat modelling, and vulnerability management and risk mitigation on internally & externally … apps, Containers, Platforms etc Reviewing security assessment reports and create a remediation pipeline Experience in web application security assessments like SAST, DAST etc. Act as the Security subject matter expert within Agile/waterfall project planning, development, and execution Obtain and review all required artefacts as more »

capabilities Investigate and propose solutions to development and design problems. Participate in work estimation, sprint planning and forecasting. Adhere to architecture, design, implementation, and security standards Experience and skills required: Experience of an agile software development environment and a working knowledge of DevOps and CI/CD principles. Proficiency … e.g., GIT Exposure to infrastructure as code i.e., Terraform Awareness of CI/CD tools i.e., Azure DevOps, YAML pipelines Experience with SAST/DAST tooling Awareness of networking principles within AWS, as well as HTTP, TLS, VPN, LAN/WAN etc Must have the right to work in the more »

Job DescriptionA well-known software development company is looking to grow their London based cyber security team with talented Application Security Engineers. This will be 3 days per week in the office (central London).Hiring at multiple levels, you can expect a salary anywhere from … than 50% last year and use the most cutting edge technology available. If you're someone who is deeply technical and passionate about implementing security into the SDLC then I would love to speak with you.If you have expertise within software development/engineering and champion security within … likely to be successful.You will be training developers on writing secure code, perform threat modelling and security testing of applications, run SAST, DAST, SCA and secret scanning tools, manage the bug bounty program and lead incident response for software bugs.Please apply if you're looking to take your more »

As a Product Security Specialist (PSS) at HL, you will join a team of security experts who work with various modern technologies to ensure the security of HL's products. You will be the main point of contact for security issues and requirements for each assigned … development life-cycle. You will also facilitate threat modeling workshops assisting product teams in identifying and mitigating threats. What you will be doing Oversee security related issues across multiple product teams/squads. Working within Product teams, you will be the single point of contact for security related … Knowledge of security principles, practices, and frameworks, such as OWASP, NIST, and ISO. Awareness of security tools and technologies, such as SAST, DAST, IAST, SCA, WAF, IDS, IPS. Experience in conducting threat modeling and risk assessments. Interview process The interview process for this role is two stages including more »

US and India, and numerous innovators across the healthcare ecosystem. Our disruptor’s mindset, commitment to client success, and agility to thrive in the dynamic environment have enabled us to sustain our growth momentum by reporting $291.71M revenue in Q2FY24, delivering 14.1% Y-o-Y growth. Our 22,800+ … maintained strong employee satisfaction - over 94% of our employees approve of the CEO, and 89% would recommend working at Persistent to a friend. Role: Application Security Lead Location: Cardiff, UK - 3 Harbour Drive, Capital Waterside, Cardiff CF10 4WZ Job Type: Full-time/Contractor Mid-Senior Level Joining … on Infrastructure & Application Vulnerability Assessments and Management. Validate and triage identified vulnerabilities. 2. Experience in vulnerability remediation. 3. Hands-on experience on SAST, DAST, SCA, Container scanning tools. 4. Advance GitHub Security experience. 5. Demonstrated scripting or other automation capabilities. 6. Ability to understand CVSSV3 risk rating and more »

A well-known software development company is looking to grow their London based cyber security team with talented Application Security Engineers. This will be 3 days per week in the office (central London). Hiring at multiple levels, you can expect a salary anywhere from … than 50% last year and use the most cutting edge technology available. If you're someone who is deeply technical and passionate about implementing security into the SDLC then I would love to speak with you. If you have expertise within software development/engineering and champion security … to be successful. You will be training developers on writing secure code, perform threat modelling and security testing of applications, run SAST, DAST, SCA and secret scanning tools, manage the bug bounty program and lead incident response for software bugs. Please apply if you're looking to take more »

varying from Large Enterprises to FTSE 100 spanning across multiple verticals including Finance, Media, Telecommunications, and much more. Currently, we are searching for a Security Operations Engineer to join our Network Practice; you will be joining our excelling team based within our Insurance Sector, based in the City of … Vulnerability management Threat management Threat analysis Reporting Process/Documentation writing, aligning to Azure benchmarking, aligning to CIS benchmarking Improvements to AppSec (including SAST, DAST, and CICD configuration) Network security improvements Azure cloud platform security improvements Incident/investigation and resolution. What you’ll bring: Experience in Microsoft … Azure and Defender Engineering. Application security experience including DAST & SAST. Microsoft threat analysis experience and EASM tools. Strong security testing experience including penetration testing. Strong security baseline knowledge In-depth vulnerability management, resolution, and patching experience If you think you could be the next member more »

Job DescriptionApplication Security Lead - Financial Services - London (3 days a week in office) - up to £95,000 + bonus + benefitsLa Fosse has partnered with a leading Insurance Organization who are looking to hire an Application Security Lead. This role will be responsible for establishing an Application Security function from the ground up, which will involve the implementation of tooling, processes and frameworks. As the first Application Security hire, you will work closely with Application, Platform, and Support teams, to embed a shift left culture within SDLC.Responsibilities: Lead on application threat … programmes.Previous hands-on experience as an AppSec Engineer, Software Security Engineer or Software Engineer will be advantageous. Experience in implementing SAST/DAST/SCA tooling. Knowledge of frameworks such as OWASP more »

Senior DevSecOps Engineer | Senior Security Engineer | Cloud Security Engineer | Cyber Security Engineer | Cyber Specialist | SecOps Engineer | Security Operations | Cyber Architect | Cyber Security Architect | AppSec | Application Security | Security Engineering | OT Security | Offensive Security Brand new requirement for a company who operate … in the Renewable/Sustainability sector who are looking to hire a Cyber Security Specialist to join the Cyber-Security function. This company are growing quickly and are genuinely making very positive changes to our world and its future. The role sits within a new, merged team within … using Terraform to deploy into the Azure Cloud. You'll also require skills in the likes of SIEM and familiar with the likes of DAST & SAST testing. Finally, strong knowledge of frameworks like ISO & NIST is required. Any experience of the OT/IoT sector would be very welcome too. more »

Job DescriptionSenior DevSecOps Engineer | Senior Security Engineer | Cloud Security Engineer | Cyber Security Engineer | Cyber Specialist | SecOps Engineer | Security Operations | Cyber Architect | Cyber Security Architect | AppSec | Application Security | Security Engineering | OT Security | Offensive SecurityBrand new requirement for a company who operate in … the Renewable/Sustainability sector who are looking to hire a Cyber Security Specialist to join the Cyber-Security function. This company are growing quickly and are genuinely making very positive changes to our world and its future.The role sits within a new, merged team within the business … using Terraform to deploy into the Azure Cloud. You'll also require skills in the likes of SIEM and familiar with the likes of DAST & SAST testing. Finally, strong knowledge of frameworks like ISO & NIST is required. Any experience of the OT/IoT sector would be very welcome too.If more »

Application Security Engineer Sunderland/WFH to £44k Do you have expertise with secure coding practices? You could be progressing your career, working on a modern tech stack and collaboratively problem solving within a supportive team environment at a tech driven online gaming company. As an Application … scanning features within GitHub and integrating to the CI/CD pipeline. You will use a combination of Static Application Testing (SAST), DAST and Software Composition Analysis (SCA) tooling to identify security vulnerabilities and plan remediations. Location/WFH: There's a hybrid work from home policy … ISF, NIST You're familiar with a variety of technology and testing tools including GitHub, Dynamic Application Security Testing (DAST) tools such as Burp Suite, OWASP ZAP, Kali Linux/Parrot OS, NMAP, Metaspoilt Cloud (AWS) experience would be an advantage You have excellent communication more »

An exciting opportunity to join a leading company and play an influential part in their continued dedication to Application Security. At Tesco, the application security team’s strategy is to provide security tooling that fits seamlessly into software engineering teams ways of working, helping them find … and deal with security problems early within the software development process before it reaches production. In this role you will be responsible for helping to identify appropriate toolsets that fit with the application security team’s strategy, provide comprehensive guidance that allow engineering teams to effectively self … (Web, API, Mobile) An understanding of microservices and container orchestration Experience Solid grasp of Application Security Tooling (SCA/SAST/DAST/IaC Security) Knowledge of OWASP Top 10, Mitre Top 25 and CVSS frameworks, mapping to business risk Experience in implementing security into more »

What we're looking for Experience of working in a team of DevOps or DevSecOps practitioners DevOps Tooling experience (Automation, Orchestration, CI/CD, Testing etc) Container native technologies and ecosystem experience e.g. Openshift and Kubernetes An understanding of Agile Delivery (Kanban/SCRUM/XP/Lean/… as Jenkins, GitLab or similar. Knowledge of Hashicorp Terraform and Hashicorp Vault Awareness of SAST Security Testing - GitLab, Checkmarx, Veracode Awareness of DAST Security Testing - GitLab, Veracode Awareness of SCA/IAST Security Testing - Checkmarx, GitLab, Veracode Awareness of Vulnerability Management - PA Prisma Awareness … of QA Testing - Selenium Certifications in Gitlab, Terraform and Vault would be preferable more »

A well-known software development company is looking to grow their London based cyber security team with talented Application Security Engineers. This will be 3 days per week in the office (central London). Hiring at multiple levels, you can expect a salary anywhere from … than 50% last year and use the most cutting edge technology available. If you're someone who is deeply technical and passionate about implementing security into the SDLC then I would love to speak with you. If you have expertise within software development/engineering and champion security … speaking with you. You will be training developers on writing secure code, perform threat modelling and security testing of applications, run SAST, DAST, SCA and secret scanning tools, manage the bug bounty program and lead incident response for software bugs. Please apply if you're looking to take more »

Albany Beck are hiring for a Security Engineer to work on a long term programme of work with a global insurance firm. They are committed to delivering cutting-edge solutions in the rapidly evolving insurance landscape. As a Security Engineer with expertise in Microsoft Azure, you will play … a global insurance leader. Responsibilities: Design, implement, and maintain security solutions within the Microsoft Azure environment, leveraging Azure Defender capabilities. Deploy and configure DAST & SAST tools to conduct comprehensive security assessments of applications and systems. Implement EASM strategies to ensure the secure development and deployment of enterprise applications. … CompTIA Security+) are preferred. Extensive experience in designing, implementing, and managing security solutions within the Microsoft Azure ecosystem. Proficiency in deploying and configuring DAST & SAST tools for vulnerability assessment and code analysis. Familiarity with EASM platforms and methodologies for securing enterprise applications. Strong understanding of networking concepts, cloud architecture more »

/microservices/memory-management/messaging/event-sourcing. on experience on deploying applications on cloud platform like OCP/PCF. in building application Java, Spring boot and Node, Camel. on experience in building API’s/micro services and Event messaging. Elastic and Kafka. in building application … on experience of version control platforms such as GitHub. on experience writing Unit Tests using frameworks like Jest, JUnit etc. and fix SAST and DAST scans (Checkmark, Aqua, NexusIQ, SonarQube). Good to have: Strong troubleshooting skills across the entire application stack. A sound understanding of architecture principles and … disability, gender, age, sexual orientation, or beliefs. If you are an applicant who needs an accommodation due to a disability to complete an employment application, or during any phase of the hiring process, please contact us at elena.cioaca@tcs.com with the subject line: “Disability Accommodation Request”. Due to more »

Application Security Lead - Financial Services - London (3 days a week in office) - up to £95,000 + bonus + benefits La Fosse has partnered with a leading Insurance Organization who are looking to hire an Application Security Lead. This role will be responsible for establishing an … Application Security function from the ground up, which will involve the implementation of tooling, processes and frameworks. As the first Application Security hire, you will work closely with Application, Platform, and Support teams, to embed a shift left culture within SDLC. Responsibilities: Lead on application … programmes. Previous hands-on experience as an AppSec Engineer, Software Security Engineer or Software Engineer will be advantageous. Experience in implementing SAST/DAST/SCA tooling. Knowledge of frameworks such as OWASP more »

We are looking for a highly skilled, highly experienced Senior DevSecOps engineer to join a growing function within the business, focussing on infrastructure, automation, security practices and providing tooling solutions to streamline the path-to-live for development teams. The ideal candidate will be passionate about best practices within … technology teams, fully supportive of what the group is doing and who wishes to make a difference. Responsibilities: Drive shift left security culture uptake by assisting with security training friendly phishing campaigns as well as conducting brown bag sessions with all staff. Assist with the implementation of security … autonomous, proactive, confident, credible, and persuasive team player. Collaborate and support developers, analysts, and data scientists to continually improve and innovate. Conduct SAST and DAST testing as well as penetration testing and threat simulations to identify potential risks. Have a practical understanding of firewall networking, ingress, VPNs, and more »

Application Security Engineer Sunderland/WFH to £44k Do you have expertise with secure coding practices? You could be progressing your career, working on a modern tech stack and collaboratively problem solving within a supportive team environment at a tech driven online gaming company. As an Application … scanning features within GitHub and integrating to the CI/CD pipeline. You will use a combination of Static Application Testing (SAST), DAST and Software Composition Analysis (SCA) tooling to identify security vulnerabilities and plan remediations. Location/WFH: There's a hybrid work from home policy … ISF, NIST You're familiar with a variety of technology and testing tools including GitHub, Dynamic Application Security Testing (DAST) tools such as Burp Suite, OWASP ZAP, Kali Linux/Parrot OS, NMAP, Metaspoilt Cloud (AWS) experience would be an advantage You have excellent communication more »

Application Security Engineer Sunderland/WFH to £44k Do you have expertise with secure coding practices? You could be progressing your career, working on a modern tech stack and collaboratively problem solving within a supportive team environment at a tech driven online gaming company. As an Application … scanning features within GitHub and integrating to the CI/CD pipeline. You will use a combination of Static Application Testing (SAST), DAST and Software Composition Analysis (SCA) tooling to identify security vulnerabilities and plan remediations. Location/WFH: There's a hybrid work from home policy … ISF, NIST You're familiar with a variety of technology and testing tools including GitHub, Dynamic Application Security Testing (DAST) tools such as Burp Suite, OWASP ZAP, Kali Linux/Parrot OS, NMAP, Metaspoilt Cloud (AWS) experience would be an advantage You have excellent communication more »

As the Lead Security Specialist at HL, you will join a team of security experts working with various modern technologies to ensure the security of HL's products. You will oversee security issues and requirements for all product teams, dealing with complex projects daily and serving … as the escalation point for the Product Security Specialist (PSS). You will lead threat modelling workshops and engage with key stakeholders to identify threats and recommend countermeasures. Additionally, you will lead a team of Product Security Specialists, providing leadership, technical guidance, and support in tailoring their development … Knowledge of security principles, practices, and frameworks, such as OWASP, NIST, and ISO Awareness of security tools and technologies, such as SAST, DAST, IAST, SCA, WAF, IDS, IPS. Experience in conducting threat modelling and risk assessments. Interview process The interview process for this role is two stages including more »

to contribute throughout the software development lifecycle, including design, development, and testing. Collaborate closely with DevOps engineers to optimize the development process for efficiency, security, and quality. Responsibilities: Develop high-quality, testable code and promote a collaborative team environment. Collaborate across teams to understand requirements and deliver system features. … Investigate and propose solutions for development challenges. Adhere to architecture, design, and security standards. Conduct code reviews and implement best practices. Develop reusable services and improve software performance. Streamline the software development lifecycle and recommend process improvements. Collaborate with DevOps engineers to enhance build and release processes. Partner with … RESTful architecture. Proficient with version control tools like GIT and infrastructure as code (Terraform). Knowledge of CI/CD tools and SAST/DAST tooling. Understanding of networking principles and cloud security frameworks. Experience with identity and access management tools. Familiarity with relational and NoSQL databases. #INDTech more »

Key responsibilities for this IT Security role Code analysis and application security reviews. Dynamic Application Security Testing (DAST) Identifying and addressing security vulnerabilities Working with stakeholders to enhance processes. Core skills & experience for this Security Analyst role: Security review methodologies … SAST, DAST, SBOM, SCA Implementing security tooling in CI/CD pipelines Threat modeling Code review (Java or C#) Familiarity with security frameworks like PCI, ISO 27001, Cyber Essentials This company offers structured training, career development opportunities, and competitive compensation including incentives. For more details, call … or follow us on Twitter @erinassociates for similar roles. Key words: Security Reviews, ISO Standards, SBOM, SCA, SAST, DAST, Threat Modelling, Security Tooling, Code Review, Manchester, North West, Java C#, Infosec, IT Security analyst Please get in touch on 0161 438 1177 if you would like further more »

consistency of service Makes decisions which impact on the success of assigned projects i.e. results, deadlines and budge Act in accordance with Computacenter Information Security Policies and report any potential or actual Security events or other Security risks to the organisation What youll need Experience of working … in a team of DevOps or DevSecOps practitioners DevOps Tooling experience (Automation, Orchestration, CI/CD, Testing etc.) An understanding of Agile Delivery (Kanban/SCRUM/XP/Lean/SAFe) An understanding of DevOps Management (JIRA, Confluence) Awareness of CI/CD tooling such as … Jenkins, GitLab or similar Experience of Hashicorp Terraform Experience of Hashicorp Vault Awareness of SAST Security Testing - GitLab, Checkmarx, Veracode Awareness of DAST Security Testing - GitLab, Veracode Awareness of SCA Security Testing - Checkmarx, GitLab, Veracode Awareness of IAST Security Testing - Checkmarx Awareness more »