Applicationsecurity: including but not limited to authentication, identity and access management, auditing, use of cryptography, data security, privacy enhancing technologies, web services security, OWASP, threat & vulnerability management and secure code development methodologies. Infrastructure security includes but is not limited to, network security, host security, database security, device security, VPNs more »
Reading, England, United Kingdom Hybrid / WFH Options
Vallum Associates
Applicationsecurity: including but not limited to: authentication, identity and access management, auditing, use of cryptography, data security, privacy enhancing technologies, web services security, OWASP, threat & vulnerability management and secure code development methodologies. • Infrastructure security: including but not limited to: network security, host security, database security, device security, VPNs & SSLs more »
experience implementing threat detection capabilities in security tooling such as SIEM, EDR, XDR, or SOAR. understanding of security frameworks such as Mitre ATT&CK, OWASP, NIST, and/or CIS. low-level understanding of networking principles, operating systems, and software design practices. with commonly adopted cloud technologies across different vendors more »
with DevSecOps in threat modelling, vulnerability testing, and incident management. Experience in security tolling and techniques e.g. Protectively Marked Systems, Splunk, GuardDuty, Nessus, Snort, OWASP, SonarQube, Snyk, SAST, DASTExperience of setup and configuration in a cloud environment. Experience with Infrastructure as Code and tooling (e.g. Terraform, CloudFormation, ARM) Experience working more »
with modern software engineering methodologies and the digital product lifecycle • DevSecOps best tools and practices • Regulatory and industry standards like PCI DSS, ISO 27001, OWASP, ISO 9000 range Technology • Deep knowledge of Microsoft Azure • Kubernetes and containerisation patterns • SQL Server, Redis, Cosmos DB or other Document DBs • Service Bus and more »
with modern software engineering methodologies and the digital product lifecycle •DevSecOps best practices and tools •Regulatory and industry standards like PCI DSS, ISO 27001, OWASP, ISO 9000 range Technology •Deep knowledge of Microsoft Azure •Kubernetes and containerisation patterns •SQL Server, Redis, Cosmos DB or other Document DBs •Service Bus and more »
Hartlepool, County Durham, North East, United Kingdom Hybrid / WFH Options
Hireful
a bonus Azure Security skills e.g. in Azure B2c or Federated Account Experience with ApplicationSecurity tools e.g. Vulnerability Scanners, Pen Testing, Code Analysis OWASP top 10 Knowledge of C# for diagnostics Fantastic opportunity to join a fairly greenfield operation working on a new platform. Interested? Please send your cv more »
Employment Type: Permanent
Salary: to 75K + 5% Pension, 25 Days (buy / Sell), Annual Bonus, Health Cash,
Fareham, Hampshire, United Kingdom Hybrid / WFH Options
Spectrum IT Recruitment
architectures) Experience of modern web development technologies including HTML 5, CSS and JavaScript Desirable Skills: Cloud experience (Azure) Containers (docker, K8s) Security best practice (OWASP top ten) OpenIDConnect/Identity server Micro service architecture MS SQL Server Azure DevOps, TeamCity Infrastructure as Code (Bicep, ARM templates, Terraform, Pulumi) Web development more »
an Agile Software environment Familiarity with some or all of - Network management and optimisation, Postgresql Database management and optimisation, common security frameworks CIS,NIST,OWASP Familiarity Public Cloud Services like AWS,GCP, Azure Familiarity with co-located physical infrastructure (currently hybrid) Understanding of Continuous Integration (CI) and Continuous Deployment (CD more »
Computer Science/Technology with IT audit or compliance experience In depth knowledge of information security, Technology Compliance management industry frameworks and standards: NIST, OWASP, SANS, ISO-27001/2, SANS, and Cobit 3+ years working experience with enterprise technology compliance management programs, or Auditing experience, controls testing, conducting ITGC more »
London, England, United Kingdom Hybrid / WFH Options
INSTANDA
control management Unit tests Web-based languages such as HTML, CSS, and JavaScript Azure DevOps Octopus Issue tracking tools Strong knowledge of OOP, SOLID, OWASP and Secure Coding principles Excellent problem-solving skills Desirable skills: Experience working for a tech business Insurance industry experience Knowledge of large-scale multi-tenant more »
to implement best practices. Debugging within Visual Studio (or an IDE of your preference) Experience in Data Security within the application and familiarity with OWASP top 10 threats. (desirable) Experience with CI/CD pipelines and cloud technologies such as Azure (desirable) Experience working in an Agile environment (desirable) Strong more »
Reading, England, United Kingdom Hybrid / WFH Options
Oracle
and programming languages, including: How to test for/exploit them, Real world mitigations that can be applied Familiarity with vulnerability classification frameworks (e.g. OWASP Top 10, CVSS, MITRE CVE) Ability to threat model systems/applications/platforms to assess design and find flaws that can be exploited What more »
Greater London, England, United Kingdom Hybrid / WFH Options
Made Tech
appropriate security tools including automated cloud-based tooling Up-to-date understanding of network security (e.g. OSI, TCP/IP), webapplicationsecurity (e.g. OWASP) and cryptographic controls (e.g. PKI, TLS) Up-to-date understanding of identity management and authentication/authorisation products and patterns Evidence of self-development – we more »
skills. Experience with SQL database and database optimisation; NoSQL knowledge will be required for the job, and is a desired existing skill. Understanding of OWASP Top 10 and Secure Software Development LifeCycle. Prior experience with one of semgrep, codeql, valgrind, yara or other CI/CD tools is desirable. Prior more »
control and associated procedures. Hands-on experience performing application static/dynamic security and penetration assessment with tools such as - SonarQube, CheckMarx, AppScan, BurpSuite, OWASP ZAP Proxy, WebInspect, Fortify, Veracode, Nessus etc. Familiarity with different types of security vulnerabilities and tools for countermeasure Experience with any high-level programming language. more »
Azure Well-Architected Framework into practice when building infrastructure Expert understanding of RESTful APIs, API Gateways and their implementation, monitoring and security concerns (e.g. OWASP API Security) Good understanding of C#.Net, React web and native app development frameworks, libraries, and tools and ecosystems. Ability to identify optimisations for application performance more »
Agile environment, in particular Scrum, and applying supporting practices. In addition any experience in the following would be beneficial:- Knowledge and experience working to OWASP ASVS or equivalent applicationsecurity standards. Experience of recent .NET versions. Experience of Javascript, Typescript and associated frameworks and libraries, in particular React.js. Experience in more »
Directory. · Deep knowledge of various Operating Systems and network principles. · Knowledge of assessing cloud and hybrid environments (AWS and Azure). · Strong understanding of OWASP, PTES and MITRE ATT&CK framework. · Knowledge of how modern solutions are designed and deployed across different platforms. · Ability to program or script in your more »
Lambda, Spring Boot, NodeJS, PostgreSQL, MongoDB and ELK Build solutions as part of a DevOps and Agile ecosystem supported by tooling including Atlassian, Jenkins, OWASP and AWS componentry more »
Birmingham, England, United Kingdom Hybrid / WFH Options
GTS Group Ltd
Veracode Experience working with CI/CD pipelines in environments such as Azure DevOps Experience security IaaS architectures Have a good working knowledge of OWASP Top 10 Security risks Preferred certificate in Certified Information Systems Security Professional (CISSP) or Certified Secure Software Lifecycle Professional (CSSLP); bonus certificate in Certified Ethical more »
strong grasp of DevSecOps (the shift-left culture). Familiarity with security principles and standards such as NIST and CIS and good understanding of OWASP Top-10, Top 25 CWEs, open source security and data security. Develop quarterly/monthly roadmaps for security tasks and collaborate with stakeholders. Certifications in more »
strong grasp of DevSecOps (the shift-left culture). Familiarity with security principles and standards such as NIST and CIS and good understanding of OWASP Top-10, Top 25 CWEs, open source security and data security. Develop quarterly/monthly roadmaps for security tasks and collaborate with stakeholders. Certifications in more »
compliance, risk management and technical assurance practices. Should have experience of using common information security management frameworks, such as NIST, PCI, GDPR, ISO Series, OWASP the IT Infrastructure Library (ITIL), the ISF Standards of Good Practice (SoGP) and ISACA’s Control Objectives for Information and related Technology (COBIT) frameworks. Must more »
Weymouth, England, United Kingdom Hybrid / WFH Options
Cogito
Science or related fields. 3 plus years of progressive experience in computing and information security. knowledge of industry best practices on security hardening (CIS), OWASP, network security, security risk & management frameworks, national cybersecurity standards, ISO27001, etc. player with excellent communication skills, (oral, written, presentation), interpersonal and consultative skills. Able to more »