1 to 25 of 59 Permanent OWASP Jobs

and practices specific to cybersecurity and technology against common risk and control frameworks, including NIST 800-53, CSF, ISO 27001/2, COBIT, CIS, OWASP, MITRE Confirmed knowledge of and skill in applying data analytics to audit projects Experience in leading sophisticated critical initiatives, influencing various partners (including non- direct more »

SC clearance or ability to obtain it. Desirable Skills Experience of Cloud and hybrid environments (AWS and Azure). Knowledge of virtualisation. Understanding of OWASP, PTES and MITRE ATT&CK framework. Industry knowledge of compliance and regulation requirements. Benefits Growing company with career progression opportunities Training, development and support with more »

Knowledge of containerization (eg, Docker) and Kubernetes-based service deployment and management. Familiarity with distributed event stores such as Apache Kafka. Deep understanding of OWASP principles and web application security, as well as security practices for native mobile apps (iOS and Android). Proficiency with operating systems (eg, Linux) and more »

Application security: including but not limited to: authentication, identity and access management, auditing, use of cryptography, data security, privacy enhancing technologies, web services security, OWASP, threat & vulnerability management and secure code development methodologies. • Infrastructure security: including but not limited to: network security, host security, database security, device security, VPNs & SSLs more »

and programming languages, including: How to test for/exploit them, Real world mitigations that can be applied Familiarity with vulnerability classification frameworks (e.g. OWASP Top 10, CVSS, MITRE CVE) Ability to threat model systems/applications/platforms to assess design and find flaws that can be exploited What more »

Science or related fields. 3 plus years of progressive experience in computing and information security. knowledge of industry best practices on security hardening (CIS), OWASP, network security, security risk & management frameworks, national cybersecurity standards, ISO27001, etc. player with excellent communication skills, (oral, written, presentation), interpersonal and consultative skills. Able to more »

skills. Experience with SQL database and database optimisation; NoSQL knowledge will be required for the job, and is a desired existing skill. Understanding of OWASP Top 10 and Secure Software Development LifeCycle. Prior experience with one of semgrep, codeql, valgrind, yara or other CI/CD tools is desirable. Prior more »

M.Inst.ISP, CISA by a recognised professional body ● Technical certifications by a recognised professional body in network or systems engineering ● Fundamental Cloud Concepts for AWS. ● OWASP Top 10: API Security Playbook. Ways of Working This role is based out of our London Bridge office. Our hybrid model way of working offers more »

Vulnerability management environments Considerable experience using Vulnerability Management tools Experience with Web Application Security frameworks Knowledge of framework & methodologies such at CVSS, CIS Benchmarking, OWASP, MITRE, etc. Nice to have: Knowledge of software development methodologies such as DevSecOps & Secure Architecture Hands on knowledge of tools such as BurpSuite, Metasploit, Nmap more »

architecture, dev-sec-ops, and network security. Experience in browser security or mobile app security is desirable. Good understanding of industry standards such as OWASP ASVS, OWASP Top-10, CIS benchmarks. Hands-on experience with complex Azure and AWS architectures with an emphasis on containerised workloads. Command-line/API more »

working with a global financial services client who are looking to bring on a GCP security architect. Key Skills: GCP cloud Architecture experience Security OWASP, NIST SAST/DAST/IAST If you'd be interested in hearing more about this position, please apply with your most up-to-date more »

Would you enjoy creating and implementing secure solutions to ensure the safety of our platforms? Do you enjoy responding to real-time threats? About our Team The Security Assurance team is dedicated to safeguarding Elsevier's customer-facing products, supporting more »

Security related certifications are desirable, particularly blue team certs such as SANS/GIAC. • Understanding of cyber security standards and frameworks (ISO27001, NIST, SANS, OWASP etc) 🌳🌳🌳PLEASE FOLLOW Areti Group 🌳🌳🌳 All the latest jobs and insights – Climate positive tech recruitment | We’re on a mission to put people and the more »

with modern software engineering methodologies and the digital product lifecycle • DevSecOps best tools and practices • Regulatory and industry standards like PCI DSS, ISO 27001, OWASP, ISO 9000 range Technology • Deep knowledge of Microsoft Azure • Kubernetes and containerisation patterns • SQL Server, Redis, Cosmos DB or other Document DBs • Service Bus and more »

OpenVAS, and penetration testing frameworks like Metasploit. Knowledge of security and risk frameworks, plus regulatory compliance frameworks e.g. NIST, Cobit, ISO 27001. Understanding of OWASP, MITRE, CVSS and other standards/frameworks relevant to application security and vulnerability management. Experience with cloud technologies, preferably Azure and AWS. Familiarity with security more »

C# , MVC , and Razor for backend development Familiarity with .NET Core and .NET Framework Knowledge of Azure services for cloud-based solutions Understanding of OWASP principles for secure development practices Familiarity with Chromatic and Storybook for UI component testing Experience with Node.js for server-side development If you are passionate more »

exchange trades, price data and information from credit rating agencies. Write clean, scalable, maintainable code. Apply the best modern coding standards, including SOLID principles, OWASP security standards and Design Patterns. Develop automated unit tests. Mentor junior members of staff, with a key focus on junior interface developers. Develop documentation throughout more »

strong grasp of DevSecOps (the shift-left culture). Familiarity with security principles and standards such as NIST and CIS and good understanding of OWASP Top-10, Top 25 CWEs, open source security and data security. Develop quarterly/monthly roadmaps for security tasks and collaborate with stakeholders. Certifications in more »

outcomes with external partners, including resolving conflicts arising from changing priorities. · Familiarity with common information security management frameworks like NIST, PCI, GDPR, ISO Series, OWASP, ITIL, ISF Standards of Good Practice (SoGP), and ISACA’s Control Objectives for Information and related Technology (COBIT) frameworks. Areti Group – Carbon positive tech recruitment more »

audits ensuring they are compliant and included in DevOps Automation processes, including aspects such as management plan access control, traffic visibility, application of mitigative OWASP Top 10 based rules and features, versioning strategies for each WAF solution, etc. Contribute security and technical knowledge alongside project management skills to assist with more »

design, development, and deployment across various platforms. to train and collaborate with end-users during relationship development. with the Open Web Application Security Project (OWASP). certification or equivalent experience is a must. Team Member/CREST Registered Tester or TigerScheme Qualified Security Team Member. industry qualifications such as CEH more »

We're looking for an experienced Penetration Tester/Security Consultant with a minimum of 2 years of experience in an Penetration Testing role. As part of our collaborative and supportive team, you'll have the opportunity to work alongside more »

controls and strategies for runtime monitoring and defence. Evaluate and optimize cryptography algorithms and container security measures. Conduct penetration testing and ensure compliance with OWASP standards. Shape Cloud infrastructure for comprehensive protection. Skills, experience & qualities we're looking for: Experience across the entire security spectrum, including: IAM, AppSec, CloudSec, OWASP more »

complex issues. Certifications such as CISSP, CEH, OSCP, or GSEC are preferred but not required. Knowledge of security principles, practices, and frameworks, such as OWASP, NIST, and ISO. Awareness of security tools and technologies, such as SAST, DAST, IAST, SCA, WAF, IDS, IPS. Experience in conducting threat modeling and risk more »

skilled at influencing and negotiating. Certifications such as CISSP, CEH, OSCP, or GSEC are preferrable. Knowledge of security principles, practices, and frameworks, such as OWASP, NIST, and ISO Awareness of security tools and technologies, such as SAST, DAST, IAST, SCA, WAF, IDS, IPS. Experience in conducting threat modelling and risk more »