1 to 25 of 82 Permanent OWASP Jobs

security frameworks (e.g., NIST CF, ISO 27001, CSA CCM). Experience with SIEM systems, threat modeling (STRIDE, PASTA), API security, and secure coding principles (OWASP Top 10). Expertise in container and serverless security, and IaC security principles. Proven track record with a major cloud platform (AWS, Azure, GCP). more »

implementing threat detection capabilities in security tooling such as SIEM, EDR, XDR, or SOAR. Deep understanding of security frameworks such as Mitre ATT&CK, OWASP, NIST, and/or CIS. Strong, low-level understanding of networking principles, operating systems, and software design practices. Familiar with commonly adopted cloud technologies across more »

and drive consensus. Preferred Qualifications: Familiarity with big data security solutions Leadership Experience Knowledge of Open Security Architecture (OSA), The Well Architected Framework, and OWASP Application Security Verification Standard (ASVS) Demonstrated ability to act as a thought leader in Cloud security for your existing organization Commitment to continuous improvement and more »

or similar position. Experience in either C#, Python, .Net, Java and or JavaScript/Typescript. Knowledge of security and compliance frameworks and standards, e.g. OWASP, PCI-DSS, ISO 27001, GDPR. Strong knowledge of GitLab pipelines and Akamai security software is a major advantage. Experience in threat modelling and automated security more »

with modern software engineering methodologies and the digital product lifecycle • DevSecOps best tools and practices • Regulatory and industry standards like PCI DSS, ISO 27001, OWASP, ISO 9000 range Technology • Deep knowledge of Microsoft Azure • Kubernetes and containerisation patterns • SQL Server, Redis, Cosmos DB or other Document DBs • Service Bus and more »

OpenVAS, and penetration testing frameworks like Metasploit. Knowledge of security and risk frameworks, plus regulatory compliance frameworks e.g. NIST, Cobit, ISO 27001. Understanding of OWASP, MITRE, CVSS and other standards/frameworks relevant to application security and vulnerability management. Experience with cloud technologies, preferably Azure and AWS. Familiarity with security more »

NIST You're familiar with a variety of technology and testing tools including GitHub, Dynamic Application Security Testing (DAST) tools such as Burp Suite, OWASP ZAP, Kali Linux/Parrot OS, NMAP, Metaspoilt Cloud (AWS) experience would be an advantage You have excellent communication and collaboration skills What's in more »

NIST You're familiar with a variety of technology and testing tools including GitHub, Dynamic Application Security Testing (DAST) tools such as Burp Suite, OWASP ZAP, Kali Linux/Parrot OS, NMAP, Metaspoilt Cloud (AWS) experience would be an advantage You have excellent communication and collaboration skills What's in more »

NIST You're familiar with a variety of technology and testing tools including GitHub, Dynamic Application Security Testing (DAST) tools such as Burp Suite, OWASP ZAP, Kali Linux/Parrot OS, NMAP, Metaspoilt Cloud (AWS) experience would be an advantage You have excellent communication and collaboration skills What's in more »

of repositories, code controls and development tools such as JIRA, Confluence and similar tools Application and Web Service security, Identity Management and Protocols (e.g. OWASP, WS-Security, SAML, OAuth2, OpenID Connect) Knowledge of or have worked with Cloud technologies. Azure preferred Working with: Agile development methodology, SAFe or SCRUM Understanding more »

and Ping Castel experience SCCM or enterprise patch management tools TenableOne or enterprise vulnerability management tools Sound knowledge of industry best practices such as OWASP, Cyber security framework and NCSC guidance Security legislation and regulatory frameworks exposure and awareness FCA or equivalent GDPR - General Data Protection Regulation PCI DSS - Payment more »

and programming languages, including: How to test for/exploit them, Real world mitigations that can be applied Familiarity with vulnerability classification frameworks (e.g. OWASP Top 10, CVSS, MITRE CVE) Ability to threat model systems/applications/platforms to assess design and find flaws that can be exploited What more »

appropriate security tools including automated cloud-based tooling Up-to-date understanding of network security (e.g. OSI, TCP/IP), web application security (e.g. OWASP) and cryptographic controls (e.g. PKI, TLS) Up-to-date understanding of identity management and authentication/authorisation products and patterns Evidence of self-development – we more »

tests with an attacker's mindset. Expertise in using tools like Kali, Burp Suite, Nmap, Nessus, Qualys, Metasploit, and others. Strong knowledge of the OWASP Testing Methodology. Solid understanding of security protocols such as SSL/TLS, SSH, and HTTP. Knowledge of cloud security platforms like AWS, Azure, and Google more »

black box, grey box, and white box testing Expertise with tools like Kali, Burp Suite, Nmap, Nessus, Qualys, Metasploit, etc. Strong knowledge of the OWASP Testing Methodology Understanding of security protocols (SSL/TLS, SSH, HTTP) Knowledge of cloud security platforms (AWS, Azure, Google Cloud) Understanding of networking protocols and more »

a bonus Azure Security skills e.g. in Azure B2c or Federated Account Experience with Application Security tools e.g. Vulnerability Scanners, Pen Testing, Code Analysis OWASP top 10 Knowledge of C# for diagnostics Fantastic opportunity to join a fairly greenfield operation working on a new platform. Interested? Please send your cv more »

products ? asynchronous request handling ? partial page updates ? AJAX(with JSON or XML) ? SEO principles and ensuring that application will adhere to them Understanding of OWASP guidelines, and how to implement them in the code Be able to build and maintain azure pipelines and how to integrate these with Octopus Understands more »

deadline and personal time management skills Excellent communication skills Advantage to have awareness of : C# .NET Core and .NET Framework MVC Razor Azure services OWASP Chromatic Storybook Accessibility Node.js Ability to rollout solutions that are well tested and meet the needs of the end users Can work with other members more »

in Microsoft Dynamics 365 Finance and Operations development. Strong knowledge of X++, C#, .NET, SQL Server, and Azure DevOps. Familiar with and develops to OWASP standards. Experience with Dynamics 365 F&O integrations and data migrations. Understanding of finance and operations business processes. Excellent problem-solving and analytical skills. Strong more »

An understanding of microservices and container orchestration Experience Solid grasp of Application Security Tooling (SCA/SAST/DAST/IaC Security) Knowledge of OWASP Top 10, Mitre Top 25 and CVSS frameworks, mapping to business risk Experience in implementing security into different stages of a DevOps lifecycle Soft Skills more »

Proven track record in leading multi-disciplinary Experience architecting secure, cloud-based (AWS) applications, inc. CI/CD Experience with Zero Trust Architecture, SBD, OWASP, NIST, CIS, NCSC baselines Strong foundation across the cybersecurity technology stack *Candidates must hold an active DV clearance* If this opportunity aligns with your expertise more »

the MVC pattern, REST APIs and asp.net controllers are a must. Web developers should be aware of security vulnerabilities, such as those identified in OWASP, and their code should mitigate these threats. Required: Web Developers need experience in the design, creation and maintenance of websites across multiple platforms. The most more »

C# , MVC , and Razor for backend development Familiarity with .NET Core and .NET Framework Knowledge of Azure services for cloud-based solutions Understanding of OWASP principles for secure development practices Familiarity with Chromatic and Storybook for UI component testing Experience with Node.js for server-side development If you are passionate more »

Lambda, Spring Boot, NodeJS, PostgreSQL, MongoDB and ELK Build solutions as part of a DevOps and Agile ecosystem supported by tooling including Atlassian, Jenkins, OWASP and AWS componentry Apply now to find out more more »

Lambda, Spring Boot, NodeJS, PostgreSQL, MongoDB and ELK Build solutions as part of a DevOps and Agile ecosystem supported by tooling including Atlassian, Jenkins, OWASP and AWS componentryApply now to find out more more »