1 to 25 of 27 Dynamic Application Security Testing Jobs in the UK

The Head of Application and Product Security is a strategic leadership role responsible for safeguarding the application landscape and digital products within HL. This pivotal position ensures that security is embedded throughout the software development lifecycle and product innovation pipeline, providing assurance to clients, regulators, and stakeholders during a period of significant digital transformation and on … an ongoing basis. The role will champion secure-by-default/design principles, drive security best practices, and lead a high-performing team in the context of ambitious cloud adoption, agile delivery, and regulatory evolution. The role balances strategic vision with operational oversight, ensuring security resilience and enabling the firm's growth aspirations. What you'll be doing … application security architecture, reference models, and automation in line with cloud-first and hybrid environments (AWS, Azure, etc). Commission and manage security testing (SAST, DAST, pen testing, Interactive testing, Mobile testing, bug bounties), triage vulnerabilities, and drive remediation efforts with development teams. Report to executive leadership and the board on application More ❯

source solutions, and embracing enterprise agile methodology. We encourage professional development to ensure you bring innovative ideas to our products while satisfying your own intellectual curiosity. Our Global Information Security team's mission is to ensure the development, implementation, and management of a comprehensive program that effectively protects the confidentiality, integrity, and availability of Point72 information assets. Our team … is comprised of security professionals with expertise in a diverse portfolio of security disciplines. What you'll do Collaborate with the DevOps team to design, implement, and manage a robust DevSecOps framework for our software development pipeline, integrating security tools and processes into our CI/CD workflows to enhance the developer experience Champion a security … testing tools and processes within the CI/CD pipeline, including static application security testing (SAST), dynamic application security testing (DAST), software composition analysis (SCA), and open source security (OSS) Work together with the DevOps team to automate security controls and compliance checks within the development pipeline, ensuring adherence More ❯

have most of the skills or experience we're looking for, please go ahead and apply. We'd love to hear from you!About the role# The Head of Application and Product Security is a strategic leadership role responsible for safeguarding the application landscape and digital products within HL. This pivotal position ensures that security is … assurance to clients, regulators, and stakeholders during a period of significant digital transformation and on an ongoing basis. The role will champion secure-by-default/design principles, drive security best practices, and lead a high-performing team in the context of ambitious cloud adoption, agile delivery, and regulatory evolution. The role balances strategic vision with operational oversight, ensuring … application security architecture, reference models, and automation in line with cloud-first and hybrid environments (AWS, Azure, etc). Commission and manage security testing (SAST, DAST, pen testing, Interactive testing, Mobile testing, bug bounties), triage vulnerabilities, and drive remediation efforts with development teams. Report to executive leadership and the board on application More ❯

team. Working closely with the Cyber team as well as the digital team to ensure cybersecurity is embedded across all digital platforms. Key skills & Responsibility Lead the integration of security into the software development lifecycle (SDLC) using DevSecOps principles. Define and implement release strategies with a strong emphasis on application security. Identify and remediate security vulnerabilities through … and automated tooling. Collaborate with cross-functional teams to establish secure coding standards and quality benchmarks. Provide expert consultancy and guidance to engineering teams, enabling them to meet strategic security goals. Drive adoption of security best practices across CI/CD pipelines and cloud-native environments. Accountabilities Provide technical cyber leadership across all development teams, focusing on application … or qualifications desirable. Deep technical expertise in security tools and methodologies, including: Static Application Security Testing (SAST) Dynamic Application Security Testing (DAST) Software Composition Analysis (SCA) Threat Modelling Demonstrated success in leading or advising teams on secure development practices. Senior-level experience with a solid understanding of cloud migration challenges and solutions. More ❯

and have most of the skills or experience we're looking for, please go ahead and apply. We'd love to hear from you! About the role As an Application Security Engineer at HL, you will play a key role in strengthening the security of our products and services. Partnering with Engineering and other security functions … you'll embed and enhance security across the SDLC. You will help shape our security tooling strategy, drive automation to scale assurance across the business and provide expert guidance to engineers on vulnerabilities, threats and risk mitigation. This role is an opportunity to influence how HL builds secure products at pace, while supporting a culture of 'Secure by … prioritising work, and providing progress updates against plan. Supporting the Security Champions program at HL through developer enablement and training. About you Experience of SAST/SCA/DAST toolsets (e.g. Snyk, Gitlab Ultimate Application Security, Rapid7). Experience of API scanning tools (e.g. Salt, 42Crunch). Strong understanding of vulnerability scoring frameworks such as CVSS and More ❯

and have most of the skills or experience we're looking for, please go ahead and apply. We'd love to hear from you! About the role As an Application Security Engineer at HL, you will play a key role in strengthening the security of our products and services. Partnering with Engineering and other security functions … you'll embed and enhance security across the SDLC. You will help shape our security tooling strategy, drive automation to scale assurance across the business and provide expert guidance to engineers on vulnerabilities, threats and risk mitigation. This role is an opportunity to influence how HL builds secure products at pace, while supporting a culture of 'Secure by … prioritising work, and providing progress updates against plan. Supporting the Security Champions program at HL through developer enablement and training. About you Experience of SAST/SCA/DAST toolsets (e.g. Snyk, Gitlab Ultimate Application Security, Rapid7). Experience of API scanning tools (e.g. Salt, 42Crunch). Strong understanding of vulnerability scoring frameworks such as CVSS and More ❯

and have most of the skills or experience we're looking for, please go ahead and apply. We'd love to hear from you! About the role As an Application Security Engineer at HL, you will play a key role in strengthening the security of our products and services. Partnering with Engineering and other security functions … you'll embed and enhance security across the SDLC. You will help shape our security tooling strategy, drive automation to scale assurance across the business and provide expert guidance to engineers on vulnerabilities, threats and risk mitigation. This role is an opportunity to influence how HL builds secure products at pace, while supporting a culture of 'Secure by … prioritising work, and providing progress updates against plan. Supporting the Security Champions program at HL through developer enablement and training. About you Experience of SAST/SCA/DAST toolsets (e.g. Snyk, Gitlab Ultimate Application Security, Rapid7). Experience of API scanning tools (e.g. Salt, 42Crunch). Strong understanding of vulnerability scoring frameworks such as CVSS and More ❯

and have most of the skills or experience we're looking for, please go ahead and apply. We'd love to hear from you! About the role As an Application Security Engineer at HL, you will play a key role in strengthening the security of our products and services. Partnering with Engineering and other security functions … you'll embed and enhance security across the SDLC. You will help shape our security tooling strategy, drive automation to scale assurance across the business and provide expert guidance to engineers on vulnerabilities, threats and risk mitigation. This role is an opportunity to influence how HL builds secure products at pace, while supporting a culture of 'Secure by … prioritising work, and providing progress updates against plan. Supporting the Security Champions program at HL through developer enablement and training. About you Experience of SAST/SCA/DAST toolsets (e.g. Snyk, Gitlab Ultimate Application Security, Rapid7). Experience of API scanning tools (e.g. Salt, 42Crunch). Strong understanding of vulnerability scoring frameworks such as CVSS and More ❯

and have most of the skills or experience we're looking for, please go ahead and apply. We'd love to hear from you! About the role As an Application Security Engineer at HL, you will play a key role in strengthening the security of our products and services. Partnering with Engineering and other security functions … you'll embed and enhance security across the SDLC. You will help shape our security tooling strategy, drive automation to scale assurance across the business and provide expert guidance to engineers on vulnerabilities, threats and risk mitigation. This role is an opportunity to influence how HL builds secure products at pace, while supporting a culture of 'Secure by … prioritising work, and providing progress updates against plan. Supporting the Security Champions program at HL through developer enablement and training. About you Experience of SAST/SCA/DAST toolsets (e.g. Snyk, Gitlab Ultimate Application Security, Rapid7). Experience of API scanning tools (e.g. Salt, 42Crunch). Strong understanding of vulnerability scoring frameworks such as CVSS and More ❯

and have most of the skills or experience we're looking for, please go ahead and apply. We'd love to hear from you! About the role As an Application Security Engineer at HL, you will play a key role in strengthening the security of our products and services. Partnering with Engineering and other security functions … you'll embed and enhance security across the SDLC. You will help shape our security tooling strategy, drive automation to scale assurance across the business and provide expert guidance to engineers on vulnerabilities, threats and risk mitigation. This role is an opportunity to influence how HL builds secure products at pace, while supporting a culture of 'Secure by … prioritising work, and providing progress updates against plan. Supporting the Security Champions program at HL through developer enablement and training. About you Experience of SAST/SCA/DAST toolsets (e.g. Snyk, Gitlab Ultimate Application Security, Rapid7). Experience of API scanning tools (e.g. Salt, 42Crunch). Strong understanding of vulnerability scoring frameworks such as CVSS and More ❯

and have most of the skills or experience we're looking for, please go ahead and apply. We'd love to hear from you! About the role As an Application Security Engineer at HL, you will play a key role in strengthening the security of our products and services. Partnering with Engineering and other security functions … you'll embed and enhance security across the SDLC. You will help shape our security tooling strategy, drive automation to scale assurance across the business and provide expert guidance to engineers on vulnerabilities, threats and risk mitigation. This role is an opportunity to influence how HL builds secure products at pace, while supporting a culture of 'Secure by … prioritising work, and providing progress updates against plan. Supporting the Security Champions program at HL through developer enablement and training. About you Experience of SAST/SCA/DAST toolsets (e.g. Snyk, Gitlab Ultimate Application Security, Rapid7). Experience of API scanning tools (e.g. Salt, 42Crunch). Strong understanding of vulnerability scoring frameworks such as CVSS and More ❯

Our client currently seek a SC Cleared AWS DevOps Engineer to join their dynamic team on an initial 6 month contract. This role is 95% remote with travel required once a month to the office. Key Skills … and Responsibilities: Design, deliver, and support secure and scalable AWS infrastructure using services like EC2, S3, ECS, and FARGATE Integrate SAST (Static Application Security Testing) and DAST (Dynamic Application Security Testing) tools into CI/CD pipelines to enforce secure development practices Automate infrastructure provisioning using CloudFormation, Terraform, or CDK Use tools like More ❯

Our client currently seek a SC Cleared AWS DevOps Engineer to join their dynamic team on an initial 6 month contract. This role is 95% remote with travel required once a month to the office. Key Skills … and Responsibilities: Design, deliver, and support secure and scalable AWS infrastructure using services like EC2, S3, ECS, and FARGATE Integrate SAST (Static Application Security Testing) and DAST (Dynamic Application Security Testing) tools into CI/CD pipelines to enforce secure development practices Automate infrastructure provisioning using CloudFormation, Terraform, or CDK Use tools like More ❯

modelling exercises, and continually improve the organisations application security posture. Key Responsibilities Secure Development Lifecycle (SDLC) Experience working with static and dynamic code analysis tools (SAST, DAST) is essentialwhile you dont need to have set them up, you should have collaborated with developers to ensure code is scanned and critical vulnerabilities are blocked in the pipeline. Integrate … security controls into CI/CD pipelines and development workflows. Manage and monitor SAST, DAST, and SCA tools to detect vulnerabilities early in the lifecycle. Conduct secure code reviews and support remediation efforts. Threat Modelling & Architecture Review Requirements (Primarily Essential) 2+ years of experience in application security or secure software development. Strong knowledge of OWASP Top … secure coding principles, and threat modelling. Hands-on experience with SAST, DAST, SCA, and vulnerability management tools. Familiarity with cloud platforms (Azure or AWS), CI/CD pipelines, and DevOps processes. Strong communication skills and the ability to collaborate effectively across teams. Understanding of regulatory and security standards (ISO 27001, FCA, NIST). (Nice to have) Youll need to More ❯

About the role We're looking for a Product Security Engineer to help us build secure-by-design products that customers can trust. This is a key role in our Technology team where you'll work across the business to protect data, reduce risk, and enable safe innovation. From engineering security tooling to empowering teams with best practices … cloud provider (AWS, Azure or GCP) Familiar with Infrastructure as Code (e.g. Terraform, CloudFormation) Confident working with microservices, APIs and secure coding principles Hands-on experience with SAST/DAST tools in CI/CD environments Awareness of security tooling such as WAFs and vulnerability scanners Solid understanding of cryptography, authentication and authorisation A great communicator with a collaborative … Environment Languages: Python, Go or similar Infrastructure: AWS, Azure, GCP Tools: Terraform, CloudFormation, WAFs, vulnerability scanners DevOps: CI/CD pipelines, IaC, security automation Security focus: SAST, DAST, secure coding, threat modelling How We Get There We build with security in mind from day one We balance safety and speed with pragmatic decision-making We foster a More ❯

style is hybrid, which involves spending at least two days per week currently, or 40% of our time, at one of our office locations. About this opportunity The Chief Security Office (CSO) plays a vital role in delivering Lloyds Banking Group's vision of putting customers at the heart of everything we do, helping Britain prosper, and protecting the … Group and its customers and suppliers from security threats. Key Responsibilities Plan, execute and report on complex penetration testing engagements against Web, API, Mobile, infrastructure and cloud assets Design and implement repeatable and efficient testing mechanisms to identify weaknesses at scale Review and QA findings from testing engagements to ensure accuracy and quality Define appropriate scope … environments and containerised solutions Experience working with and testing against AI/LLM models Strong understanding of DevOps testing principles and different testing capabilities (SAST/DAST, SCA etc.) Any relevant cloud or cyber security certifications (CCSP, CISM, CISSP etc.) Experience in developing software and/or reviewing source code in various programming languages Experience in More ❯

A leading fintech company is seeking a Lead AppSec Engineer to join their established team. Youll be instrumental in embedding security into every stage of the software development lifecycleguiding engineers, shaping best practices, and driving secure, scalable solutions across our platform. Key Responsibilities: Security Advisory : Serve as the go-to expert for application security across engineering … teamsproviding hands-on guidance, resolving concerns, and fostering a security-first mindset. DevSecOps Enablement : Promote and implement secure development practices across CI/CD pipelines, secrets and key management, dependency management … and secure design. Vulnerability Management : Lead vulnerability remediation effortstriaging findings, prioritizing risks, and partnering with teams to deliver effective, pragmatic fixes. Tooling & Automation : Integrate security tools (e.g., SAST, DAST, SCA, secrets scanning) into developer workflows, ensuring automation is both scalable and developer-friendly. Cloud Security Collaboration : Work alongside infrastructure teams to ensure secure configuration of AWS and Azure More ❯

Security Engineer (Salesforce) Permanent Hybrid - 3 days p/w on-site Leeds area (Hands on recent career experience of Salesforce/Salesforce Industries/Vlocity is essential) FPSG have a fantastic opportunity to join a large-scale digital transformation programme aimed at uniting multiple internal business units under a new, secure, cloud-native digital platform. Ideal for a … subnets, zones) Experience with API security and integration-related platforms such as Auth0 or API Gateways Proficiency with security tools including SAST (e.g. Snyk, Checkmarx), SCA, and DAST (e.g. OpenZAP, Qualys DAST) Ability to manage secure operations of large-scale software estates, including deployment pipelines, rollback strategies, and uptime monitoring Practical experience building automated security test suites … Developer, Information Security Specialist, Salesforce, Salesforce Industries, Vlocity, Azure, OWASP CI/CD, DSOMM, SAMM, Cloud Security Posture Management, Prisma Cloud, Azure Defender, Snyk, Checkmarx, OpenZAP, Qualys, DAST, SAST, CI/CD, Infrastructure Security, Auth0, Secure APIs, Networking Protocols, DevSecOps, Secure Development, CRM Security Next Steps Please click "Apply now" and submit your up-to-date More ❯

Pre Sales Application Architect Salary: £70k basic + £6k car allowance + 15% bonus + 10% DV allowance (£83k - £93k total comp) Basingstoke: Hybrid circa 2/3 days a week on site Security Clearance: Needs SC Clearance to start and willingness to go through DV Clearance A global IT Consultancy are looking for a Pre Sales Application Architect to work on delivery opportunities taking place within their secure Defence and National Security sector. You will be responsible for the creation of design artefacts that enable the provision of Applications using industry standard methodologies. You will work closely with Solution Owners and Project Managers to ensure that solutions are in-line with approved designs and meet … Design/Configuration/Usage in a number of the following - CI/CD Pipelines, ideally Azure DevOps IaC code tooling, including Terraform, Ansible, Harbor SCA/IAST/DAST tooling, e.g. Black Duck, Coverity, Codesight, JFrog, Snyk Automated Test tooling, ideally Selenium/Robot Framework Test Management Tooling ideally Azure Test Plans Secure Secrets Management, ideally Azure DevOps and More ❯

/2 days in London Salary: Circa 65K 75K + Benefits Cybersecurity Engineer required by fast-growing, revolutionary tech company! This is a challenging, hands-on role leading the security of their applications, APIs, infrastructure, and data. Youll identify vulnerabilities, define best practices, and implement controls without slowing delivery Essential: At least 3yrs in cybersecurity, application security, or cloud security … roles Strong knowledge of web/mobile security (OWASP Top 10, API security), cloud security (AWS), and CI/CD pipeline hardening Familiar with SAST/DAST tools, vulnerability scanners, penetration testing frameworks, and monitoring platforms (e.g. Splunk, ELK, Datadog) Understanding of GDPR and data privacy best practices Tremendous opportunity offering plenty of scope for career More ❯

/2 days in London Salary: Circa 65K – 75K + Benefits Cybersecurity Engineer required by fast-growing, revolutionary tech company! This is a challenging, hands-on role leading the security of their applications, APIs, infrastructure, and data. You’ll identify vulnerabilities, define best practices, and implement controls without slowing delivery Essential: At least 3yrs in cybersecurity, application security, or cloud security … roles Strong knowledge of web/mobile security (OWASP Top 10, API security), cloud security (AWS), and CI/CD pipeline hardening Familiar with SAST/DAST tools, vulnerability scanners, penetration testing frameworks, and monitoring platforms (e.g. Splunk, ELK, Datadog) Understanding of GDPR and data privacy best practices Tremendous opportunity offering plenty of scope for career More ❯

Pre Sales Application Architect +Permanent opportunity +Hybrid 1 day on site in Bracknell/Basingstoke +SC cleared role + 70,000 - 90,000 You will be responsible for the creation of design artefacts that enable the provision of Applications using industry standard methodologies. You will work closely with Solution Owners and Project Managers to ensure that solutions are in … Capture techniques such as User Stories and Use Cases. AWS General/Usage Azure Cloud General/Usage VMWare General/Usage Technical Leadership & Design DevSecOps tooling and practices Application Security Testing SAFe (scaled agile) Processes Data Integration Focused Data Pipeline Orchestration, and ELT tooling such as Apache Airflow, Apark, NiFi, Airbyte and Singer. Message Brokers, streaming … Design/Configuration/Usage in a number of the following - CI/CD Pipelines, ideally Azure DevOps IaC code tooling, including Terraform, Ansible, Harbor SCA/IAST/DAST tooling, e.g. Black Duck, Coverity, Codesight, JFrog, Snyk Automated Test tooling, ideally Selenium/Robot Framework Test Management Tooling ideally Azure Test Plans Secure Secrets Management, ideally Azure DevOps and More ❯

Presales Consultant - Cyber Security Permanent position Salary - £50,000-£60,000 Remote working Are you a cyber security professional with strong technical insight and a passion for helping customers solve their most pressing security challenges? We're looking for a Presales Consultant (Cyber Security) to join our team and play a pivotal role in designing and … towards becoming a Presales Solution Architect as you grow your expertise and demonstrate capability. What You'll Be Doing Understanding customer requirements and scoping suitable solutions from our cyber security portfolio. Preparing proposals, technical designs, and solution documentation for bids and tenders. Supporting solution architects with presentations and client-facing materials. Collaborating with colleagues and partners to develop multi … IDS/IPS, WAF, SASE, SSE, NAC PAM, MFA, SSO, DLP, SIEM, SOAR Threat Intelligence, Incident Response, Pen Testing, Red Teaming Cloud security solutions (CASB, CNAPP, VM, DAST) Security awareness training, vCISO/vSM services, compliance frameworks (PCI, ISO, NIST, Cyber Essentials) Further information available upon application. ECS Recruitment Group Ltd is acting as an Employment Agency More ❯

My client, a Professional Services company, is looking for an IT Security Engineer to join their client (in the Insurance sector) on site in London (Kent to be exact). Please note I am away from Thursday 14th August - Wednesday 20th August. About the IT Security Engineer Role: As a Security Engineer, you'll provide hands-on … security. You'll help evolve our new Digital Platform to ensure it is secure and compliant with internal and industry regulations. You will analyze new feature code to identify security risks and work with engineers to mitigate them, applying modern security standards such as OWASP CI/CD, DSOMM, SAMM, and Cloud Security Posture management systems like … with SAST & SCA systems such as Snyk and Checkmarx, including policy management. Ability to develop Threat Models as part of risk assessment, including remediation plans (preferred). Experience with DAST systems such as OpenZAP and Qualys DAST, ideally with HTTP APIs (preferred). Knowledge of API security models, including OAuth2 and Zero Trust concepts (preferred). Experience with Azure More ❯

Lead the design and implementation of secure, scalable DevSecOps solutions across cloud, on-prem, and hybrid environments Advise customers on best practices for CI/CD, containerisation, and integrating security across the SDLC Collaborate with Sales and Consulting teams to develop technical proposals and bid responses Facilitate customer workshops, design reviews, and solution assurance activities Drive innovation and thought … Kanban, etc.) Deep expertise in Kubernetes (vanilla, EKS, AKS, OpenShift), CI/CD pipelines, and infrastructure as code (Terraform) Security integration experience across the DevSecOps lifecycle, including: SAST, DAST, SCA, and IAST tools (e.g., Checkmarx, Veracode, OWASP ZAP) Secrets management tools like HashiCorp Vault Vulnerability management solutions such as Prisma Cloud Testing frameworks like Selenium Familiarity with JIRA … are still areas of our business with clear hiring requirements - and we would like to bring talent like you on board! By the way, we have completely virtualised our application process and our recruiters remain available to you should you have any questions. We are still looking forward to getting to know you! About us Computacenter is a leading More ❯