26 to 41 of 41 Dynamic Application Security Testing Jobs in the UK

frequent job changes may not align with the values we prioritize. Your Mission Newpage is hiring a Staff DevSecOps Engineer to lead the security engineering posture of a strategic engagement with a global top-tier pharmaceutical company. As the technical anchor for the account, you will define how secure … guardrails enforced as code. Build paved-road CI/CD pipelines (GitHub Actions, GitLab CI, AWS CodePipeline, Azure DevOps, or Jenkins) with integrated SAST, DAST, SCA, secrets scanning, IaC scanning, container scanning, and SBOM generation. Implement policy-as-code using OPA/Rego, Checkov, and cloud-native equivalents (AWS Config ...

platform for 10 years. As the business has scaled, so has the complexity of their engineering environment - and they've reached the point where security needs to be built into every stage of delivery, not bolted on at the end. They're hiring a DevSecOps Engineer … native environment Strong CI/CD experience - GitHub Actions, GitLab CI, Jenkins, or similar - and the ability to integrate security gates properly SAST, DAST, and SCA tooling - Snyk, Checkov, Trivy, Semgrep, or similar Infrastructure as Code - Terraform, CloudFormation - and identifying misconfigs before they hit production Container and Kubernetes security ...

Engineer Location: London (Hybrid) Engagement Type: Day Rate Contract (Inside IR35) The Assignment This is a high-impact, tactical consulting role. Our client has security tooling in flightincluding Snyk, SonarQube, and automated pipelinesbut they need an consultant to make it land. Currently, they are battling tool noise, backlog fatigue … NIST SSDF frameworks, translating findings into a prioritised 12-month risk-reduction roadmap. Pipeline Optimisation: Tuned tool signal-to-noise ratios (SAST, SCA, DAST, IaC) aggressively. Triage backlogs, suppress false positives, and refine CI/CD gates (GitHub Actions, Azure DevOps, or GitLab) to protect engineering velocity. High-Touch Consulting ...

ownership optimisation. The Expert Software Architect translates business strategy into actionable architectural frameworks, guiding teams through complex design decisions and trade‐offs across performance, security, scalability, maintainability, and compliance. Architecture Leadership Lead the design of scalable, high-performing architectures across complex systems or multiple products. Define enterprise-aligned architectural … OWASP Top 10, WCAG, OAuth2, MFA, and secure identity patterns. Quality & Assurance: Proficient in unit testing frameworks; governance and execution of SAST, DAST, SCA, and penetration testing processes. Fringe Benefits Bachelor’s degree in Computer Science, Software Engineering, Information Technology, or related field (or international equivalent). Clear ...

ownership optimisation. The Expert Software Architect translates business strategy into actionable architectural frameworks, guiding teams through complex design decisions and trade‐offs across performance, security, scalability, maintainability, and compliance. Architecture Leadership Lead the design of scalable, high-performing architectures across complex systems or multiple products. Define enterprise-aligned architectural … OWASP Top 10, WCAG, OAuth2, MFA, and secure identity patterns. Quality & Assurance: Proficient in unit testing frameworks; governance and execution of SAST, DAST, SCA, and penetration testing processes. Benefits We offer a competitive compensation and benefits package, opportunities for career growth, Pension plan with company‐matched contributions, generous ...

microservices design principles. Contribute to CI/CD pipelines in Azure DevOps - build, test, and deployment automation. Apply DevSecOps practices including SAST/DAST scanning, dependency management, and environment segregation. Participate in code reviews, uphold coding standards, and implement secure development practices. Support Legacy system modernisation - migrating from older Windows …/or Bicep Containerisation - Docker and/or Kubernetes Development Practices - Mandatory RESTful API design, development, and life cycle management Secure development - SAST/DAST tooling, code review, OWASP awareness Technical documentation to a high standard On-site in Taunton, Somerset - 2 days per week minimum Desirable Skills & Experience Legacy ...

includingtenantisolationatbothapplicationanddatalayers Hands-onexperiencewithAWS,AzureorGCP UnderstandingtoAI/MLplatformsandinfrastructure(e.g.modelpipelines,servinglayers,vectordatabases,LLMintegrations) Strongknowledgeofauthenticationandauthorizationpatterns(OAuth2,OIDC,SAML,JWT,RBAC/ABAC)andhowtoimplementthematscale ExperienceintegratingsecurityintoCI/CDpipelines(SAST,DAST,SCA,containerscanning) ExperiencewithInfrastructureasCode(e.g.Terraform,Pulumi)andapplyingsecuritypolicyascode Thecompanyareverybigontraininganddevelopmentandareconsideringcandidateswithoutalltherequiredskills. Youllplayakeyroleindrivingsecure-by-designprinciples,workingcloselywithengineeringteamstoembedsecurityintoarchitecture,development,anddeployment. Applynowtobeconsidered-AlternativelyfollowReVybeITRecruitmentforsimilarjobs. ...

cyber security engineer who gets genuine satisfaction from closing vulnerabilities, not just finding them? DNV Energy Systems is seeking a Senior Cyber Security Engineer to take ownership of the hands‐on delivery of security across a portfolio of digital products. In this role, you will work closely … right, giving you the platform to drive meaningful, lasting improvements. What you’ll do: Vulnerability Management & Tooling Maintain and operate SAST/DAST tooling (including Veracode) across the digital portfolio Lead CVE triage, assessing severity, exploitability and remediation priority across all products Track and manage vulnerability remediation to closure, working ...

Develop CI/CD pipelines (GitHub Actions, Azure DevOps, GitLab) and reusable modules, guardrails, and policy as code to support secure, consistent cloud adoption. Security … DevSecOps Apply end‐to‐end security across identity, networking, encryption, secrets, MFA, and zero trust. Implement automated security scanning (SAST/DAST), dependency checks, and secure pipeline patterns, aligning platforms with organisational and regulatory standards. Technical Leadership and Delivery Act as technical authority, setting architectural direction, standards ...

Develop CI/CD pipelines (GitHub Actions, Azure DevOps, GitLab) and reusable modules, guardrails, and policy as code to support secure, consistent cloud adoption. Security … DevSecOps Apply end‐to‐end security across identity, networking, encryption, secrets, MFA, and zero trust. Implement automated security scanning (SAST/DAST), dependency checks, and secure pipeline patterns, aligning platforms with organisational and regulatory standards. Technical Leadership and Delivery Act as technical authority, setting architectural direction, standards ...

stakeholders to refine requirements and shape technical solutions Guide cloud migration strategies and hybrid-cloud approaches Support rapid prototyping and technical investigation activities Embed security best practices and DevSecOps principles throughout delivery Contribute to CI/CD pipelines, automation, and engineering standards Coach and mentor engineers, supporting technical development … scalability, and security within distributed systems DevSecOps & Automation Experience with CI/CD pipelines and automation tooling Knowledge of DevSecOps practices including SAST, DAST, and continuous testing Experience with tools such as Jenkins and GitHub Actions Containerisation & Testing Experience with Docker or containerisation technologies Strong understanding ...

vision sur l’ensemble des vulnérabilités existantes, ainsi que connaître les principales vulnérabilités, comme celles présentes dans le top 10 OWASP. En tant que security champion vous accompagnerez nos clients dans une meilleure prise en compte de la sécurité au sein de leurs pratiques de développement. Votre objectif Aider … intégrer la sécurité dans le cycle de vie des applications Posséder une solide connaissance des outils utilisés dans les chaînes CI/CD (SAST, DAST, IaC Scan, Secret Management ... ) Accompagner nos clients dans la montée en compétences et la formations à la sécurité applicative Exemples de missions ...

Milan Italy). The Role The responsibilities will include: Help to design, build, and maintain AI‐augmented DevOps pipelines, integrating LLM‐powered tooling, automated testing, code generation, observability, and environment provisioning. Develop automation for operational workflows (permissions, tagging, remediation tasks, infrastructure housekeeping, monitoring pipelines) Help to build foundational components … native architectures. Implement as necessary any and all of the security processes required for operational suitability within WTW for solutions (including SAST and DAST processes) Ensure operational stability, observability, and controlled evolution of AI and agentic systems for the ICT Consultancy business Maintain & support AI tools and AI based ...

frameworks that ensure client software is delivered to the highest quality standards. Lead test automation strategy and contribute to SSDLC practices including SAST/DAST integration within CI/CD pipelines. KEY RESPONSIBILITIES Define and implement automated test strategies aligned to client Testing Strategy and GDS delivery standards. Build … regression, and performance testing. Integrate automated tests into Azure DevOps CI/CD pipelines ensuring continuous quality gates. Implement and maintain SAST/DAST tooling within the SDLC pipeline in collaboration with DevOps engineers. Produce Test Strategy, Test Approach, and Test Summary Report artefacts per work package. Work with UKHO ...

tooling, and best practice guidance. Key Responsibilities Design and implement scalable CI/CD pipelines using Azure DevOps Integrate security tooling (SAST/DAST) into build and release pipelines Embed DevSecOps controls, including: Vulnerability scanning Secure build gates Policy enforcement Collaborate with engineering and security teams to improve … Experience Strong experience with Azure DevOps (CI/CD pipelines) Proven background in DevOps/DevSecOps consulting roles Hands-on experience integrating SAST and DAST tools into pipelines Solid understanding of secure software delivery practices Experience with: Containerisation Orchestration Strong knowledge of: Git and branching strategies Automation and infrastructure ...

security:** embed **contract, performance, resilience and security tests** in CI for CEP services and extensions; enforce push‐protection, SAST/SCA/DAST and SBOM/provenance; and evolve **compliance‐as‐code guardrails** that balance speed with safety across Dynamics 365, Power Apps and Power Automate solutions* **Lead … recovery drills so reliability *improves as speed increases*.* **Secure‐by‐design & compliance‐as‐code:** you enforce push‐protection, SAST/SCA/DAST, IaC scanning, SBOM/provenance and guardrails that balance speed with safety for Dynamics and Power Platform solutions.* **On‐demand environments & data:** you make **ephemeral, production ...