1 to 25 of 31 Dynamic Application Security Testing Jobs in the UK

grows. Continuously simulate attacker techniques to validate product resilience. Ø Tooling & Automation Drive adoption of SAST (Static Application Security Testing) and DAST (Dynamic Application Security Testing) solutions, with emphasis on Java and web application frameworks. Integrate automated security testing into … improvement. Knowledge, Skills and Abilities : Ø Strong knowledge of secure development practices, threat modeling, and vulnerability management. Ø Hands-on experience with SAST/DAST tools and CI/CD integration. Ø Excellent communication skills to engage developers, auditors, and executives. Ø Proven experience leading teams in agile/SCRUM ...

grows. Continuously simulate attacker techniques to validate product resilience. Ø Tooling & Automation Drive adoption of SAST (Static Application Security Testing) and DAST (Dynamic Application Security Testing) solutions, with emphasis on Java and web application frameworks. Integrate automated security testing into … improvement. Knowledge, Skills and Abilities : Ø Strong knowledge of secure development practices, threat modeling, and vulnerability management. Ø Hands-on experience with SAST/DAST tools and CI/CD integration. Ø Excellent communication skills to engage developers, auditors, and executives. Ø Proven experience leading teams in agile/SCRUM ...

INFORMATION SECURITY SPECIALIST KEY POINTS * Hybrid working model (Stoke-on-Trent) - up to £55,000 p/a* Focus on application security, code analysis, threat modelling and penetration testing* Work closely with Software Development teams across a large technical environment* Opportunity to influence secure development practices … client in conjunction with this vacancy only. KEY SKILLS Application Security, AppSec, OWASP, Threat Modelling, Secure Development Lifecycle, Code Review, DAST, SAST, CI/CD, Penetration Testing, Supply Chain Security, Risk Assessment, Software Security, Automation ...

Title: Senior Application Security EngineerSalary: £70,000Location: Reading/remote About the Organisation Join a fast-growing UK technology and consulting firm that's investing heavily in cutting-edge cyber security. With a strong focus on innovation, collaboration, and professional development, this company empowers its people to shape … software are secure by design. Drive vulnerability management and implement a risk-based approach across the technology stack. Perform security testing (SAST, DAST, SCA) and work with developers to remediate findings. Support cloud security controls (primarily Azure, including cloud-native apps). Champion secure development, threat modelling ...

Title: Senior Application Security EngineerSalary: £70,000Location: Reading/remote About the Organisation Join a fast-growing UK technology and consulting firm that's investing heavily in cutting-edge cyber security. With a strong focus on innovation, collaboration, and professional development, this company empowers its people to shape … software are secure by design. Drive vulnerability management and implement a risk-based approach across the technology stack. Perform security testing (SAST, DAST, SCA) and work with developers to remediate findings. Support cloud security controls (primarily Azure, including cloud-native apps). Champion secure development, threat modelling ...

Title: Senior Application Security Engineer Salary: £70,000 Location: Reading/remote About the Organisation Join a fast-growing UK technology and consulting firm that's investing heavily in cutting-edge cyber security. With a strong focus on innovation, collaboration, and professional development, this company empowers its people … software are secure by design. Drive vulnerability management and implement a risk-based approach across the technology stack. Perform security testing (SAST, DAST, SCA) and work with developers to remediate findings. Support cloud security controls (primarily Azure, including cloud-native apps). Champion secure development, threat modelling ...

client currently seek a SC Cleared AWS DevOps Engineer to join their dynamic team on an initial 6 month contract. This role is Hybrid (2 days a month in office based in Stratford) Key Skills and Responsibilities: Design, deliver … support secure and scalable AWS infrastructure using services like EC2, S3, ECS, and FARGATE Integrate SAST (Static Application Security Testing) and DAST (Dynamic Application Security Testing) tools into CI/CD pipelines to enforce secure development practices Automate infrastructure provisioning using CloudFormation, Terraform ...

client currently seek a SC Cleared AWS DevOps Engineer to join their dynamic team on an initial 6 month contract. This role is Hybrid (2 days a month in office based in Stratford) Key Skills and Responsibilities: Design, deliver … support secure and scalable AWS infrastructure using services like EC2, S3, ECS, and FARGATE Integrate SAST (Static Application Security Testing) and DAST (Dynamic Application Security Testing) tools into CI/CD pipelines to enforce secure development practices Automate infrastructure provisioning using CloudFormation, Terraform ...

Cyber Security Consultant £30,000 - £45,000 per annum Melton Mowbray Role Summary Our client is a growing MSP based in Melton Mowbray, helping organisations of all sizes strengthen their security posture and achieve recognised certifications. They are looking for a skilled Cyber Security Consultant specialising … CHECK Team Member . OSCP/OSWE/OSEP/GPEN/eCPPT/similar. Experience with secure code review, SAST/DAST pipelines, or DevSecOps. Familiarity with ISO 27001 or wider GRC frameworks. What Our Client Offers: Competitive salary and annual performance bonus. Training budget and certification support. Clear ...

monitoring, incident response) EDR (Endpoint Detection & Response) DLP (Data Loss Prevention) IAM (Identity & Access Management) Application Security (AppSec testing, SAST/DAST, secure SDLC, code review) Responsibilities include: Understanding customer security posture, pain points, compliance requirements, and risk appetite. Working with presales/SMEs to shape … managed endpoint security DLP technologies and data protection strategies IAM (SSO, MFA, PAM, lifecycle management) Application security concepts and tools (SAST, DAST, code review, DevSecOps) Familiarity with compliance and regulatory frameworks (e.g. ISO 27001, SOC2, GDPR, PCI-DSS) is a plus. Comfort dealing with complex, multi-stakeholder ...

monitoring, incident response) EDR (Endpoint Detection & Response) DLP (Data Loss Prevention) IAM (Identity & Access Management) Application Security (AppSec testing, SAST/DAST, secure SDLC, code review) Responsibilities include: Understanding customer security posture, pain points, compliance requirements, and risk appetite. Working with presales/SMEs to shape … managed endpoint security DLP technologies and data protection strategies IAM (SSO, MFA, PAM, lifecycle management) Application security concepts and tools (SAST, DAST, code review, DevSecOps) Familiarity with compliance and regulatory frameworks (e.g. ISO 27001, SOC2, GDPR, PCI-DSS) is a plus. Comfort dealing with complex, multi-stakeholder ...

sources, machine learning and AI to make machines do the heavy lifting About The Role We are looking for a hands-on Staff Cyber Security Engineer to join our InfoSec team and help secure our growing platform and products. This role requires an engineer who can bridge … Work directly with engineering teams to embed security best practices throughout the SDLC. Automation: Implement, maintain, and tune DevSecOps tools and pipelines (SAST, DAST, SCA) to automatically identify and remediate security flaws in code and infrastructure. Threat Modelling: Conduct and facilitate threat modelling sessions for new features ...

unrivalled - though this isn't for the feint of heart, an established Business in growth phase and a true Unicorn. The Role: The Senior Security Engineer will provide hands-on technical leadership within the UK, ensuring that cyber security strategy and architecture defined by Group are implemented effectively … initial teams/zoom with those selected. Keywords: Security Engineer, Senior Security Engineer, Palo Alto, SOC, SOC 2, ISO27001, CIS, SAST, DAST, VPN, Vulnerability, Pen Testing, InfoSec, CyberSec ...

immediately available Test Manager with experience in connected vehicle ecosystems, IoT, or automotive software testing? This role provides leadership and oversight across all test activities, from planning through execution to sign-off, with accountability for ensuring that solutions are robust, reliable, and fit for purpose. The Test Manager will … systems and microservices architectures. Working knowledge of OWASP standards, common security vulnerabilities, and experience conducting or coordinating security testing including SAST, DAST, and penetration testing. Understanding of authentication and authorization frameworks (OAuth, JWT, SAML) and familiarity with secure coding practices and threat modelling Experience in test automation ...

high-impact DevOps and Automation Evangelist responsible for the technical implementation and strategic direction of the DevSecOps platform, ensuring alignment with critical business and security objectives. Core Responsibilities Technical DevSecOps Ownership: Lead the design, technical implementation, delivery, and assurance of the DevSecOps tooling stack and associated processes/WoW. … Secrets: IaC tooling (Terraform, Ansible), Harbor, and Secure Secrets Management (Azure DevOps, Hashicorp Vault). Application Security (AppSec): SCA/IAST/DAST tooling (e.g., Black Duck, Coverity, Snyk). Version Control: Deep proficiency with Git. Foundational: Software Development background, strong technical leadership, and expertise in DevSecOps practices. ...

client within Investment Banking are looking for a DevSecOps SME to join their team.The role will be working on the integration of security practices … into our DevOps pipelinesRequirements Design, implement, and maintaining secure CI/CD pipelines. Integrate security tools and practices into DevOps workflows (e.g., SAST, DAST, SCA, secrets management). Collaborate with development, operations, and security teams to implement and ensure secure coding and deployment practices. Advise on threat modelling ...

client within Investment Banking are looking for a DevSecOps SME to join their team. The role will be working on the integration of security practices into … DevOps pipelines Requirements Design, implement, and maintaining secure CI/CD pipelines. Integrate security tools and practices into DevOps workflows (e.g., SAST, DAST, SCA, secrets management). Collaborate with development, operations, and security teams to implement and ensure secure coding and deployment practices. Advise on threat modelling, risk ...

client is a fast-growing cyber-defence and threat-intelligence company committed to protecting organisations from sophisticated cyber threats. They combine advanced security analytics, automation and human expertise to deliver real-time defence across modern cloud and on-prem environments. They are expanding their engineering team and looking … cloud and on-prem environments. +Build and manage Infrastructure-as-Code (Terraform, Ansible, CloudFormation, etc.). +Integrate security tooling into development workflows: SAST, DAST, dependency scanning, secrets management, etc. +Collaborate with engineering teams to perform threat modelling and ensure secure system design. Key Skills and Experience: +Strong experience with ...

within the UK defence sector. You'll contribute to this by driving the technical delivery of the DevSecOps (CI/CD pipelines and integrated security tooling) and associated processes, ensuring these are delivered and utilised in the most effective way. The role will sit in their Digital function which … number of the following - CI/CD Pipelines, ideally Azure DevOps IaC code tooling , including Terraform, Ansible, Harbor SCA/IAST/DAST tooling, e.g. Black Duck, Coverity, Codesight, JFrog, Snyk Automated Test tooling , ideally Selenium/Robot Framework Test Management Tooling ideally Azure Test Plans Secure Secrets Management, ideally ...

Security Vulnerability Engineer Contract - Inside IR35 London - Hybrid (2 - 3 days a week in office) 6 months Are you a skilled software engineer with a passion for cybersecurity? This company is seeking a talented individual to join their team as a Security vulnerability engineer. This is an excellent … experience with HackerOne or Similar Bug Bounty technology Desirable Good scripting experience (e.g. Python). Hands-on use of SAST, SCA, secrets scanning, and DAST tools, especially in CI/CD pipelines. Awareness of CI/CD and infrastructure security patterns (GitHub Actions, Terraform, Kubernetes, least-privilege IAM). ...

python, shell script, perl etc Must have implemented security tools and technologies as part of CICD pipeline fragments in Gitlab such as SAST, DAST, Threat Modelling, SCA, Container Security analysis etc. Strong experience in creating Infrastructure as Code using AWS CloudFormation, Terraform, CDK, Packer, Ansible. Strong understanding ...

Requirements 1. Architecture Leadership & Platform Ownership Own the architecture, design, standards, patterns, and roadmap of the enterprise API Platform across Azure, AKS, APIM, networking, security, observability, and DevOps layers. Translate business, security, and domain requirements into scalable, secure, highly available platform architectures. Provide authoritative architectural guidance while remaining … APIM deployments, testing, API versioning, and documentation automation. Establish CI/CD pipelines for Terraform, .NET API builds, image scanning, SAST/DAST, compliance enforcement. 8. Hands-On .NET Core API Integration & Code Reviews Review .NET Core API implementations to ensure correct API design, platform alignment, and cloud-native ...

Requirements 1. Architecture Leadership & Platform Ownership Own the architecture, design, standards, patterns, and roadmap of the enterprise API Platform across Azure, AKS, APIM, networking, security, observability, and DevOps layers. Translate business, security, and domain requirements into scalable, secure, highly available platform architectures. Provide authoritative architectural guidance while remaining … APIM deployments, testing, API versioning, and documentation automation. Establish CI/CD pipelines for Terraform, .NET API builds, image scanning, SAST/DAST, compliance enforcement. 8. Hands-On .NET Core API Integration & Code Reviews Review .NET Core API implementations to ensure correct API design, platform alignment, and cloud-native ...

long-term client of ours. The role will be leading and contributing to the technical delivery of the DevSecOps processes, pipelines and integrated security tooling. Your role will involve Responsible for the technical implementation, delivery and assurance of the DevSecOps tooling, associated processes and ways of working. Leading Technical … experience in the Implementation/Configuration/Usage in several of the following: - CI/CD Pipelines IaC code tooling SCA/IAST/DAST tooling Automated Test tooling Test Management Tooling Secure Secrets Management Version control with Git This role will require you to be willing and eligible ...

Session, Codable Database – Swift Data, Core data, SQLite and Caching Techniques Background Task Handling using Background Modes GCD and Operation Queues, Promise Kit Unit Testing – XCTest, XCUITest, Snapshot Testing Reactive Programming Paradigm: Swift UI with Swift Concurrency Localization with best practices Country specific rollout with configuration files Familiarity … Code reviews and mentor App Store/Play Store Distribution, Beta Releases CI/CD tool usage e.g Github Actions/Fastlane. SAST/DAST tool familiarity will be nice to have skillset Execute Re-platform assessments for Mobile Applications Ability to create application architectures & provide solutions in more ...