1 to 25 of 41 Dynamic Application Security Testing Jobs in the UK

Senior Cyber Security Analyst (OWASP/SAST/DAST – Banking Client Application Security | Secure Design | Threat Modelling | DevSecOps) Locations: London, Paris, Brussels, Amsterdam Rate: Flexible Duration: 12 months We are looking for a Cyber Security Analyst specialising in Application Security and Secure Architecture … implementing secure coding practices aligned with OWASP guidelines. Security Testing & DevSecOps – Define and review security testing activities including SAST, DAST and software composition analysis (SCA), work with engineering teams to integrate security scanning into CI/CD pipelines, analyse vulnerability scan results and support remediation ...

Pipelines Ensure Agent Operates Reliably Across Production Engineering Environments Tooling & Security Integration: Integrate with Enterprise Security Tooling, including: SAST/SCA/DAST Secret Scanning Infrastructure - as - Code Security Tools Embed into Developer Workflows (GitLab/GitHub, CI/CD Pipelines, Ticketing Systems, Identity Platforms) Define Robust … Agentic Applications Prior Use of Claude Code or similar Tools to Accelerate Engineering Workflows Deep Application Security Expertise: SAST/SCA/DAST/Secret Scanning Secure Code Review Threat Modelling (OWASP Top 10, API Top 10, LLM Security Risks) Experience Integrating Security Tooling into Developer ...

limited to: DevSecOps & Pipeline Security Implement and maintain security testing in GitLab CI pipelines Configure and tune SAST, DAST, dependency scanning, and secrets detection Build automated security gates that balance rigour with delivery velocity Enable self-serve security tooling for development teams Contribute code … , DevSecOps, and secure software development Hands-on experience with CI/CD security integration (GitLab CI or similar) Familiarity with SAST/DAST tooling and dependency scanning Understanding of common vulnerabilities (OWASP Top 10) and remediation Previous experience working as a back end or full stack developer Knowledge ...

testing tools into CI pipelines, including Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Secret Detection scanning tools.* Manual penetration testing of web applications (backend and frontend).Manual penetration testing skills in the domains of cloud … Testing Guides.* Familiarity with industry-standard security frameworks such as OWASP and NIST.* Experience with security tools such as SAST, DAST, IAST, and SCA.* Exceptional analytical and investigative skills, with hands-on experience in root cause analysis.* Knowledge of current and emerging threats and techniques for exploiting ...

Senior Cyber Security Analyst - Application Security/DevSecOps/Secure Design/SAST, DAST - London Contract | 12 Months | Hybrid 8 Days onsite per month - the rest is remote working Inside of IR35 must use umbrella £600 per day We are supporting a leading international organisation … principles across software engineering and DevOps teams Embed security controls into CI/CD pipelines using modern DevSecOps practices Lead and support SAST, DAST, SCA , and container security integration activities Conduct application and infrastructure security assessments aligned to OWASP , NIST , and industry best practices Work closely ...

Senior Cloud Security Engineer (London or Bristol) We are HealthHero, Europe’s largest digital clinic. Join us at a pivotal moment as we scale our digital healthcare platform across Europe — giving you the chance to shape security at the heart of a fast-growing, AI-driven business. … Champion integration of security testing into CI/CD pipelines across all development teams and usage of automated security gates: SAST, DAST, dependency scanning, secrets detection Enable self-serve security tooling for development teams Ability to set up development environment Cloud Security Own cloud security ...

About This Role Security Engineer - DevSecOps We are seeking a highly skilled Security Engineer with strong software engineering foundations and deep expertise in secure development practices. The successful candidate will have hands-on experience with source code management, CI/CD pipelines, cloud-native environments, and secure code … review processes. You will play a key role in identifying vulnerabilities, improving developer security practices, and embedding security into modern engineering workflows. Required Skills & Experience Technical Skills Expert-level knowledge of Git and modern version control workflows Strong frontend and backend development experience Hands-on application security ...

Application Security Engineer Manchester - Hybrid, 3 days a week in the office. Commutable from Stockport, Wigan, Bolton, Rochdale, Bury, Sale, Liverpool, Warrington, and Runcorn. Up to £75,000 + benefits We're partnered exclusively with a Fintech business in Manchester who've been building their own SaaS platform … right in here. Key skills needed: Strong background in application security, ideally in a SaaS or Fintech environment Experience with SAST, DAST, and SCA tooling - Snyk, Checkmarx, Semgrep, Burp Suite, or similar Threat modelling - comfortable running sessions with engineering and product teams Solid understanding of OWASP ...

Application Security Lead - Up to £675 per day 9 months contract- Inside IR35 Fully Remote UK based CBTR is working with a leading enterprise client to hire an experienced Application Security Lead to own and evolve their application security capability across the full software … Application Security, DevSecOps, or Secure Software Engineering Deep understanding of OWASP Top 10 and exploitation techniques Hands-on experience with SAST, DAST, and SCA tools Experience integrating security into CI/CD and SDLC Cloud experience (AWS and/or Azure) Ability to translate technical risk into ...

Application Security Lead - Up to £675 per day 9 months contract- Inside IR35 Fully Remote UK based CBTR is working with a leading enterprise client to hire an experienced Application Security Lead to own and evolve their application security capability across the full software … Application Security, DevSecOps, or Secure Software Engineering Deep understanding of OWASP Top 10 and exploitation techniques Hands-on experience with SAST, DAST, and SCA tools Experience integrating security into CI/CD and SDLC Cloud experience (AWS and/or Azure) Ability to translate technical risk into ...

Application Security Lead - Up to £675 per day 9 months contract- Inside IR35 Fully Remote UK based CBTR is working with a leading enterprise client to hire an experienced Application Security Lead to own and evolve their application security capability across the full software … Application Security, DevSecOps, or Secure Software Engineering Deep understanding of OWASP Top 10 and exploitation techniques Hands-on experience with SAST, DAST, and SCA tools Experience integrating security into CI/CD and SDLC Cloud experience (AWS and/or Azure) Ability to translate technical risk into ...

Application Security Lead - Up to £675 per day 9 months contract- Inside IR35 Fully Remote UK based CBTR is working with a leading enterprise client to hire an experienced Application Security Lead to own and evolve their application security capability across the full software … Application Security, DevSecOps, or Secure Software Engineering Deep understanding of OWASP Top 10 and exploitation techniques Hands-on experience with SAST, DAST, and SCA tools Experience integrating security into CI/CD and SDLC Cloud experience (AWS and/or Azure) Ability to translate technical risk into ...

Application Security Lead - Up to £675 per day 9 months contract- Inside IR35 Fully Remote UK based CBTR is working with a leading enterprise client to hire an experienced Application Security Lead to own and evolve their application security capability across the full software … Application Security, DevSecOps, or Secure Software Engineering Deep understanding of OWASP Top 10 and exploitation techniques Hands-on experience with SAST, DAST, and SCA tools Experience integrating security into CI/CD and SDLC Cloud experience (AWS and/or Azure) Ability to translate technical risk into ...

DevSecOps Engineer – Security Led Delivery, 6 months, London/Hybrid, £550 - £600/day We’re supporting a major media & entertainment organisation looking for a hands-on DevSecOps Engineer to drive application security and BAM (Business Application Measures) improvements across a large enterprise environment. This … DevSecOps/Application Security engineering background GitHub administration & GitHub Advanced Security (GHAS) CI/CD pipeline security integration SAST/DAST tooling (CodeQL, Semgrep, OWASP ZAP etc.) Secret scanning, dependency scanning, container & IaC scanning OIDC/short-lived credentials Security remediation & vulnerability management JIRA/ ...

Retail Hybrid: either London or Welwyn Garden City (whichever is closest) 3 days per week 6 months £850 per day In short: Our Application Security team require a strong Python generalist to run, deploy and maintain purpose-built applications. You'll need solid experience across Python development, DevOps … cross-functional teams to integrate security practices. Experience working in an agile environment, such as Scrum. Nice to have Experience with SAST/DAST tooling and security automation Familiarity with API security patterns (JWT, OAuth, rate limiting) Comfortable working with AI-assisted development tools Experience with Infrastructure ...

Retail Hybrid: either London or Welwyn Garden City (whichever is closest) 3 days per week 6 months £850 per day In short: Our Application Security team require a strong Python generalist to run, deploy and maintain purpose-built applications. You'll need solid experience across Python development, DevOps … cross-functional teams to integrate security practices. Experience working in an agile environment, such as Scrum. Nice to have Experience with SAST/DAST tooling and security automation Familiarity with API security patterns (JWT, OAuth, rate limiting) Comfortable working with AI-assisted development tools Experience with Infrastructure ...

ownership optimisation. The Expert Software Architect translates business strategy into actionable architectural frameworks, guiding teams through complex design decisions and trade‐offs across performance, security, scalability, maintainability, and compliance. Architecture Leadership Lead the design of scalable, high‐performing architectures across complex systems or multiple products. Define enterprise‐aligned architectural … secure identity patterns, embedded within end‐to‐end system design. Quality & Assurance: Experience with unit testing and security testing practices (SAST, DAST, SCA, penetration testing) to ensure robust and secure delivery. Fringe Benefits Bachelor’s degree in Computer Science, Software Engineering, Information Technology, or related field ...

Salt Digital Recruitment is searching for a Senior Cyber Security Analyst to join a high-performing team. This role focuses on application security, secure architecture, and threat modelling, ensuring security is embedded throughout the software development lifecycle. The ideal candidate will have 7–12+ years … experience in cyber security, strong application security expertise, and a collaborative approach with engineering teams. This opportunity allows you to influence security practices across modern platforms. #J-18808-Ljbffr ...

Security Architect 2-3 days Bristol then rest remote 6 months likely extension £600pd outside IR35 Active DV or SC clearance required Key Responsibilities Architecture & Design Develop secure architecture designs for container platforms (e.g., Kubernetes, OpenShift, Docker). Architect and strengthen security controls across virtualisation technologies , including VMware … Policy Desirable Skills Experience with OpenShift or enterprise Kubernetes distributions. Hands on security tooling (Falco, Istio, Calico, etc.). Experience with SAST/DAST, SBOMs, and software supply chain security. Familiarity with automation tooling (Terraform, Ansible, Helm). Certifications such as: CCSK/CCSP CISSP CISM Kubernetes Security ...

requirements: • Seeking a strong application security expert with deep penetration testing … exposure. • Must have knowledge of various AppSec tools and have a wider appreciation of cyber security in general. • Secure code review, managing SAST, DAST and VM tools across the firm globally • Knowledge of mobile pen testing is highly advantageous • Linux is a key component for the role, also ...

Senior Product Security Engineer London (Hybrid) Salary: £80,000 - £100,000 This is an opportunity to join a forward-thinking technology-driven business where security is embedded from day one. You will play a key role in shaping how products are built securely, working closely with engineering teams … features and systems Collaborate closely with engineering teams to design secure architectures Integrate and optimise security tooling such as SAST, SCA, DAST and vulnerability scanning Help drive secure development lifecycle practices across teams Deliver secure engineering training and guidance to developers Support triage and remediation of vulnerabilities from testing ...

high-impact software solutions within complex cloud and cyber environments. This role is ideal for someone who enjoys solving challenging technical problems, embedding security throughout the development lifecycle, and working collaboratively across engineering, delivery, and stakeholder teams. You will play a key role in designing, developing, and maintaining secure … best practices DevSecOps & Automation Experience with CI/CD pipelines and automation tooling Knowledge of security integration across the SDLC including: SAST DAST Continuous testing Experience using tools such as Jenkins or GitHub Actions Containerisation & Testing Experience with Docker or similar containerisation technologies Experience with testing ...

Azure Security Consultant - Azure DevSecOps Consultant – Information Security We are partnered with a major enterprise undergoing significant cloud-security transformation, and we're seeking an experienced Azure DevSecOps Consultant to join their Information Security function. This is a pivotal, hands-on role focused on designing, implementing … Implementing automated cloud control validation aligned to internal and industry frameworks. Leading the adoption of Policy as Code principles. Integrating security tooling (SAST, DAST, SCA, secret scanning) into the DevOps toolchain. Creating documentation, SOPs, and guidance to support secure development and cloud practices. Translating complex technical risks into clear ...

About Engineering at Engine by Starling - https://www.enginebystarling.com/At Engine by Starling, we don't do "checkbox security". We treat security as a first-class engineering discipline. As a Cloud Security Engineer, you will be a hands-on builder responsible for the security … adhering to cloud security standards. Pipeline & Supply Chain: Contribute to maintaining the integrity of our software supply chain. You’ll integrate SAST/DAST/SCA tools into our CI/CD pipelines (GitHub Actions/TeamCity) and manage container provenance. Cloud Native Defense: Engineer Kubernetes security solutions ...

/CD pipeline quality using Azure DevOps. Contribute to the design and maintenance of automated deployment pipelines. Drive DevSecOps best practices, including: SAST/DAST security scanning Dependency management Environment segregation Secure software development practices Quality & Compliance Ensure all solutions meet WCAG AA accessibility standards. Provide guidance … platforms. Cloud-native development on Microsoft Azure. Development Practices - Mandatory RESTful API design, development, and life cycle management. Secure development practices including SAST/DAST tooling and dependency management. Code review leadership - ability to set and enforce standards across a team. Technical documentation produced to a high standard. WCAG ...