22 of 22 OWASP Jobs in the South East

architectures . Proven experience with risk assessment methodologies and maintaining enterprise risk registers . Working knowledge of risk assessment methodologies (e.g. ISO 31000, FAIR, OWASP risk rating). Strong understanding of Gov Assure, CAF, ISO 27001, Cyber Essentials, and NIST frameworks. Experience conducting or supporting security audits and implementing remediation ...

Operations role within a large or complex enterprise environment. Strong understanding of cybersecurity standards and frameworks, including ISO 27001, NIST 800 53, CIS Controls, OWASP, and SOC1/2. Guidant, Carbon60, Lorien & SRG - The Impellam Group Portfolio are acting as an Employment Business in relation to this vacancy. ...

Essentials), and drive secure-by-design practices. Essential Skills: Designing & implementing secure cloud/infrastructure architectures Risk assessment & maintaining risk registers (ISO 31000, FAIR, OWASP) Knowledge of Gov Assure, CAF, ISO 27001, Cyber Essentials, NIST Conducting/supporting security audits & remediation Platform security (Entra ID, M365 E5, Azure IaaS/ ...

assurance/risk/governance roles Proven background in secure cloud or infrastructure design (Azure/M365) Experience with risk frameworks (ISO 31000, NIST, OWASP etc.) Knowledge of GovAssure, CAF, ISO27001, Cyber Essentials Entra ID/Azure/M365 SIEM/EDR/vulnerability management tools Access control models (RBAC ...

assurance/risk/governance roles Proven background in secure cloud or infrastructure design (Azure/M365) Experience with risk frameworks (ISO 31000, NIST, OWASP etc.) Knowledge of GovAssure, CAF, ISO27001, Cyber Essentials Entra ID/Azure/M365 SIEM/EDR/vulnerability management tools Access control models (RBAC ...

frameworks and best practices. Experience designing solutions across cloud platforms such as Microsoft Azure or AWS. Knowledge of secure architecture and development practices (e.g. OWASP, NCSC principles). Experience with DevOps, CI/CD pipelines and modern software delivery practices. Strong knowledge of microservices, APIs and web services (REST, SOAP ...

doing Lead backend architecture – Define and evolve scalable, secure, high-performance backend systems Set engineering standards – Champion best practices, secure coding (OWASP), and high-quality delivery Hands-on technical contribution – Support critical backend work and review complex code Guide teams & mentor engineers – Facilitate design discussions, code reviews, and technical decision ...

framework, and security maturity models such as OpenSAMM and C2M2. Strong working knowledge of recognised security frameworks and standards, including NIST Cybersecurity Framework, OWASP, SANS Top 25, and regulatory requirements such as GDPR and PCI DSS. Demonstrated technical expertise across modern technologies and architectures, including virtualisation, cloud computing, and serverless ...

execute the implementation of A/B testing experiences across Sagas sites, including but not limited to coding using HTML and Javascript. CyberSecurity OWASP Top 10 The Ideal Candidate You will have already worked as an Application Developer with proven experience in React and .NET. Additional experience with c#, HTML ...

adversarial TTPs • Proven ability to identify, validate, and clearly articulate vulnerabilities and risk • Experience producing high-quality reports with clear remediation guidance • Knowledge of OWASP and application security principles • Experience with automated, dynamic, and static security testing tools • Ability to perform threat modelling and attack surface analysis • Experience working with ...

lead the implementation of security controls across the Azure estate, including: Designing and deploying perimeter protection using Azure Front Door with WAF policies (OWASP Top 10, bot protection). Analysing traffic, tuning WAF rules, and working with stakeholders to reduce false positives. Defining and enforcing governance through Azure Policy, particularly ...

years of hands-on penetration testing experience across network, web, cloud, internal, red team, or purple team environments Excellent knowledge of: MITRE ATT&CK OWASP Threat modelling Attack surface analysis Experience with automated, dynamic, and static security testing tools Knowledge of regulatory frameworks including GDPR, PCI-DSS, and related compliance ...

architecture, dev-sec-ops, and network security. Experience in browser security or mobile app security is desirable. Good understanding of industry standards such as OWASP ASVS, OWASP Top-10, CIS benchmarks. Hands-on experience with complex Azure and AWS architectures with an emphasis on containerised workloads. Command-line/ ...

accreditors to define security requirements and advise on risk mitigation strategies. Ensure adherence to security frameworks, regulatory requirements, and industry standards including GDPR, OWASP, and NCSC principles. Support the design and implementation of DevSecOps pipelines, secure CI/CD processes, and automated security tooling. Contribute to enterprise security strategy, architecture … development lifecycle (SSDLC) practices. Knowledge of secure architecture patterns, secure web application development, and API security. Experience implementing and governing security controls aligned to OWASP, NCSC Cloud Security Principles, and GDPR. Strong understanding of authentication and authorisation technologies including SAML, OAuth2, OpenID Connect, Active Directory, ADFS, and LDAP. Experience supporting ...

Excellence for secure engineering, driving consistency and best practice Develop and embed SDLC frameworks, policies, and guardrails aligned to leading standards (NIST SSDF, OWASP, ISO) Create and scale a pan-European virtual capability, influencing without direct authority Partner with senior stakeholders across engineering, product, legal, and commercial teams to embed … complex environment. You’ll bring: Proven experience leading secure development or DevSecOps transformation at scale Deep knowledge of SDLC security frameworks (e.g. NIST SSDF, OWASP SAMM/ASVS, ISO 27034) Strong understanding of modern engineering practices (Agile, CI/CD, cloud, automation) Expertise in application security, threat modelling, and secure ...

maintain scalable, secure systems Improve and modernise existing architecture with a focus on DevSecOps Lead and support the transition to microservices on AWS Ensure OWASP security standards across the codebase Participate in Agile ceremonies, code reviews, and sprint planning Mentor junior developers and uphold high engineering standards Collaborate closely with … Laravel, MySQL, JavaScript, CSS, Tailwind, Livewire Experience with React/NextJS or similar frameworks Strong AWS experience (EC2, ECS, S3, Lambda) Solid understanding of OWASP, DevSecOps, and RESTful APIs Experience with Git, CI/CD pipelines, and Agile (Scrum, Jira) Strong problem-solving skills and a collaborative mindset Nice ...

Centralised Eval Platform: Operate a firm-wide service to measure success rates, uncertainty, hallucination, and bias across all non-deterministic systems. Secure Architecture: Map OWASP LLM Top 10 and agentic threats to technical controls; manage AWS Bedrock Guardrails and Knowledge Bases. AI Supply Chain: Own the AI-BOM , ensuring supply … Depth: Strong grasp of FMs, RAG, tool-use, and the failure modes of agentic workflows. Security & Compliance: Deep knowledge of NIST AI RMF, OWASP LLM Top 10, and UK/EU financial regulations (FCA/DORA). Testing Automation: Proven ability to build measurement frameworks for drift, memorization, and adversarial ...

Agile, WCAG 2.1 AA compliance, MVC, ASP.NET, C#.NET, .Net Core, Web API, Entity Framework, HTML, CSS, JavaScript, Angular, Umbraco, UI/UX, Responsive design, OWASP security, Azure cloud hosting, SQL server, CI/CD pipelines Remote with occasional travel 3 months initial contract – likely to extend … requirements into application specifications. Strong understanding of UI, UX, and responsive design. Experience in delivering accessible applications. Knowledge of secure application development practices addressing OWASP security concerns. Agile backlog management and experience of code quality reviews. Prototyping new techniques and solutions. Excellent engagement, collaboration, and communication skills. Experience with Azure ...

Agile, WCAG 2.1 AA compliance, MVC, ASP.NET, C#.NET, .Net Core, Web API, Entity Framework, HTML, CSS, JavaScript, Angular, Umbraco, UI/UX, Responsive design, OWASP security, Azure cloud hosting, SQL server, CI/CD pipelines Remote with occasional travel 3 months initial contract – likely to extend … requirements into application specifications. Strong understanding of UI, UX, and responsive design. Experience in delivering accessible applications. Knowledge of secure application development practices addressing OWASP security concerns. Agile backlog management and experience of code quality reviews. Prototyping new techniques and solutions. Excellent engagement, collaboration, and communication skills. Experience with Azure ...

Centralised Eval Platform: Operate a firm-wide service to measure success rates, uncertainty, hallucination, and bias across all non-deterministic systems. Secure Architecture: Map OWASP LLM Top 10 and agentic threats to technical controls; manage AWS Bedrock Guardrails and Knowledge Bases. AI Supply Chain: Own the AI-BOM , ensuring supply … Depth: Strong grasp of FMs, RAG, tool-use, and the failure modes of agentic workflows. Security & Compliance: Deep knowledge of NIST AI RMF, OWASP LLM Top 10, and UK/EU financial regulations (FCA/DORA). Testing Automation: Proven ability to build measurement frameworks for drift, memorization, and adversarial ...

version control . Collaborate closely with Product Managers and business users in an Agile SCRUM environment. Ensure quality assurance and compliance with OWASP Top 10 and security standards. Support Provide 2nd and 3rd line support across Dynamics CRM applications. Manage incidents, service requests, and changes following ITIL processes. Monitor …/CD , DevOps , and GIT version control. Proficient in SQL , SSIS , and Azure Data Factory (ADF) . Working knowledge of Agile/SCRUM and OWASP principles. Excellent stakeholder management, communication, and problem-solving skills. Desirable Exposure to Copilot and AI-driven tools . ITIL certification or experience working in ITIL ...

Expert, you will lead the organisation's Generative AI security strategy. Key responsibilities include: Advanced Threat Modelling: Leading structured sessions using STRIDE and OWASP LLM/Agentic frameworks to map out attack trees for complex, non-deterministic systems. Adversarial Engineering: Translating emerging threats-such as Prompt Injection, Sleeper Agents … deep knowledge of FCA compliance and DORA. Solid grasp of Foundation Models (FMs), RAG, and the risks of non-deterministic agentic behavior. Mastery of OWASP LLM Top 10 and the NIST AI Risk Management Framework. Hands-on experience securing AWS Bedrock and governing the full AI model lifecycle. Ability ...