1 to 25 of 30 OWASP Jobs in the UK excluding London

Application security: including but not limited to authentication, identity and access management, auditing, use of cryptography, data security, privacy enhancing technologies, web services security, OWASP, threat & vulnerability management and secure code development methodologies. Infrastructure security includes but is not limited to, network security, host security, database security, device security, VPNs more »

Application security: including but not limited to: authentication, identity and access management, auditing, use of cryptography, data security, privacy enhancing technologies, web services security, OWASP, threat & vulnerability management and secure code development methodologies. • Infrastructure security: including but not limited to: network security, host security, database security, device security, VPNs & SSLs more »

with modern software engineering methodologies and the digital product lifecycle • DevSecOps best tools and practices • Regulatory and industry standards like PCI DSS, ISO 27001, OWASP, ISO 9000 range Technology • Deep knowledge of Microsoft Azure • Kubernetes and containerisation patterns • SQL Server, Redis, Cosmos DB or other Document DBs • Service Bus and more »

Veracode Experience working with CI/CD pipelines in environments such as Azure DevOps Experience security IaaS architectures Have a good working knowledge of OWASP Top 10 Security risks Preferred certificate in Certified Information Systems Security Professional (CISSP) or Certified Secure Software Lifecycle Professional (CSSLP); bonus certificate in Certified Ethical more »

and programming languages, including: How to test for/exploit them, Real world mitigations that can be applied Familiarity with vulnerability classification frameworks (e.g. OWASP Top 10, CVSS, MITRE CVE) Ability to threat model systems/applications/platforms to assess design and find flaws that can be exploited What more »

a bonus Azure Security skills e.g. in Azure B2c or Federated Account Experience with Application Security tools e.g. Vulnerability Scanners, Pen Testing, Code Analysis OWASP top 10 Knowledge of C# for diagnostics Fantastic opportunity to join a fairly greenfield operation working on a new platform. Interested? Please send your cv more »

architectures) Experience of modern web development technologies including HTML 5, CSS and JavaScript Desirable Skills: Cloud experience (Azure) Containers (docker, K8s) Security best practice (OWASP top ten) OpenIDConnect/Identity server Micro service architecture MS SQL Server Azure DevOps, TeamCity Infrastructure as Code (Bicep, ARM templates, Terraform, Pulumi) Web development more »

deadline and personal time management skills Excellent communication skills Advantage to have awareness of : C# .NET Core and .NET Framework MVC Razor Azure services OWASP Chromatic Storybook Accessibility Node.js Ability to rollout solutions that are well tested and meet the needs of the end users Can work with other members more »

compliance, risk management and technical assurance practices. Should have experience of using common information security management frameworks, such as NIST, PCI, GDPR, ISO Series, OWASP the IT Infrastructure Library (ITIL), the ISF Standards of Good Practice (SoGP) and ISACA’s Control Objectives for Information and related Technology (COBIT) frameworks. Must more »

Science or related fields. 3 plus years of progressive experience in computing and information security. knowledge of industry best practices on security hardening (CIS), OWASP, network security, security risk & management frameworks, national cybersecurity standards, ISO27001, etc. player with excellent communication skills, (oral, written, presentation), interpersonal and consultative skills. Able to more »

control and associated procedures. Hands-on experience performing application static/dynamic security and penetration assessment with tools such as - SonarQube, CheckMarx, AppScan, BurpSuite, OWASP ZAP Proxy, WebInspect, Fortify, Veracode, Nessus etc. Familiarity with different types of security vulnerabilities and tools for countermeasure Experience with any high-level programming language. more »

the MVC pattern, REST APIs and asp.net controllers are a must. Web developers should be aware of security vulnerabilities, such as those identified in OWASP, and their code should mitigate these threats. Required: Web Developers need experience in the design, creation and maintenance of websites across multiple platforms. The most more »

helping to ensure technical competency and architecture alignment. Establish a strong partnership with Information Security, identifying opportunities/risks. ( following standards such as CIS & OWASP ) Strong relationship with Data Engineering and Platforms team and Data Architect to ensure connected vision across solution and data architecture. Externally connected bringing the outside more »

You have a good knowledge of DevOps and IaC concepts You have a good understanding of cloud based security (e.g. ISO27001, NIST, CIS, OWASP, SOC2) and Identity and Access Management (IAM) within Azure You're familiar with ARM templates and/or Pulumi You have automation and scripting (PowerShell or more »

which matches the best, whilst ensuring compliance to regulatory requirements, company policy and standards. Experience with information security management frameworks (NIST, PCI, GDPR, ISO, OWASP, ITIL, ISF SoGP, COBIT) is essential. The role will involve supporting project managers in risk and issue management Creation, review, and approval of documentation such more »

to regulatory requirements, company policy and standards. Should have experience of using common information security management frameworks, such as NIST, PCI, GDPR, ISO Series, OWASP the IT Infrastructure Library (ITIL), the ISF Standards of Good Practice (SoGP) and ISACA's Control Objectives for Information and related Technology (COBIT) frameworks. The more »

M.Inst.ISP, CISA by a recognised professional body Technical certifications by a recognised professional body in network or systems engineering Fundamental Cloud Concepts for AWS. OWASP Top 10: API Security Playbook. Ways of Working This role is based out of our London Bridge office. Our hybrid model way of working offers more »

outcomes with external partners, including resolving conflicts arising from changing priorities. · Familiarity with common information security management frameworks like NIST, PCI, GDPR, ISO Series, OWASP, ITIL, ISF Standards of Good Practice (SoGP), and ISACA’s Control Objectives for Information and related Technology (COBIT) frameworks. Areti Group – Carbon positive tech recruitment more »

as defined and required by the ISMS Policies. Candidate Profile In Depth knowledge of ISO 27001 standards Knowledge of ISO31000 & ISO22301. Good knowledge of OWASP and NCSC Experience of working within an InfoSec focused role. Able to solve problems identified through audit, risk assessment or incidents. Proven experience in implementing more »

control and associated procedures. Hands-on experience performing application static/dynamic security and penetration assessment with tools such as – SonarQube, CheckMarx, AppScan, BurpSuite, OWASP ZAP Proxy, WebInspect, Fortify, Veracode, Nessus etc. Familiarity with different types of security vulnerabilities and tools for countermeasure Experience with any high-level programming language. more »

with RESTful APIs and integrating backend services In-depth experience with security, form validation, XSS prevention, database security, session management, input validation and other OWASP guidelines Proven experience in developing scalable web applications using Laravel and other web technologies Strong problem-solving skills and the ability to work both independently more »

Dev SecOps engineering position. Strong experience securing cloud platforms, primarily AWS and Mongo Atlas. Exposure to Audits/Compliance/Security frameworks (ISO27001, SOC2, OWASP, SAMM, DSOMM). Knowledge of embedded security (IDE plugins, SAST, DAST, SCA). Experience performing vulnerability scanning/penetration testing. Threat detection and prevention (IDS more »

architecture, dev-sec-ops, and network security. Experience in browser security or mobile app security is desirable. Good understanding of industry standards such as OWASP ASVS, OWASP Top-10, CIS benchmarks. Hands-on experience with complex Azure and AWS architectures with an emphasis on containerised workloads. Command-line/API more »

and deploying production systems to the web. Contributions to OSS on your git. Cyber security awareness, experience of secure app design and mitigating the OWASP top 10. Experience of working with large and complex codebases. Experience of working directly with non-technical end-users to understand requirements, design solutions, provide more »

expand our testing capabilities. As our Application Security Test Engineer, you be responsible for testing client mobile and web software applications in accordance to OWASP (ASVS/MASVS) frameworks. To be successful in this role you’ll need to hold an understanding web application vulnerabilities and black-box/white … equivalent qualification. To be successful in the role, you will have: Knowledge of web application security principles, standards, and best practices, such as the OWASP Top 10, the OWASP Mobile Application Security Verification Standard (MASVS), and the OWASP Application Security Verification Standard (ASVS). Experience in performing security testing of more »