7 of 7 OWASP Jobs in the Midlands

awareness support to internal teams. Essential Skills & Experience Strong hands-on experience in application and cloud security engineering. Deep understanding of web app vulnerabilities (OWASP Top 10, CWE) and secure coding practices. Proficiency with security testing tools and vulnerability management platforms. Broad knowledge of network and infrastructure security concepts (WAFs ...

tools, and frameworks What You'll Bring Expertise in cloud security architecture and secure design Strong knowledge of security frameworks (ISO 27001, NIST, GDPR, OWASP, PCI) Experience in application, infrastructure, or enterprise architecture Familiarity with CI/CD and Continuous Security practices Solid understanding of network, web app, and cryptographic ...

junior consultants through mentoring and peer review. Essential Skills and Experience: Proven experience delivering penetration tests in commercial or consultancy settings. Strong understanding of OWASP Top 10/ASVS, common exploitation techniques and mitigations, network protocols, Active Directory, and Windows/Linux environments, and cloud security fundamentals. Hands-on ability ...

competency - Cloud security awareness (AWS/Azure/GCP + IAM principles) - Scripting/automation skills (Python, PowerShell, Bash) - Understanding of secure coding/OWASP Top 10 - Working knowledge of ISO 27001, NIST, Cyber Essentials - Incident triage, log analysis, and threat investigation capability - Strong communication, problem solving, and teamwork skills ...

such as: Qualys, Rapid7, Tanium, Axonius, Armis, or other. Experience applying the following models to an enterprise security program: CMMI, ISO/IEC 2700, OWASP SAMM, NIST, SMM SANS Security Maturity Model. Experience developing security reports, trends, and metrics analysis. Experience with the application of some of the following frameworks ...

digital forensics and the ability to document sensitive investigations accurately. Understanding of cloud security principles, PCI DSS/ISO 27001, MITRE ATT&CK, OWASP and vulnerability management frameworks. Ability to automate tasks or scripting experience to enhance SOC efficiency. Experience working with and explaining security concepts to non-technical stakeholders. ...

regulatory compliance environment Experience working in API testing , Network technologies and cloud solutions Have a good practical understanding of firewalls technologies, WAP and OWASP Understanding of CAF , NIST and NCSC Understanding of Cloud platform, Linux OS, OpenShift, Kubernetes ...