16 OWASP Jobs in the South East

with modern software engineering methodologies and the digital product lifecycle • DevSecOps best tools and practices • Regulatory and industry standards like PCI DSS, ISO 27001, OWASP, ISO 9000 range Technology • Deep knowledge of Microsoft Azure • Kubernetes and containerisation patterns • SQL Server, Redis, Cosmos DB or other Document DBs • Service Bus and more »

and programming languages, including: How to test for/exploit them, Real world mitigations that can be applied Familiarity with vulnerability classification frameworks (e.g. OWASP Top 10, CVSS, MITRE CVE) Ability to threat model systems/applications/platforms to assess design and find flaws that can be exploited What more »

of repositories, code controls and development tools such as JIRA, Confluence and similar tools Application and Web Service security, Identity Management and Protocols (e.g. OWASP, WS-Security, SAML, OAuth2, OpenID Connect) Knowledge of or have worked with Cloud technologies. Azure preferred Working with: Agile development methodology, SAFe or SCRUM Understanding more »

helping to ensure technical competency and architecture alignment. Establish a strong partnership with Information Security, identifying opportunities/risks. ( following standards such as CIS & OWASP ) Strong relationship with Data Engineering and Platforms team and Data Architect to ensure connected vision across solution and data architecture. Externally connected bringing the outside more »

You have a good knowledge of DevOps and IaC concepts You have a good understanding of cloud based security (e.g. ISO27001, NIST, CIS, OWASP, SOC2) and Identity and Access Management (IAM) within Azure You're familiar with ARM templates and/or Pulumi You have automation and scripting (PowerShell or more »

which matches the best, whilst ensuring compliance to regulatory requirements, company policy and standards. Experience with information security management frameworks (NIST, PCI, GDPR, ISO, OWASP, ITIL, ISF SoGP, COBIT) is essential. The role will involve supporting project managers in risk and issue management Creation, review, and approval of documentation such more »

to regulatory requirements, company policy and standards. Should have experience of using common information security management frameworks, such as NIST, PCI, GDPR, ISO Series, OWASP the IT Infrastructure Library (ITIL), the ISF Standards of Good Practice (SoGP) and ISACA's Control Objectives for Information and related Technology (COBIT) frameworks. The more »

M.Inst.ISP, CISA by a recognised professional body Technical certifications by a recognised professional body in network or systems engineering Fundamental Cloud Concepts for AWS. OWASP Top 10: API Security Playbook. Ways of Working This role is based out of our London Bridge office. Our hybrid model way of working offers more »

outcomes with external partners, including resolving conflicts arising from changing priorities. · Familiarity with common information security management frameworks like NIST, PCI, GDPR, ISO Series, OWASP, ITIL, ISF Standards of Good Practice (SoGP), and ISACA’s Control Objectives for Information and related Technology (COBIT) frameworks. Areti Group – Carbon positive tech recruitment more »

as defined and required by the ISMS Policies. Candidate Profile In Depth knowledge of ISO 27001 standards Knowledge of ISO31000 & ISO22301. Good knowledge of OWASP and NCSC Experience of working within an InfoSec focused role. Able to solve problems identified through audit, risk assessment or incidents. Proven experience in implementing more »

knowledge of ISO 27001 standards and any other relevant standards e.g. ISO31000 & ISO22301. Good knowledge of industry best practice such as security maturity models, OWASP and NCSC Experience of working within an InfoSec focused role. Able to solve problems identified through audit, risk assessment or incidents. Proven experience of Risk more »

ability to structure the testing process. knowledge of the companies products in depth. knowledge of, or demonstrable interest in security testing tools such as: OWASP ZAP, Port Swigger Burp knowledge of, or demonstrable interest in low code automated test tools and/or coded automation tooling with languages such as more »

ISO27001 standards and maintaining the accreditation within an organisation Risk management Any experience in the following areas would be advantageous but is not essential OWASP DevSecOps Application security Cloud security Any other relevant standards ie ISO22301, ISO310000 etc If you are seeking a role of this nature please get in more »

knowledge of concepts of testing processes and methodologies Experience working across the software test life cycle to structure testing process. Knowledge or interest in OWASP ZAP or PortSwigger Burp JavaScript TypeScript Python Knowledge of low code automation test tools Manual and automation testing ISTQB certification is required. Spectrum IT Recruitment more »

learn what the team has to offer will be an important part of your long term presence in the EHT Understanding of basic security OWASP Top10: SQL injection, XSS, SSRF, RCE Applied knowledge of cryptographic algorithms and standards Basic knowledge of security standards such as FIPS-140 and ISO more »

Predominantly ARM but happy to consider Terraform Automation/Scripting - PowerShell or similar A good grasp on Cybersecurity standards and tooling - Defender-Sentinel/OWASP/SOC2 etc Process? 45 min - Chat about all things tech 2-3 hour whiteboard exercise/presentation. I have interview slots already lined up more »