6 of 6 OWASP Jobs in the South West

Secure architecture design and secure-by-design principles Risk assessment, threat modelling, and vulnerability management Security frameworks: ISO 27001, NIST 800-30/53, OWASP Cloud security architecture (AWS, Azure, GCP) Incident response, penetration testing, and remediation concepts Persuasive communication skills across technical and non-technical stakeholders Excellent analytical, documentation ...

development is required. Maintain awareness of web application security and building applications which meet high standards of security, pass penetration tests and align with OWASP recommendations. Taking an active part in the whole Software Development Lifecycle end-to-end - including conception, design, architecture, build and deployment. Producing accurate estimates ...

risk treatment plans, ensuring digital services operate within defined risk appetites. Advise on Secure by Design policies, covering secure coding, regulatory compliance frameworks (e.g., OWASP, DPIA, GovAssure), and safe AI use. Coordinate cross-platform activities to support secure delivery of digital services, including incident management and ongoing improvements. Provide regular ...

technical documentation. Experience in supporting and developing environments and applications within Azure (e.g., WAMP/LAMP). Familiarity with cloud-based solutions adhering to OWASP developer best practices. Proficiency in languages/middleware such as Asp.Net, Python, PHP, Apache. Experience managing SQL databases (Azure DB, Managed SQL, MS SQL & MySQL ...

/Auditor Professional skills/experience Demonstrate a good understanding of information security frameworks, standards and security best practice (ISO27001, NIST CSF, Cyber Essentials, OWASP). Knowledge and adherence to data protection legislation and regulatory requirements (e.g. GDPR, FCA SYSC, PCI DSS). Extensive experience and understanding of security analysis ...

security risks What you’ll bring Strong experience in an information security leadership role Excellent knowledge of security frameworks (ISO 27001, NIST, Cyber Essentials, OWASP) Good understanding of GDPR and regulatory compliance requirements Hands-on experience with core security technologies (SIEM, IAM, firewalls, endpoint security, vulnerability management) Incident response ...