1 to 25 of 75 Secure Coding Jobs in the UK

at both strategic and operational levels. The role ensures the effectiveness of security practices in software development, manages security testing, drives operational maturity improvements, and oversees secure coding practices. Operating at SFIA Level 6, the role requires the initiation, definition, and oversight of high-impact security development and testing activities. The Director is responsible for aligning security … modelling and secure design practices, ensuring development teams proactively identify and mitigate risks during the design phase. o Mentor and upskill engineering teams on secure coding, architectural risk assessment, and DevSecOps principles to build a culture of shared security ownership. Key Performance Indicators (KPIs) * Secure Architecture Compliance Rate: Percentage of projects that meet … e.g., SAST, DAST, SCA) across development teams, measured by scan frequency and issue resolution rates. * Training and Awareness Uptake: Percentage of development and QA staff completing secure coding and DevSecOps training programs. * Audit and Compliance Pass Rate: Success rate in internal and external audits related to secure development practices and testing controls. * Innovation and Automation More ❯

editorial standards, but also on the security, reliability and resilience of the systems behind every stream, story and service. In Engineering Enablement , we're the team that makes secure, high-velocity delivery possible. We build shared cloud platforms, developer tooling and guardrails that let hundreds of product teams ship confidently and sustainably. We're hiring a Principal Software … across the BBC. You'll work hands-on with engineering teams, applying InfoSec-led policies and architecture in delivery contexts. You'll support threat modelling, promote secure coding practices, and help scale Secure SDLC across the organisation - without reinventing governance or duplicating policy. It's a high-trust role with real impact: translating strategic security … security policy and architectural guidance. Promote secure SDLC practices across engineering teams, collaborating with InfoSec on shared tooling, templates and enablement. Help teams adopt secure coding standards and integrate automated security checks (SAST, DAST, dependency scanning) into CI/CD pipelines. Participate in threat modelling using InfoSec-led methodologies and coordinate validation and review workflows. More ❯

Mentor and guide junior engineers, fostering continuous learning and growth Stay updated on industry trends and emerging technologies, contributing to internal tech communities Ensure adherence to secure coding standards to protect sensitive data and reduce vulnerabilities Develop and maintain robust unit tests to guarantee software reliability and maintainability Drive architectural decisions and long-term technology strategy aligned … to engage technical and non-technical stakeholders alike Confidence in navigating, integrating, and developing solutions across multiple systems Solid understanding of software architecture, design patterns, and secure coding best practices Hands-on experience with cloud platforms (AWS, Azure, Google Cloud) and CI/CD pipelines is a plus Familiarity with SQL/NoSQL databases and version control More ❯

release monitoring and maintenance. Establish, enforce, and continuously evolve software engineering best practices (e.g., SOLID principles, domain-driven design, clean architecture, modular monoliths vs microservices). Drive consistency in coding standards, code review rigor, and software craftsmanship. Lead critical system architecture decisions, including technology stack evolution, refactoring legacy components, and designing future-state systems. Ensure integration patterns and service … contracts across internal and external APIs are robust, secure, and scalable. System Integration & Platform Ownership Oversee integration between business systems using APIs, middleware, and ETL pipelines, including Salesforce, Power Platform (PowerApps, PowerAutomate, LogicApps), SharePoint, and custom web applications. Lead optimization and governance around API design (RESTful services, rate limiting, versioning, monitoring, etc.). Ensure high data consistency, operational … the engineering of clean, reliable data sources and APIs. Security Engineering & Governance Partner with security engineers to integrate security throughout the software lifecycle (shift-left security, secure coding, threat modelling). Own the implementation of secure authentication/authorization practices, audit logging, encryption at rest/in transit, and other application security standards. Ensure software More ❯

or Cambridge Salary: £70,000 - £120,000 (depending on experience and clearance) We are looking for a Full Stack Developer to join a growing public sector team delivering secure, high-impact digital services across Defence & Security. This is a unique opportunity to use your development expertise to help solve real-world challenges for government and national security clients. … collaborative and supportive engineering team, working alongside technical leads, project managers, and stakeholders to deliver robust and scalable solutions. What you'll be doing: Designing, developing and deploying secure, high-performing web applications for government clients Working across the full software development lifecycle, from requirements through to production Building responsive user … interfaces using modern front-end technologies Developing scalable server-side functionality with appropriate frameworks and languages Creating and maintaining RESTful APIs for integration across platforms Following secure coding practices and supporting compliance with government security standards Conducting security reviews and supporting remediation of vulnerabilities Translating technical requirements into delivery plans and code Communicating effectively with both technical More ❯

provide Technical Excellence Leadership for more than one team, providing expert guidance to software developers and support staff. Provides guidance to staff on application security standards, secure coding practices, and secure architecture designs. Provides a strong technical focus in product planning for a complete software system. Requires completion of an undergraduate degree in Computer Science More ❯

forward-thinking team in Milton Keynes. This is a fantastic opportunity to contribute to a nationally recognised AI innovation platform used to drive sensitive data discovery, redaction, and secure archiving for government departments. You'll work across a modern tech stack and play a key role in the development, deployment, and support of a secure full … stack system used across the UK public sector. Responsibilities: Design, build, and test full stack software in a secure, client-focused environment Work with modern front-end technologies (React, TypeScript, HTML/CSS) to deliver intuitive UI/UX Develop robust back-end services using Java and Spring Boot Create and maintain APIs and integrate with secure … MySQL) Collaborate with cross-functional teams including product managers, architects, and public sector stakeholders Contribute to cloud deployment, DevOps practices, and CI/CD pipelines Follow secure coding and authentication best practices Participate in code reviews and produce clear internal documentation Apply innovation to AI-driven projects used across government departments What we're looking for: Minimum More ❯

DevOps Engineer leads the design and implementation of advanced DevOps practices and infrastructure solutions. They mentor other DevOps Engineers and collaborate with technical teams to deliver highly automated, secure, and scalable platforms that support software delivery at pace. Key Responsibilities: Take an active role in defining and delivering platform improvement initiatives that enhance reliability, scalability, and developer experience. … decision-making and prioritisation. Lead the design, development, and optimisation of advanced CI/CD pipelines that meet the evolving needs of multiple development teams. Ensure pipelines are secure, efficient, and reliable, and promote automation of testing, security checks, and deployment across environments. Provide technical leadership in implementing and maintaining infrastructure as code solutions using Terraform, Ansible, and … into CI/CD pipelines, ensuring that security is embedded throughout the software delivery lifecycle. Collaborate with security and compliance teams to manage vulnerabilities and enforce secure coding and deployment practices. Lead technical risk assessments to evaluate platform and pipeline vulnerabilities. Support internal and external audits, ensuring that systems and processes meet regulatory, security, and organisational compliance More ❯

tech providers, they're redefining how enterprise-grade security is built, deployed, and continuously improved. They're now seeking a Security Development and Test Director to lead their secure software engineering function, drive DevSecOps maturity, and embed security across the development lifecycle. This is a client-facing, commercially strategic position – ideal for a security leader who thrives at … the intersection of technical delivery and business growth. Why join? Shape and scale a modern secure-by-design function in a high-growth global firm Strategic autonomy to influence architecture standards, DevSecOps integration, and engineering culture Engage directly with major enterprise clients and shape security roadmaps that matter Be part of a company recognised for its DEI leadership … CI/CD workflows Owning security tooling strategy (SAST, DAST, SCA, container scanning) and driving adoption across development pipelines Building and mentoring high-performing teams in secure coding, DevSecOps, and threat modelling Leading engagements with major clients during pre-sales, delivery and review phases Managing financials, resource planning, and service maturity across the Secure SDLC More ❯

tech providers, they're redefining how enterprise-grade security is built, deployed, and continuously improved. They're now seeking a Security Development and Test Director to lead their secure software engineering function, drive DevSecOps maturity, and embed security across the development lifecycle. This is a client-facing, commercially strategic position - ideal for a security leader who thrives at … the intersection of technical delivery and business growth. Why join? Shape and scale a modern secure-by-design function in a high-growth global firm Strategic autonomy to influence architecture standards, DevSecOps integration, and engineering culture Engage directly with major enterprise clients and shape security roadmaps that matter Be part of a company recognised for its DEI leadership … CI/CD workflows Owning security tooling strategy (SAST, DAST, SCA, container scanning) and driving adoption across development pipelines Building and mentoring high-performing teams in secure coding, DevSecOps, and threat modelling Leading engagements with major clients during pre-sales, delivery and review phases Managing financials, resource planning, and service maturity across the Secure SDLC More ❯

Industries/Vlocity is essential) FPSG have a fantastic opportunity to join a large-scale digital transformation programme aimed at uniting multiple internal business units under a new, secure, cloud-native digital platform. Ideal for a hands-on Security Engineer who enjoys embedding security into the development lifecycle and working with modern tooling and cloud environments. .Net Azure … is essential. The successful Security Engineer's responsibilities will include: Analysing new feature code to identify and mitigate security risks Collaborating with development teams to implement secure coding practices and remediation strategies Driving improvements in security maturity frameworks such as DSOMM, including hands-on delivery (code, configuration, documentation, tooling) Designing, building, operate, monitoring secure solutions … skills will include: Demonstrated experience in software security within cloud-first or hybrid environments (Azure preferred) A deep understanding of the Salesforce Industries aka Vlocity, with experience supporting secure integration and development Strong knowledge of networking protocols (e.g. TCP/IP, UDP, HTTP/3) and cloud network architecture (VPNs, subnets, zones) Experience with API security and integration More ❯

security, and compliance in a regulated financial setting. Accountabilities & Responsibilities Design and develop modern, responsive front-end applications from the ground up using React, TypeScript, and Next.js. Build secure, performant user interfaces that integrate with LLM APIs (e.g., Gemini, Azure OpenAI) and internal systems. Implement advanced front-end security features including token handling, session management, data masking, and … backend services. Collaborate with AI engineers, backend developers, and cloud architects to deliver end-to-end solutions. Ensure compliance with cybersecurity and data privacy standards through secure coding practices and regular code reviews. Deploy applications to GCP (Firebase, Cloud Run) and Azure App Services using CI/CD pipelines hardened for security and compliance. Participate in code … reviews, technical design discussions, and architecture planning sessions. Required Knowledge, Skills & Experience Proven experience building secure, production-grade front-end applications in regulated environments (e.g., finance, healthcare, government). Strong proficiency in modern JavaScript/TypeScript frameworks (React, Next.js) and responsive UI development. Demonstrated ability to build front-end applications from scratch in greenfield or innovation lab settings. More ❯

security, and compliance in a regulated financial setting. Accountabilities & Responsibilities Design and develop modern, responsive front-end applications from the ground up using React, TypeScript, and Next.js. Build secure, performant user interfaces that integrate with LLM APIs (e.g., Gemini, Azure OpenAI) and internal systems. Implement advanced front-end security features including token handling, session management, data masking, and … backend services. Collaborate with AI engineers, backend developers, and cloud architects to deliver end-to-end solutions. Ensure compliance with cybersecurity and data privacy standards through secure coding practices and regular code reviews. Deploy applications to GCP (Firebase, Cloud Run) and Azure App Services using CI/CD pipelines hardened for security and compliance. Participate in code … reviews, technical design discussions, and architecture planning sessions. Required Knowledge, Skills & Experience Proven experience building secure, production-grade front-end applications in regulated environments (e.g., finance, healthcare, government). Strong proficiency in modern JavaScript/TypeScript frameworks (React, Next.js) and responsive UI development. Demonstrated ability to build front-end applications from scratch in greenfield or innovation lab settings. More ❯

A leading Fintech/Payments company is looking for a proactive and technically skilled Application Security Engineer/DevSecOps to champion secure development practices across our software delivery lifecycle. In this role, youll play a key part in identifying and reducing application-layer risks, integrating security into the development pipeline, and ensuring that security considerations are embedded throughout … the SDLC. Working closely with engineering and platform teams, youll help automate security processes, lead threat modelling exercises, and continually improve the organisations application security posture. Key Responsibilities Secure Development Lifecycle (SDLC) Experience working with static and dynamic code analysis tools (SAST, DAST) is essentialwhile you dont need to have set them up, you should have collaborated with … Threat Modelling & Architecture Review Requirements (Primarily Essential) 2+ years of experience in application security or secure software development. Strong knowledge of OWASP Top 10, secure coding principles, and threat modelling. Hands-on experience with SAST, DAST, SCA, and vulnerability management tools. Familiarity with cloud platforms (Azure or AWS), CI/CD pipelines, and DevOps processes. More ❯

and processes used to design, code, test, trouble-shoot, document engineering systems applications. Develops test strategies used in the automated regression testing of these systems. Follows secure coding practices, performs triaging of security issues, and implements fixes to deliver secure applications. Familiar with common software vulnerabilities and leading practices to mitigate. Should have some experience More ❯

systems, contribute to architectural decisions, and support the continuous improvement of development practices. Key responsibilities: Develop and maintain scalable, high-quality software using C#, .NET, and Azure Lead on coding tasks and contribute to system architecture Perform code reviews and mentor junior developers Collaborate across teams to deliver business-critical solutions Provide second-line technical support as needed Essential … experience: 5+ years in commercial software development Proficiency in C#, .NET, SQL Server, and JavaScript Experience with Azure services and DevOps tools Understanding of secure coding and software development best practices Desirable experience: Microservices, containers (Docker/Kubernetes) Front-end frameworks such as Vue.js Messaging systems (e.g. Service Bus, Kafka) NoSQL databases, REST APIs, CI/CD More ❯

to present findings to a wide audience will be crucial to make this role a success. We want to know who the leading companies are and how they secure their pipeline so we are very much open to ideas! Within 3-4 months we'd like a full assessment documented and a plan put into place that you … DevOps pipelines. This role requires a deep understanding of development, security, and operations, with a strong emphasis on automation, continuous integration/continuous deployment (CI/CD), and secure software development lifecycle (SDLC) practices. Advise and offer guidance on: * Design, implement, and maintaining secure CI/CD pipelines. … Integrate security tools and practices into DevOps workflows (e.g., SAST, DAST, SCA, secrets management).* Collaborate with development, operations, and security teams to implement and ensure secure coding and deployment practices.* Advise on threat modeling, risk assessments, and vulnerability management.* Provide expert guidance on cloud security (AWS, Azure, GCP) and container security (Docker, Kubernetes).* Develop and More ❯

Core Experience of using observability systems such as Elastic APM or DataDog to track and diagnose issues in production A solid understanding of security principles and secure coding including OWASP Top 10 Nice to haves: o Experience in VOIP, (SIP and RTP advantageous) o Experience of TDD/BDD/DDD o Knowledge of PCI compliance and More ❯

Core Experience of using observability systems such as Elastic APM or DataDog to track and diagnose issues in production A solid understanding of security principles and secure coding including OWASP Top 10 Nice to haves: o Experience in VOIP, (SIP and RTP advantageous) o Experience of TDD/BDD/DDD o Knowledge of PCI compliance and More ❯

security, and compliance in a regulated financial setting. Key Responsibilities: Design and develop modern, responsive front-end applications from the ground up using React, TypeScript, and Next.js. Build secure, performant user interfaces that integrate with LLM APIs (e.g., Gemini, Azure OpenAI) and internal systems. Implement advanced front-end security features, including token handling, session management, data masking, and … services. Collaborate closely with AI engineers, backend developers, and cloud architects to deliver end-to-end solutions. Ensure compliance with cybersecurity and data privacy standards through secure coding practises and regular code reviews. Deploy applications to GCP (Firebase, Cloud Run) and Azure App Services using CI/CD pipelines hardened for security and compliance. Participate in code … reviews, technical design discussions, and architecture planning sessions. Required Skills & Experience: Proven experience building secure, production-grade front-end applications in regulated environments (e.g., finance, healthcare, government). Strong proficiency in modern JavaScript/TypeScript frameworks (React, Next.js) and responsive UI development. Demonstrated ability to build front-end applications from scratch in greenfield or innovation lab settings. Experience More ❯

enhance the backend systems that power native mobile applications. While experience with Flutter or mobile app development is an advantage, your primary focus will be on developing robust, secure, and scalable APIs and backend services using Golang. This role is Hybrid in Herefordshire expected to be in the office 2/3 days per week Key Responsibilities Design … develop, and maintain scalable backend services and APIs in Go. Work collaboratively with mobile developers, product teams, and architects to deliver secure, high-performance features. Write clean, maintainable, and well-tested code. Participate in code reviews and contribute to continuous improvement. Ensure best practices in API security, performance, and observability. Support deployment and integration within a cloud-native … Strong understanding of RESTful API design, microservices architecture, and cloud-native development. Familiarity with containerisation tools (Docker, Kubernetes) and CI/CD workflows. Solid grasp of secure coding practices and data protection principles. Experience working effectively in Agile, cross-functional teams, with excellent communication and a collaborative outlook. Nice to have: Experience with or an interest in More ❯

CI/CD, and secure software development lifecycle (SDLC) practices. Key Responsibilities Lead the integration of security into CI/CD pipelines. Advise on secure coding and deployment practices across teams. Implement and enforce security policies, standards, and best practices. Conduct threat modeling, risk assessments, and vulnerability management. Mentor and train teams on DevSecOps principles … and tools. Skills & Experience Required CI/CD Security Engineering: Proven experience designing and maintaining secure CI/CD pipelines. DevSecOps Tool Integration: Hands-on experience with SAST, DAST, SCA, and secrets management tools. Cross-Functional Collaboration: Ability to work closely with development, operations, and security teams. Threat Modeling & Risk Assessment: Strong knowledge of security risk management. Cloud More ❯

CI/CD, and secure software development lifecycle (SDLC) practices. Key Responsibilities Lead the integration of security into CI/CD pipelines. Advise on secure coding and deployment practices across teams. Implement and enforce security policies, standards, and best practices. Conduct threat modeling, risk assessments, and vulnerability management. Mentor and train teams on DevSecOps principles … and tools. Skills & Experience Required CI/CD Security Engineering: Proven experience designing and maintaining secure CI/CD pipelines. DevSecOps Tool Integration: Hands-on experience with SAST, DAST, SCA, and secrets management tools. Cross-Functional Collaboration: Ability to work closely with development, operations, and security teams. Threat Modeling & Risk Assessment: Strong knowledge of security risk management. Cloud More ❯

and backend logic using Python/Django Developing dynamic, responsive front-end features using React and related libraries Working with relational databases (PostgreSQL) and optimising SQL queries Implementing secure authentication and authorisation flows Integrating with third-party APIs and services Writing maintainable, testable code and participating in peer code reviews Collaborating with designers, product managers, and QA to … EXPERIENCE Strong commercial experience with Python/Django and React Solid understanding of REST API design and integration Proficiency with relational databases (PostgreSQL preferred) Experience in secure coding practices, ideally within regulated environments (healthcare, finance, etc.) Familiarity with cloud platforms (AWS/GCP) and CI/CD pipelines Strong problem-solving skills and ability to work autonomously More ❯

to join our team on a part-time basis (4 days per week) in London. You will work alongside AI, ML, and app development teams to build scalable, secure, and intelligent backend services. Key Responsibilities Design, develop, and maintain scalable backend services using .NET Core/.NET 6+ Collaborate efficiently on an AI-driven project alongside the customers … expose AI models and LLM prompt-based services Integrate trained ML models into backend systems supporting real product features Build and maintain infrastructure for data ingestion, processing, and secure storage Support full end-to-end testing with QA and development teams to prevent security or data issues Create services to manage data ingestion for model training and dynamic …/.NET 6+ development Strong understanding of REST API design and backend microservices architecture Experience working on AI/ML integrations in production environments Familiarity with secure coding practices and enterprise-level data protection standards Comfortable with authentication, authorization, and SSO integration Experience working in collaborative DevOps settings with CI/CD pipelines Familiarity with cloud services More ❯