22 of 22 Secure Coding Jobs in the West Midlands

deliver customer-centric solutions. Participate in code reviews and ensure the delivery of high-quality, maintainable code. Provide mentorship and guidance to junior engineers, contributing to best practices and coding standards. Contribute to architectural decisions and technical designs to improve software quality and maintainability. Research and implement emerging technologies to enhance development efficiency and product quality. Implement secure coding practices and ensure adherence to industry security standards and best practices. Required Education and Experience Experience in designing and developing scalable, distributed, and high-performance cloud-based applications. Strong understanding of object-oriented programming principles and design patterns. Expertise in microservices architecture and event-driven systems. Proficiency in SQL and NoSQL databases, with a strong understanding More ❯

design and implement enterprise-grade cloud security solutions on a self-service cloud platform. You’ll be part of a high-impact team working cross-functionally to enable secure innovation across the Group. You’ll be: Leading the design and implementation of secure cloud services (primarily Azure) within a self-service model. Acting as the cloud … ll bring: Proven experience in cloud security engineering within an enterprise setting, preferably on Microsoft Azure. Solid background in foundational security design – from identity and access management to secure networking, container platforms (Kubernetes/AKS), and infrastructure protection. Hands-on knowledge of DevSecOps, IaC (Terraform), CI/CD pipelines, and tools like Veracode, Trivy, and Checkov. … Familiarity with standards such as CIS, NIST, GDPR, ISO and frameworks like MITRE ATT&CK. Strong programming/scripting skills (Python, Go, Groovy) with a clean, secure coding ethos. Ideal Candidate Profile: Expert in Azure cloud security services (Defender for Cloud, Azure Sentinel, Key Vault, APIM) Strong advocate of Zero Trust models and secure development More ❯

Main Responsibilities: Define and enforce secure architecture standards across web, mobile, and cloud-native applications. Provide security guidance during product development, including threat modeling, secure coding, design reviews, and architecture assessments. Lead the implementation of DevSecOps practices, integrating security into CI/CD pipelines. Identify and remediate application vulnerabilities through static/dynamic analysis, manual … code review, and security testing. Collaborate with engineering and platform teams to secure APIs, microservices, and containerized workloads. Evaluate and implement … security tools for code analysis and runtime protection. Qualifications: Proven experience in application security architecture. Deep knowledge of OWASP Top 10, SANS CWE Top 25, and secure coding best practices. Familiarity with threat modeling methodologies such as STRIDE and architectural risk analysis. Hands-on experience with tools like SAST, DAST, IAST, Snyk, SonarQube, Burp Suite, Veracode, or More ❯

Define and enforce secure architecture standards and frameworks across web, mobile, and cloud-native applications. Provide security guidance throughout product development, including threat modeling, secure coding, design reviews, and architecture assessments. Lead the implementation of DevSecOps practices, integrating security into CI/CD pipelines. Identify and remediate application-level vulnerabilities through static/dynamic analysis … manual code review, and security testing. Collaborate with engineering and platform teams to secure APIs, microservices, and containerized workloads. Evaluate and implement security tools for secure code analysis and runtime protection. … To be considered for this role, you should have: Proven experience in application security architecture. Deep knowledge of OWASP Top 10, SANS CWE Top 25, and secure coding best practices. Familiarity with threat modelling methodologies such as STRIDE and architectural risk analysis. Hands-on experience with tools such as SAST/DAST/IAST, Snyk, SonarQube, Burp More ❯

Main Responsibilities: Define and enforce secure architecture standards across web, mobile, and cloud-native applications. Provide security guidance during product development, including threat modeling, secure coding, design reviews, and architecture assessments. Lead the implementation of DevSecOps practices, integrating security into CI/CD pipelines. Identify and remediate application vulnerabilities through analysis, code review, and testing. … Collaborate to secure APIs, microservices, and containerized workloads. Evaluate and … implement security tools for analysis and runtime protection. Qualifications: Proven experience in application security architecture. Deep knowledge of OWASP Top 10, SANS CWE Top 25, and secure coding practices. Familiarity with threat modeling methodologies like STRIDE. Hands-on experience with tools such as SAST/DAST/IAST, Snyk, SonarQube, Burp Suite, Veracode. Strong understanding of cloud More ❯

develop Engineering, QA, and Scrum teams Drive Agile, product-led software delivery across the SDLC Uplift DevOps, CI/CD, and deployment pipelines Raise standards in secure coding, automation, and observability Shape and deliver a continuous improvement roadmap You won't write code, but you'll bring deep software knowledge and lead by influence. You'll know More ❯

Define and enforce secure architecture standards and frameworks across web, mobile, and cloud-native applications. Provide security guidance throughout product development, including threat modeling, secure coding, design reviews, and architecture assessments. Lead the implementation of DevSecOps practices, integrating security into CI/CD pipelines. Identify and remediate application-level vulnerabilities through static/dynamic analysis … manual code review, and security testing. Collaborate with engineering and platform teams to secure APIs, microservices, and containerized workloads. Evaluate and implement security tools for secure code analysis and runtime protection. … To be considered for this role, you should have: Proven experience in application security architecture. Deep knowledge of OWASP Top 10, SANS CWE Top 25, and secure coding best practices. Familiarity with threat modelling methodologies such as STRIDE and architectural risk analysis. Hands-on experience with tools such as SAST/DAST/IAST, Snyk, SonarQube, Burp More ❯

Define and enforce secure architecture standards and frameworks across web, mobile, and cloud-native applications. Provide security guidance throughout product development, including threat modeling, secure coding, design reviews, and architecture assessments. Lead the implementation of DevSecOps practices, integrating security into CI/CD pipelines. Identify and remediate application-level vulnerabilities through static/dynamic analysis … manual code review, and security testing. Collaborate with engineering and platform teams to secure APIs, microservices, and containerized workloads. Evaluate and implement security tools for secure code analysis and runtime protection. … To be considered for this role, you should have: Proven experience in application security architecture. Deep knowledge of OWASP Top 10, SANS CWE Top 25, and secure coding best practices. Familiarity with threat modelling methodologies such as STRIDE and architectural risk analysis. Hands-on experience with tools such as SAST/DAST/IAST, Snyk, SonarQube, Burp More ❯

Define and enforce secure architecture standards and frameworks across web, mobile, and cloud-native applications. Provide security guidance throughout product development, including threat modeling, secure coding, design reviews, and architecture assessments. Lead the implementation of DevSecOps practices, integrating security into CI/CD pipelines. Identify and remediate application-level vulnerabilities through static/dynamic analysis … manual code review, and security testing. Collaborate with engineering and platform teams to secure APIs, microservices, and containerized workloads. Evaluate and implement security tools for secure code analysis and runtime protection. … To be considered for this role, you should have: Proven experience in application security architecture. Deep knowledge of OWASP Top 10, SANS CWE Top 25, and secure coding best practices. Familiarity with threat modelling methodologies such as STRIDE and architectural risk analysis. Hands-on experience with tools such as SAST/DAST/IAST, Snyk, SonarQube, Burp More ❯

Define and enforce secure architecture standards and frameworks across web, mobile, and cloud-native applications. Provide security guidance throughout product development, including threat modeling, secure coding, design reviews, and architecture assessments. Lead the implementation of DevSecOps practices, integrating security into CI/CD pipelines. Identify and remediate application-level vulnerabilities through static/dynamic analysis … manual code review, and security testing. Collaborate with engineering and platform teams to secure APIs, microservices, and containerized workloads. Evaluate and implement security tools for secure code analysis and runtime protection. … To be considered for this role, you should have: Proven experience in application security architecture. Deep knowledge of OWASP Top 10, SANS CWE Top 25, and secure coding best practices. Familiarity with threat modelling methodologies such as STRIDE and architectural risk analysis. Hands-on experience with tools such as SAST/DAST/IAST, Snyk, SonarQube, Burp More ❯

Main Responsibilities: Define and enforce secure architecture standards across web, mobile, and cloud-native applications. Provide security guidance during product development, including threat modeling, secure coding, design reviews, and architecture assessments. Lead DevSecOps practices, integrating security into CI/CD pipelines. Identify and remediate application vulnerabilities through static/dynamic analysis, manual review, and testing. … Collaborate to secure APIs, microservices, and containerized workloads. Evaluate and implement … security tools for code analysis and runtime protection. Requirements: Proven experience in application security architecture. Deep knowledge of OWASP Top 10, SANS CWE Top 25, and secure coding best practices. Familiarity with threat modeling methods like STRIDE and architectural risk analysis. Hands-on experience with SAST/DAST/IAST tools such as Snyk, SonarQube, Burp Suite More ❯

determine requirements, understanding their work practices and the nature of their businesses using CRM systems. Analysing IT requirements and giving independent and objective advice on the use of IT. Coding individual programs according to specifications. System/Software Development with Java/Spring framework. Examines existing software and determines requirements for new/modified systems in the light of … and correction of software programs. Knowledge of multi-threaded development is preferred. Knowledge of information systems development or design. Building applications using Spring framework. Understanding of secure coding practices and testing. Strong programming skills in C++, JAVA, ASP.NET, C, C++, Embedded Systems, Spring Hibernate, Spring MVC, Eclipse IDE, Unix, Linux, SQL. Knowledge of Microsoft SQL server and More ❯

or Wolverhampton. Our client is also open to consider candidates who require visa sponsorship on an individual basis only. Core responsibilities: Assist with scoping, design and build of secure Azure cloud services to support the Modernisation programme and deliver a scalable and flexible cloud security capability to support and facilitate innovation for our clients new ecosystem. Work with … and deliver the high-level and low-level security objectives and designs for a project or programme, aligning to business and functional requirements. Work with teams to implement secure systems and solutions through the application of regulations, policies, standards and procedures to meet user needs while managing business and security risks. Develop, test, and deliver Security Policy as … Cloud Infrastructure Engineering/Platform Engineer/Security Engineer role, migrating and integrating cloud foundation services (preferably on MS Azure public cloud) is essential. Proven experience with implementing secure core foundational services in a cloud infrastructure for AD, SecDevOps, Networking Services, at an enterprise level is essential. Proven experience in SIEM & SOAR (security information and event management (SIEM More ❯

development, and turning these into workable new web based and software solutions. You will work across the full suite of digital activity, so you need to be competent in coding using PHP 8.4, HTML 5, CSS 3 and JavaScript as a core skillset, and be able to create websites compatible with all browsers, platforms and responsive to the full … to manage projects from concept through to go live. Additional technical skills youll understand include; Git, JQuery, Ajax, and MySQL/Maria databases. With a team focus on secure software development, you … will follow best practices to ensure that both new and existing code is secure and maintainable, following best practices for secure design, secure coding, security testing, and vulnerability management. Key skills a successful applicant must demonstrate A deep understanding and knowledge of WordPress from theme and plugin development Core skill set of PHP More ❯

and telemetry from Pega CRM, telephony/contact center platforms, and cloud data services. • Define correlation rules and alerts for proactive incident detection and response. Application Security: • Conduct secure code reviews, threat modelling, and vulnerability assessments. • Work with development and operations teams to integrate security into the SDLC and CI/CD pipelines. More ❯

the team's efforts to protect our organisation's data and IT infrastructure. This role focusses on the operational aspects of data protection - from technical risk assessments and secure system configuration reviews to incident response, vulnerability remediation tracking, and regulatory compliance audits. You will work closely with engineering, DevOps, and IT teams to embed privacy and information security … and vulnerability management Provide advice and guidance to teams on how to mitigate vulnerabilities, and following up on remediation progress Collaborate with development teams to integrate secure coding and privacy-by-design principles Incident response & recovery: Lead incident response efforts on a duty basis Provide guidance on threat mitigation, containment, and recovery processes Legal and regulatory conformance More ❯

security audit of a web application. Identify potential vulnerabilities in logic, data handling, authentication, and access control. Assess the application against OWASP Top 10 and other secure coding standards. Review third-party dependencies for known issues. Produce a professional security report with risk ratings, findings, and recommendations. Required Skills & Experience 4+ years in Application Security , AppSec consulting … or Secure Code Review roles. Familiarity with tools like Snyk , Checkmarx , Veracode , or Burp Suite (passive scanning) . Knowledge of OWASP , CWE , and general secure software development principles. Strong technical writing and communication skills. Preferred certifications: OSCP , CSSLP , GWAPT , CEH , or equivalent. Executive summary for non-technical stakeholders. Technical breakdown of findings with severity and impact. More ❯

security audit of a web application. Identify potential vulnerabilities in logic, data handling, authentication, and access control. Assess the application against OWASP Top 10 and other secure coding standards. Review third-party dependencies for known issues. Produce a professional security report with risk ratings, findings, and recommendations. Required Skills & Experience 4+ years in Application Security , AppSec consulting … or Secure Code Review roles. Familiarity with tools like Snyk , Checkmarx , Veracode , or Burp Suite (passive scanning) . Knowledge of OWASP , CWE , and general secure software development principles. Strong technical writing and communication skills. Preferred certifications: OSCP , CSSLP , GWAPT , CEH , or equivalent. Executive summary for non-technical stakeholders. Technical breakdown of findings with severity and impact. More ❯

security audit of a web application. Identify potential vulnerabilities in logic, data handling, authentication, and access control. Assess the application against OWASP Top 10 and other secure coding standards. Review third-party dependencies for known issues. Produce a professional security report with risk ratings, findings, and recommendations. Required Skills & Experience 4+ years in Application Security , AppSec consulting … or Secure Code Review roles. Familiarity with tools like Snyk , Checkmarx , Veracode , or Burp Suite (passive scanning) . Knowledge of OWASP , CWE , and general secure software development principles. Strong technical writing and communication skills. Preferred certifications: OSCP , CSSLP , GWAPT , CEH , or equivalent. Executive summary for non-technical stakeholders. Technical breakdown of findings with severity and impact. More ❯

powered advice on this job and more exclusive features. Job Description Summary We are seeking a seasoned Cyber Security Consulting Engineer to lead the development and integration of secure architectures for critical Transmission & Distribution (T&D) systems. Job Description Summary We are seeking a seasoned Cyber Security Consulting Engineer to lead the development and integration of secure … Job Description Key Responsibilities: Act as the cybersecurity design authority for T&D products, defining end-to-end architectures across hardware, firmware, and cloud-connected systems, advising on secure protocols, cryptography, authentication, and network hardening. Translate and implement global regulatory standards (IEC … IEC 61850, IEC 62351, NERC CIP) into product requirements, and lead technical strategy planning, architecture reviews, and security certification efforts. Guide engineering teams through threat modeling, secure coding, SDLC best practices, and CIE adoption to mitigate cyber-physical risks affecting safety, reliability, or operations. Define and support embedded and software-based security features using C/C++ More ❯

including XML, JSON, SOAP, REST Delivered a commercial product through its full lifecycle from conception to support Experience with application and mobile website development Understanding of secure coding practices Experience supporting and maintaining virtual servers in Hyper-V Any experience supporting or implementing solutions in a healthcare environment Location: Remote/Home Working and Office Based: Redditch More ❯

implement software; troubleshoot production issues. Research, test, build, and coordinate integration of new products based on government requirements. Analyze information to recommend and plan new applications or modifications. Apply coding and testing standards, conduct security testing, and perform code reviews. Design and modify software systems using scientific analysis and mathematical models. Document software patches and release scopes to ensure … security. Conduct trial runs to verify information accuracy and security levels. Develop secure code, error handling, testing, validation, and documentation. Perform feasibility analyses for future projects. Resolve software issues and suggest improvements. Lead and review work of other developers. Assist in developing user manuals. Translate security requirements into design, conduct threat modeling, and address security in software acceptance. More ❯