14 of 14 Security Hardening Jobs in London

London, United Kingdom Posted on 24/02/2025 Job Description: Security Testing Engineer Location: Remote with occasional travel as required Employment Type: Permanent About the Role Scrumconnect Consulting is looking for a Security Testing Engineer to ensure the security, resilience, and compliance of GOV.UK digital … services . This role involves identifying vulnerabilities, mitigating security risks, and ensuring adherence to government security policies and DDAT frameworks . You will work closely with developers, security architects, and business stakeholders to embed security testing into Agile development workflows and DevSecOps pipelines. As a Security Testing Engineer , you will conduct static and dynamic security assessments, penetration testing, and vulnerability analysis , ensuring that applications meet the highest security standards. Key Responsibilities 1. Security Test Planning & Execution Develop, implement, and execute comprehensive security test plans for GOV.UK digital services. Identify security More ❯

is pivotal in helping infrastructure and Release management teams to secure our networks, operating systems, containers, pipelines and code. We are part of the Security team with a mission of reducing the impact of threats to Parity and its products, bolstering their resilience against potential cyber threats. About the … position This is a crucial role where your understanding of people, systems and security will allow you to advocate for and influence best practices in a diverse free thinking organisation while facilitating smooth development and implementation processes. It is a unique opportunity to help secure an innovative organisation where … is direct and honest and understands that a check box approach doesn't get results. It involves Advising Infra Engineering and IT teams on security topics and supporting their work from the security standpoint - maintaining things practical using a risk-based approach with a focus on following areas More ❯

for current and new clients, supporting engagements across multiple sectors and technical environments. This hands-on, client-facing position focuses on control implementation, infrastructure security hardening, technical remediation, and cyber risk reduction. You will be expected to work independently while maintaining alignment with industry standards and client requirements. … the implementation of cybersecurity solutions across a wide range of client environments, ensuring alignment with industry standards and regulatory requirements. Perform system and infrastructure hardening activities, including configuration reviews, security baseline application, and policy enforcement across cloud, on-premises, and hybrid environments. Conduct technical control assessments, gap analysis … mechanisms. Collaborate with client stakeholders and internal teams to provide actionable guidance and implementation support tailored to specific business and regulatory contexts. Contribute to security design reviews and technical workshops, offering practical insights to improve client security posture and delivery assurance. Provide clear and concise technical documentation, including More ❯

directly enable efficient data flow into Looker for marketing analysis and reporting. A significant part of this role involves leading and contributing to rigorous security audits and driving compliance within their GCP environments. This is a hands-on technical role requiring a keen eye for detail and a proactive … approach to cloud security and governance. ________________________________________ Responsibilities: • Design, build, and maintain scalable, secure GCP infrastructure (Compute, networking, storage, IAM). • Implement and manage Infrastructure-as-Code (IaC) using Terraform. • Ensure operational health, performance, and cost-efficiency of GCP resources for marketing data. • Collaborate with marketing data engineers and analysts … on infrastructure for data integration. • Lead and actively participate in security audits, identifying vulnerabilities, and ensuring adherence to security policies. • Develop and enforce GCP security hardening measures (network segmentation, access controls, encryption, GDPR/ISO 27001 compliance). • Design and implement ETL pipelines for marketing data More ❯

directly enable efficient data flow into Looker for marketing analysis and reporting. A significant part of this role involves leading and contributing to rigorous security audits and driving compliance within their GCP environments. This is a hands-on technical role requiring a keen eye for detail and a proactive … approach to cloud security and governance. ________________________________________ Responsibilities: • Design, build, and maintain scalable, secure GCP infrastructure (Compute, networking, storage, IAM). • Implement and manage Infrastructure-as-Code (IaC) using Terraform. • Ensure operational health, performance, and cost-efficiency of GCP resources for marketing data. • Collaborate with marketing data engineers and analysts … on infrastructure for data integration. • Lead and actively participate in security audits, identifying vulnerabilities, and ensuring adherence to security policies. • Develop and enforce GCP security hardening measures (network segmentation, access controls, encryption, GDPR/ISO 27001 compliance). • Design and implement ETL pipelines for marketing data More ❯

egress Patterns, application layer protocols (TLS/SSL, HTTP(S), DNS, etc) * Experience with Docker/Kubernetes (creating images, deployment) * Experience with GCP based security hardening including IAM, ACL, firewall rules * Experience with DBMS and SQL (Oracle) * Experience in supporting/building Continuous Delivery pipelines * Experience with deployment More ❯

depth experience with RedHat Ansible and AWX RedHat Satellite Python, Perl and Bash scripting DevOps mentality, CI/CD pipelines and other automation concepts Security hardening principles in line with CIS industry benchmarks Project focussed, experience taking ownership of projects (end-to-end) Data security governance and More ❯

depth experience with RedHat Ansible and AWX RedHat Satellite Python, Perl and Bash scripting DevOps mentality, CI/CD pipelines and other automation concepts Security hardening principles in line with CIS industry benchmarks Project focussed, experience taking ownership of projects (end-to-end) Data security governance and More ❯

depth experience with RedHat Ansible and AWX RedHat Satellite Python, Perl and Bash scripting DevOps mentality, CI/CD pipelines and other automation concepts Security hardening principles in line with CIS industry benchmarks Project focussed, experience taking ownership of projects (end-to-end) Data security governance and More ❯

British Nationals Only About The Client: I am working with a highly regarded and secure-tech organisation leading cutting-edge digital infrastructure transformation across security programmes. They deliver ultra-secure, scalable and high-performance cloud platforms for clients operating in some of the UK's most mission-critical environments. … new and existing secure programmes of work. The Benefits: Highly competitive salary and hybrid flexibility Work on highly classified and secure projects within the security space Career progression within a modern DevSecOps culture Work with the latest tools and cloud platforms Opportunity to shape secure solutions at a large … and real-time data streaming pipelines. As a senior or lead engineer, you’ll be hands-on in both build and support, working across security-first infrastructure and enabling robust DevSecOps practices. Essential Skills: Strong experience with AWS MSK (Kafka) and secure multi-account AWS environments Proven production experience More ❯

Migrate from custom auth to Auth0 (or similar), with social login + MFA Data governance: Apply labelling to Postgres, S3 and BigQuery data Web security hardening: Audit React, GraphQL and FastAPI layers to eliminate XSS/CSRF and strengthen CSP Static analysis remediation: Triage and address SAST findings … access controls Audit logging: Structure and surface user action logs in the app 💻 Tech Stack Frontend: React, Apollo GraphQL Backend: FastAPI (Python) Infra/Security: GitHub Actions, SAST tools, Auth0 (or equivalent), RBAC, CSP ✅ What We’re Looking For Must-haves: 5+ years building production-grade web apps (React … a must Bonus points for: Experience migrating to managed auth Exposure to Kubernetes, Terraform or Helm Working in early-stage, high-growth startups under security constraints 💬 How We Work You’ll ship iteratively, demo weekly, and document your work for long-term sustainability. We value clean code, proactive ownership More ❯

Migrate from custom auth to Auth0 (or similar), with social login + MFA Data governance: Apply labelling to Postgres, S3 and BigQuery data Web security hardening: Audit React, GraphQL and FastAPI layers to eliminate XSS/CSRF and strengthen CSP Static analysis remediation: Triage and address SAST findings … access controls Audit logging: Structure and surface user action logs in the app 💻 Tech Stack Frontend: React, Apollo GraphQL Backend: FastAPI (Python) Infra/Security: GitHub Actions, SAST tools, Auth0 (or equivalent), RBAC, CSP ✅ What We’re Looking For Must-haves: 5+ years building production-grade web apps (React … a must Bonus points for: Experience migrating to managed auth Exposure to Kubernetes, Terraform or Helm Working in early-stage, high-growth startups under security constraints 💬 How We Work You’ll ship iteratively, demo weekly, and document your work for long-term sustainability. We value clean code, proactive ownership More ❯

Migrate from custom auth to Auth0 (or similar), with social login + MFA Data governance: Apply labelling to Postgres, S3 and BigQuery data Web security hardening: Audit React, GraphQL and FastAPI layers to eliminate XSS/CSRF and strengthen CSP Static analysis remediation: Triage and address SAST findings … access controls Audit logging: Structure and surface user action logs in the app 💻 Tech Stack Frontend: React, Apollo GraphQL Backend: FastAPI (Python) Infra/Security: GitHub Actions, SAST tools, Auth0 (or equivalent), RBAC, CSP ✅ What We’re Looking For Must-haves: 5+ years building production-grade web apps (React … a must Bonus points for: Experience migrating to managed auth Exposure to Kubernetes, Terraform or Helm Working in early-stage, high-growth startups under security constraints 💬 How We Work You’ll ship iteratively, demo weekly, and document your work for long-term sustainability. We value clean code, proactive ownership More ❯

release process that balances the need for improvements to the product as well as high assurance releases. Monitor and enhance system reliability, performance, and security through the use of metrics. Clearly communicate to stakeholders the current status of CI/CD pipelines, releases, timelines, known issues, and any other … with modern technologies like CircleCI, GitHub, and other DevOps relevant tools. Experience with cloud platforms (e.g., AWS, Azure, GCP). Solid understanding of networking, security, and system administration. Excellent problem-solving and communication skills. Experience delivering and maintaining systems that run on air-gapped and security-hardened networks. … Ability to understand, debug, and modify software written in languages such as Go, Python. Eligible to obtain and maintain an active UK Security Clearance. PREFERRED QUALIFICATIONS Experience owning a complex release process with multiple hardware and software products. Experience implementing automated testing frameworks in a hardware-in-the-loop More ❯