2 of 2 Static Application Security Testing Jobs in Central London

required once a month to the office. Key Skills and Responsibilities: Design, deliver, and support secure and scalable AWS infrastructure using services like EC2, S3, ECS, and FARGATE Integrate SAST (Static Application Security Testing) and DAST (Dynamic Application Security Testing) tools into CI/CD pipelines to enforce secure development practices Automate infrastructure More ❯

cloud landing zones (Azure/AWS) with environment segregation (dev, test, UAT, prod). - Automate infrastructure using Infrastructure as Code (Terraform, ARM, CloudFormation) - Embed security and compliance controls (SAST/DAST/IaC/SBOM). - Enable observability (logging, metrics, tracing, alerting) and support SRE/incident management practices. - Partner with client stakeholders to align DevOps with FCA/… operational resilience and Lloyd's standards. - Support disaster recovery and business continuity planning, including resilience testing. - Mentor client teams in DevOps best practices and drive shift-left adoption of testing, security, and compliance. Skills & Experience: - Proven expertise with CI/CD tooling (Azure DevOps, GitHub Actions, Jenkins, GitLab). - Strong knowledge of infrastructure automation (Terraform, Ansible, Puppet, Chef … . - Hands-on experience with Azure and/or AWS in enterprise or hybrid environments. - Familiarity with containerisation & orchestration (Docker, Kubernetes). - Solid understanding of security controls and compliance in financial services. - Experience with observability tools (Prometheus, Grafana, ELK, Splunk, AppDynamics, etc.). - Awareness of UK/EU financial regulations (GDPR, PRA/FCA, Lloyd's). - Consulting experience More ❯