8 of 8 Static Application Security Testing Jobs in the Midlands

The team you';ll be working with: Security Development and Test Director We are currently recruiting for a dynamic Security Development and Test Director to join our growing Security team. About Us NTT DATA is one of the world's largest Global Security services providers with over 7500 Security SMEs and Integration partner to many … into CI/CD workflows to enable secure-by-design delivery. Oversee the implementation and optimisation of security tooling, including Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Software Composition Analysis (SCA), and container security scanners. Establish architectural review boards and security design checkpoints to validate that new … Average time taken to remediate critical and high-severity vulnerabilities identified during development and testing phases. Toolchain Utilisation Effectiveness: Adoption and effective use of security tools (e.g., SAST, DAST, SCA) across development teams, measured by scan frequency and issue resolution rates. Training and Awareness Uptake: Percentage of development and QA staff completing secure coding and DevSecOps training programs. More ❯

INFORMATION SECURITY SPECIALIST KEY POINTS • Hybrid working model (Stoke-on-Trent) – up to £55,000 p/a • Focus on application security, code analysis, threat modelling and penetration testing • Work closely with Software Development teams across a large technical environment • Opportunity to influence secure development practices and automation initiatives ABOUT THE CLIENT We’re supporting a … respected and technology-driven organisation that continues to strengthen its security posture across a broad portfolio of applications. They are looking to appoint an Information Security Specialist to join their established Application Security team, contributing to secure development practices, code assurance, and vulnerability identification across complex systems. THE BENEFITS • Hybrid working and flexible approach • Exposure to … skills) your application to our client in conjunction with this vacancy only. KEY SKILLS Application Security, AppSec, OWASP, Threat Modelling, Secure Development Lifecycle, Code Review, DAST, SAST, CI/CD, Penetration Testing, Supply Chain Security, Risk Assessment, Software Security, Automation More ❯

INFORMATION SECURITY SPECIALIST KEY POINTS * Hybrid working model (Stoke-on-Trent) - up to £55,000 p/a* Focus on application security, code analysis, threat modelling and penetration testing* Work closely with Software Development teams across a large technical environment* Opportunity to influence secure development practices and automation initiatives ABOUT THE CLIENT We're supporting a … respected and technology-driven organisation that continues to strengthen its security posture across a broad portfolio of applications. They are looking to appoint an Information Security Specialist to join their established Application Security team, contributing to secure development practices, code assurance, and vulnerability identification across complex systems. THE BENEFITS * Hybrid working and flexible approach* Exposure to … skills) your application to our client in conjunction with this vacancy only. KEY SKILLS Application Security, AppSec, OWASP, Threat Modelling, Secure Development Lifecycle, Code Review, DAST, SAST, CI/CD, Penetration Testing, Supply Chain Security, Risk Assessment, Software Security, Automation More ❯

Job Title: Senior Application Security Engineer Salary: £70,000 Location: Reading/remote About the Organisation Join a fast-growing UK technology and consulting firm that's investing heavily in cutting-edge cyber security. With a strong focus on innovation, collaboration, and professional development, this company empowers its people to shape the future of secure digital transformation across … be part of a business that values expertise, agility, and doing the right thing - where everyone has the opportunity to make a genuine impact. About the Role The Senior Application Security Engineer will play a key role in protecting the organisation's infrastructure, cloud platforms, and applications. Working within a highly technical and collaborative cyber team - supported by … security initiatives, ensuring systems and software are secure by design. Drive vulnerability management and implement a risk-based approach across the technology stack. Perform security testing (SAST, DAST, SCA) and work with developers to remediate findings. Support cloud security controls (primarily Azure, including cloud-native apps). Champion secure development, threat modelling, and DevSecOps integration. Research More ❯

As a Senior Penetration Tester, you will focus on securing the Company's applications through best practice development lifecycle controls and perform penetration tests to assess the effectiveness of security measures. Full-time Closes 03/12/2025 The Information Security department deal with the security of closed sourced, open source and proprietary applications. The team … and remediating risks efficiently through penetration testing. Utilising your knowledge of Secure Development Lifecycles and code assessment, you will work with the Software Development teams to understand and mitigate application-based vulnerabilities. This role is based within the wider Information Security department, with engineers and analysts of varying backgrounds. Collectively, the team utilises enterprise and bespoke tooling to … identify, mitigate threats, and safeguard the Business. We utilise AI to enhance our existing security processes and practices, embracing the advantages it brings. You will play a key role in our journey to leverage this powerful technology in strengthening our application security. This role is eligible for inclusion in the Company's hybrid working from home policy. Preferred More ❯

Cyber Security Consultant £30,000 – £45,000 per annum Melton Mowbray Role Summary We’re a growing MSP based in Melton Mowbray, helping organisations of all sizes strengthen their security posture and achieve recognised certifications. We’re looking for a skilled Cyber Security Consultant specialising in Penetration Testing to deliver high-quality security testing and assurance across a diverse client base. You’ll lead and support security assessments including network, web application, mobile, cloud, wireless, and internal infrastructure testing , alongside Cyber Essentials and Cyber Essentials Plus (CE/CE+) assessments. This role suits someone who enjoys hands-on technical work, clear reporting, and helping clients improve their security posture … and Certifications: CREST CRT/CCRT/CCT or CHECK Team Member . OSCP/OSWE/OSEP/GPEN/eCPPT/similar. Experience with secure code review, SAST/DAST pipelines, or DevSecOps. Familiarity with ISO 27001 or wider GRC frameworks. What We Offer: Competitive salary and annual performance bonus. Training budget and certification support. Clear progression path More ❯

scale Modernisation Programme. The role requires deep expertise in modern quality engineering practices, with the ability to guide delivery teams, implement QA standards, and ensure compliance with the full testing lifecycle. Technology Environment Cloud & Platform: HCP (Kubernetes-based) on AWS, with potential migration to Azure Monitoring: Kibana, Grafana, Splunk, PagerDuty (transitioning to … Dynatrace) CI/CD: GitLab pipelines Databases: Oracle RDS, SQL, MongoDB (limited use) Languages & Frameworks: Java 21, Spring Boot/Spring Batch Testing & Automation: Playwright, WireMock, OWASP ZAP (SAST, DAST, SCA), Gatling Key Responsibilities Define and implement QA principles within the workstream, aligned with programme strategy Collaborate with stakeholders to establish automation patterns and repeatable testing approaches Direct … (SIT) End-to-End Business Testing: Business Process Testing (BPT) Specialist Testing: Performance, Security, Accessibility, and Operational Acceptance Testing Secure Development: Oversight of SAST/DAST in CI/CD pipelines to ensure "Secure by Design More ❯

will lead the quality assurance function across internal and client projects, managing QA resources and coordinating partner teams as required. This role is responsible for driving best practices in testing, including manual, automation, performance, and security testing, while ensuring adherence to established standards throughout the software development lifecycle. The Test Manager will actively participate in test planning … execution, and defect resolution, championing quality engineering principles and supporting successful project delivery. Key Responsibilities • Manage and lead the testing team, including direct line management and matrix management of client and partner resources as required.• Collaborate with clients to ensure effective utilisation of the test team in line with business objectives.• Drive the implementation of best practices across all … Functional Testing (NFT). Desirable Skills and Experience • Familiarity with CI/CD pipelines, particularly GitLab.• Understanding of automation frameworks and tools such as Playwright, Wiremock, OWASP Zap (SAST, DAST, SCA), Gatling• Knowledge of monitoring tools including Kibana, Grafana, Splunk, PagerDuty, and ideally Dynatrace.• Exposure to cloud platforms (AWS, Azure) and containerisation technologies (Kubernetes).• Understanding of databases: Oracle More ❯