7 of 7 Static Application Security Testing Jobs in the North of England

INFORMATION SECURITY SPECIALIST (APPLICATION SECURITY) Manchester or Stoke-on-Trent (Hybrid) KEY POINTS * Application Security focused role * Hybrid working - Manchester or Stoke-on-Trent * Secure Development Lifecycle, AppSec tooling, CI/CD integration * Salary up to £80,000 DOE ABOUT THE CLIENT Due to continued … required skills) your application to our client in conjunction with this vacancy only. KEY SKILLS Application Security, AppSec, OWASP, Threat Modelling, SAST, DAST, CI/CD Security, Secure SDLC, Penetration Testing, Code Review, Supply Chain Security, Automation, AI Security ...

years in a demonstrable leadership capacity.• Strong technical grounding in application security, cloud security, and DevSecOps.• Hands-on experience with SCA, SAST, DAST, CSPM, CNAPP • Excellent practical familiarity with industry frameworks such as OWASP and NIST.• Proven ability to drive organisational change and influence senior stakeholders.• Excellent … related services Keyword Terminology Application Security, Product Security, AppSec, Cloud Security, DevSecOps, Secure-by-Design, SDLC Security, OWASP, NIST, SAST, DAST, SCA, CSPM, CNAPP, CISSP, CISM, CISA, Security Frameworks, GDPR, ISO 27001, Risk Management, Security Governance ...

maintain security controls across cloud infrastructure using Infrastructure as Code, with a security-first mindset. Automate security testing processes, including SAST, DAST and IAST, enabling early detection and remediation of vulnerabilities. Conduct and support regular automated security assessments, vulnerability scans and remediation planning. Build … CloudFormation. Deep knowledge of securing AWS-based environments, container platforms (Docker, Kubernetes) and cloud-native services. Experience implementing and managing security tools including SAST, DAST, vulnerability scanners and container security tools. Strong scripting and automation skills using Bash, Python or similar languages. Experience with monitoring, logging and SIEM ...

Senior Security Engineer/DevSecOps Engineer Location: Multiple locations across the UK (hybrid & flexible)Salary: Up to £85,000 + comprehensive benefits package The Opportunity A large-scale digital organisation is undertaking a significant technology transformation, building modern cloud platforms that support millions of users across consumer and enterprise … cloud-native workflows Knowledge of secure development frameworks and practices (e.g. OWASP-based approaches) Experience with application security tooling such as SAST, SCA, DAST, or container security Understanding of cloud networking, identity, access management, and secure integrations Ways of Working Comfortable working as part of a cross ...

Security Engineer £50,000 to 67,000 GBP Bonus Hybrid WORKING Location: Manchester, North West - United Kingdom Type: Permanent Security Engineer - API, IAM & Automation Locations: Glasgow, Greater Manchester or Northampton (Hybrid) Salary: Up to £67,000 base + bonus (DOE) The Role We're looking for a Security … Background in Security Engineering, DevSecOps, SRE, or Platform Engineering. Desirable Experience integrating security into CI/CD pipelines. Knowledge of vulnerability scanning (SAST, DAST, SCA). Familiarity with container and Kubernetes security. This is an opportunity to play a key role in shaping secure-by-design engineering practices ...

scan, and deployment processes. Extend Python tooling for SLSA provenance, SBOM generation, hash/digest validation, and security scan aggregation (SonarQube, Sonatype IQ, SAST/Container). Optimise pipeline performance using parallel builds, caching, scope-reduced BOMs, and dependency prefetching. Ensure artifact integrity through correct SHA1/SHA256 mapping … Terraform, and container image metadata. Knowledge of supply-chain security, including SLSA, CycloneDX SBOMs, and digests. Experience with SonarQube, Sonatype IQ, container and SAST scanning. Proven skills in pipeline performance tuning, including caching, parallelisation, and dependency pruning. Awareness of compliance and security standards relevant to CI/ ...

package, scan, deploy). Extend Python tooling for SLSA provenance, SBOM generation, hash/digest accuracy, and security scan aggregation (SonarQube, Sonatype IQ,SAST/Container). Optimize performance (parallel builds, caching, scope-reduced BOMs, dependency prefetch). Ensure artifact integrity (correct SHA1/SHA256 mapping, reproducible inputs, evidence … Helm/Terraform and container image metadata. Supply-chain security (SLSA, CycloneDX SBOM, digests). Experience with SonarQube, Sonatype IQ, container and SAST scanning. Proven performance tuning (caching, parallelization, dependency pruning). Compliance Awareness. ...