1 to 25 of 26 Static Application Security Testing Jobs in the South West

Job Title: SC Cleared DevSecOps Engineer Location: Corsham Type: Contract Clearance: Active SC (Security Check) Clearance required Salary/Rate: £550-£675 DOE Overview: We are seeking a highly skilled and Security Cleared (SC) DevSecOps Engineer to join our dynamic team. The ideal candidate will have a strong background in DevOps principles, with a specific focus on embedding … security throughout the software development lifecycle. You will play a pivotal role in building, deploying and maintaining secure, scalable infrastructure and applications for mission-critical environments. Key Responsibilities: Design, implement … and manage secure CI/CD pipelines using industry best practices Embed security at every stage of the DevOps lifecycle (shift-left security) Integrate security tools (SAST, DAST, secrets management, etc.) into development workflows Collaborate with development, infrastructure and security teams to ensure compliance with governance and regulatory requirements Automate infrastructure provisioning using Infrastructure as Code More ❯

Job Title: SC Cleared DevSecOps Engineer Location: Corsham Type: Contract Clearance: Active SC (Security Check) Clearance required Salary/Rate: £550-£675 DOE Overview: We are seeking a highly skilled and Security Cleared (SC) DevSecOps Engineer to join our dynamic team. The ideal candidate will have a strong background in DevOps principles, with a specific focus on embedding … security throughout the software development lifecycle. You will play a pivotal role in building, deploying and maintaining secure, scalable infrastructure and applications for mission-critical environments. Key Responsibilities: Design, implement … and manage secure CI/CD pipelines using industry best practices Embed security at every stage of the DevOps lifecycle (shift-left security) Integrate security tools (SAST, DAST, secrets management, etc.) into development workflows Collaborate with development, infrastructure and security teams to ensure compliance with governance and regulatory requirements Automate infrastructure provisioning using Infrastructure as Code More ❯

designing, developing, and maintaining large-scale, secure, and high-performing solutions. This role involves mentoring and coaching junior team members, translating stakeholder requirements into actionable user stories, and embedding security throughout the software development life cycle. The position calls for strong technical expertise, collaborative mindset, and an ability to deliver innovative solutions that align with business objectives. Experience Requirements … Software Development & Principles Programming Languages: Proficiency in one or more of: Java, Spring Boot, Python, JavaScript, TypeScript, ReactJS SOLID Principles: Familiarity with object-oriented and clean coding practices Testing & BDD Unit Testing Frameworks: Experience with Cypress, Cucumber, Behave, Selenium, or similar tools Domain-Specific Languages: Knowledge of BDD approaches (e.g., Cucumber, Gherkin) for test automation Containerisation & Microservices Container … to build, configure, and secure cloud environments effectively Security & CI/CD Security Integration: Familiarity with embedding security checks at every phase of the SDLC (e.g., SAST, DAST) Automation Pipelines: Experience with Continuous Integration (CI), Continuous Delivery (CD), and continuous testing tools (e.g., Jenkins, GitHub Actions) Agile & Mentorship Agile Delivery: Background in Scrum or Kanban, assisting More ❯

least one object oriented language, e.g. Java, Go or Python Developing of RESTful API services & understanding of API Gateways (e.g. APIGEE) Building applications utilising container technologies e.g. Docker Managing application deployed to Kubernetes clusters, Istio & Helm Cloud: GCP, GKE, IaC (Terraform) Build Tools & DevOps principles: Git, Maven, Jenkins CI/CD, Nexus, SonarQube It would be … great if you also had... Experience in Spring Boot and Hibernate Experience of building microservice architecture and event driven systems Experience in Test automation: BDD, mocking, contract testing, Sast Exposure to web technologies, data tooling & infrastructure/networking About working for us Our focus is to ensure we're inclusive every day, building an organisation that reflects modern society More ❯

one object oriented language, e.g. Java, Go or Python Developing of RESTful API services & understanding of API Gateways (e.g. APIGEE). Building applications utilising container technologies e.g. Docker. Managing application deployed to Kubernetes clusters, Istio & Helm. Cloud: GCP, GKE, IaC (Terraform). Build Tools & DevOps principles: Git, Maven, Jenkins CI/CD, Nexus, SonarQube. SQL/NoSQL database, Basic … in Spring Boot and Hibernate. Experience in JavaScript or other front-end technologies. Experience of building microservice architecture and event driven systems. Experience in Test automation: BDD, mocking, contract testing, Sast. Exposure to web technologies, data tooling & infrastructure/networking. About working for us Our focus is to ensure we're inclusive every day, building an organisation that reflects More ❯

ideally an additional OOP language e.g. Go or Python; Developing of RESTful API services & understanding of API Gateways (e.g. APIGEE). Building applications utilising container technologies e.g. Docker. Managing application deployed to Kubernetes clusters, Istio & Helm. Cloud: GCP, GKE, IaC (Terraform). Build Tools & DevOps principles: Git, Maven, Jenkins CI/CD, Nexus, SonarQube. SQL/NoSQL database, Basic … in Spring Boot and Hibernate. Experience in JavaScript or other front-end technologies. Experience of building microservice architecture and event driven systems. Experience in Test automation: BDD, mocking, contract testing, Sast. Exposure to web technologies, data tooling & infrastructure/networking. About working for us Our focus is to ensure we're inclusive every day, building an organisation that reflects More ❯

The Cyber Security Architect will work closely with the solution architects and enterprise architects to improve and maintain the cyber security of NAVBLUE'S products, services and infrastructure. The ideal candidate will play a critical role in designing and implementing cybersecurity frameworks to align with the business objectives and mitigate potential threats. Main Responsibilities: Perform Security Risk … and Threat analysis during the initial design and the Software Development Life Cycle planning, analysis, and design phases. Providing recommendations and requirements for mitigating any security weaknesses identified while defining Non-Functional Requirements in coordination with Solutions Architects. Ensure Security by Design is embedded within the Software Development Life Cycle, while ensuring that all security requirements have … Working knowledge of the SDLC and AWS network architecture Knowledge of the SAFe Agile method would be an asset Understanding of security testing in the software pipeline (SAST, DAST, SCA, RASP) Knowledge of STRIDE, DICE and other threat and risk frameworks Knowledge of AWS tools Proven experience managing multiple projects simultaneously Practical interpersonal skills; adaptable to all levels More ❯

Social network you want to login/join with: Opus are looking for multiple experienced Application Security Architects to join our clients growing AppSec team. As our client continues the development and improvement of their overall cyber team, they’re looking for AppSec specialists to shape the strategic direction of our clients application security posture, collaborating … with developers, product managers, and security stakeholders to ensure that security is embedded throughout the SDLC. Main Responsibilities: Define and enforce secure architecture standards and frameworks across web, mobile, and cloud-native applications. Provide security guidance throughout product development, including threat modeling, secure coding, design reviews, and architecture assessments. Lead the implementation of DevSecOps practices, integrating security … SANS CWE Top 25, and secure coding best practices. Familiarity with threat modelling methodologies such as STRIDE and architectural risk analysis. Hands-on experience with tools such as SAST/DAST/IAST, Snyk, SonarQube, Burp Suite, Veracode, or similar. Strong understanding of cloud platforms) and modern development architectures Relevant certifications such as CSSLP, OSWE, GWAPT, CISSP , or equivalent are More ❯

Social network you want to login/join with: Opus are looking for multiple experienced Application Security Architects to join our clients growing AppSec team. As our client continues the development and improvement of their overall cyber team, they’re looking for AppSec specialists to shape the strategic direction of our clients application security posture, collaborating … with developers, product managers, and security stakeholders to ensure that security is embedded throughout the SDLC. Main Responsibilities: Define and enforce secure architecture standards and frameworks across web, mobile, and cloud-native applications. Provide security guidance throughout product development, including threat modeling, secure coding, design reviews, and architecture assessments. Lead the implementation of DevSecOps practices, integrating security … SANS CWE Top 25, and secure coding best practices. Familiarity with threat modelling methodologies such as STRIDE and architectural risk analysis. Hands-on experience with tools such as SAST/DAST/IAST, Snyk, SonarQube, Burp Suite, Veracode, or similar. Strong understanding of cloud platforms) and modern development architectures Relevant certifications such as CSSLP, OSWE, GWAPT, CISSP , or equivalent are More ❯

Social network you want to login/join with: Opus are looking for multiple experienced Application Security Architects to join our clients growing AppSec team. As our client continues the development and improvement of their overall cyber team, they’re looking for AppSec specialists to shape the strategic direction of our clients application security posture, collaborating … with developers, product managers, and security stakeholders to ensure that security is embedded throughout the SDLC. Main Responsibilities: Define and enforce secure architecture standards and frameworks across web, mobile, and cloud-native applications. Provide security guidance throughout product development, including threat modeling, secure coding, design reviews, and architecture assessments. Lead the implementation of DevSecOps practices, integrating security … SANS CWE Top 25, and secure coding best practices. Familiarity with threat modelling methodologies such as STRIDE and architectural risk analysis. Hands-on experience with tools such as SAST/DAST/IAST, Snyk, SonarQube, Burp Suite, Veracode, or similar. Strong understanding of cloud platforms) and modern development architectures Relevant certifications such as CSSLP, OSWE, GWAPT, CISSP , or equivalent are More ❯

Social network you want to login/join with: Senior Application Security Architect, Cheltenham Client: Opus Recruitment Solutions Location: Cheltenham Job Category: Other EU work permit required: Yes Job Views: 3 Posted: 26.06.2025 Expiry Date: 10.08.2025 Job Description: Opus is seeking multiple experienced Application Security Architects to join our client's growing AppSec team. As they … continue developing their cyber team, they aim for AppSec specialists to shape the strategic direction of their application security posture, collaborating with developers, product managers, and security stakeholders to embed security throughout the SDLC. Main Responsibilities: Define and enforce secure architecture standards across web, mobile, and cloud-native applications. Provide security guidance during product development … OWASP Top 10, SANS CWE Top 25, and secure coding practices. Familiarity with threat modeling methodologies such as STRIDE and architectural risk analysis. Hands-on experience with tools like SAST/DAST/IAST, Snyk, SonarQube, Burp Suite, Veracode, or similar. Strong understanding of cloud platforms and modern development architectures. Relevant certifications such as CSSLP, OSWE, GWAPT, CISSP, or equivalent More ❯

Social network you want to login/join with: Senior Application Security Architect, Gloucester Client: Opus Recruitment Solutions Location: Gloucester, United Kingdom Job Category: Other - EU work permit required: Yes Job Views: 3 Posted: 26.06.2025 Expiry Date: 10.08.2025 Job Description: Opus is looking for multiple experienced Application Security Architects to join our client's growing AppSec … team. As our client continues developing and improving their cyber team, they seek AppSec specialists to shape the strategic direction of their application security posture, collaborating with developers, product managers, and security stakeholders to embed security throughout the SDLC. Main Responsibilities: Define and enforce secure architecture standards across web, mobile, and cloud-native applications. Provide security … Top 10, SANS CWE Top 25, and secure coding best practices. Familiarity with threat modeling methodologies such as STRIDE and architectural risk analysis. Hands-on experience with tools like SAST/DAST/IAST, Snyk, SonarQube, Burp Suite, Veracode, or similar. Strong understanding of cloud platforms and modern development architectures. Relevant certifications such as CSSLP, OSWE, GWAPT, CISSP or equivalent More ❯

Social network you want to login/join with: Senior Application Security Architect, Newcastle-upon-Tyne, Tyne and Wear Client: Opus Recruitment Solutions Location: Newcastle-upon-Tyne, Tyne and Wear, United Kingdom Job Category: Other EU work permit required: Yes Job Views: 3 Posted: 26.06.2025 Expiry Date: 10.08.2025 Job Description: Opus is looking for multiple experienced Application Security Architects to join our client's growing AppSec team. As our client continues to develop and improve their cyber team, they seek AppSec specialists to shape the strategic direction of their application security posture, collaborating with developers, product managers, and security stakeholders to embed security throughout the SDLC. Main Responsibilities: Define and enforce … SANS CWE Top 25, and secure coding best practices. Familiarity with threat modeling methodologies such as STRIDE and architectural risk analysis. Hands-on experience with tools such as SAST/DAST/IAST, Snyk, SonarQube, Burp Suite, Veracode, or similar. Strong understanding of cloud platforms and modern development architectures. Relevant certifications such as CSSLP, OSWE, GWAPT, CISSP , or equivalent are More ❯

Social network you want to login/join with: Senior Application Security Architect, plymouth col-narrow-left Client: Opus Recruitment Solutions Location: plymouth, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 3 Posted: 26.06.2025 Expiry Date: 10.08.2025 col-wide Job Description: Opus is looking for multiple experienced Application Security … to join our client's growing AppSec team. As our client continues developing and improving their cyber team, they seek AppSec specialists to shape the strategic direction of their application security posture, collaborating with developers, product managers, and security stakeholders to embed security throughout the SDLC. Main Responsibilities: Define and enforce secure architecture standards across web … Top 10, SANS CWE Top 25, and secure coding best practices. Familiarity with threat modeling methodologies such as STRIDE and architectural risk analysis. Hands-on experience with tools like SAST/DAST/IAST, Snyk, SonarQube, Burp Suite, Veracode, or similar. Strong understanding of cloud platforms and modern development architectures. Relevant certifications such as CSSLP, OSWE, GWAPT, CISSP , or equivalent More ❯

Social network you want to login/join with: Application Security Architect, cheltenham col-narrow-left Client: Opus Recruitment Solutions Location: Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 3 Posted: 26.06.2025 Expiry Date: 10.08.2025 col-wide Job Description: Opus are looking for multiple experienced Application Security Architects to join our … AppSec team. As our client continues the development and improvement of their overall cyber team, they’re looking for AppSec specialists to shape the strategic direction of our clients application security posture, collaborating with developers, product managers, and security stakeholders to ensure that security is embedded throughout the SDLC. Main Responsibilities: Define and enforce secure architecture … SANS CWE Top 25, and secure coding best practices. Familiarity with threat modelling methodologies such as STRIDE and architectural risk analysis. Hands-on experience with tools such as SAST/DAST/IAST, Snyk, SonarQube, Burp Suite, Veracode, or similar. Strong understanding of cloud platforms) and modern development architectures Relevant certifications such as CSSLP, OSWE, GWAPT, CISSP , or equivalent are More ❯

Social network you want to login/join with: Application Security Architect, plymouth col-narrow-left Client: Opus Recruitment Solutions Location: plymouth, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 6 Posted: 28.06.2025 Expiry Date: 12.08.2025 col-wide Job Description: Opus are looking for multiple experienced Application Security Architects … AppSec team. As our client continues the development and improvement of their overall cyber team, they’re looking for AppSec specialists to shape the strategic direction of our clients application security posture, collaborating with developers, product managers, and security stakeholders to ensure that security is embedded throughout the SDLC. Main Responsibilities: Define and enforce secure architecture … SANS CWE Top 25, and secure coding best practices. Familiarity with threat modelling methodologies such as STRIDE and architectural risk analysis. Hands-on experience with tools such as SAST/DAST/IAST, Snyk, SonarQube, Burp Suite, Veracode, or similar. Strong understanding of cloud platforms) and modern development architectures Relevant certifications such as CSSLP, OSWE, GWAPT, CISSP , or equivalent are More ❯

Social network you want to login/join with: Application Security Architect, bournemouth col-narrow-left Client: Opus Recruitment Solutions Location: bournemouth, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 3 Posted: 26.06.2025 Expiry Date: 10.08.2025 col-wide Job Description: Opus are looking for multiple experienced Application Security Architects … AppSec team. As our client continues the development and improvement of their overall cyber team, they’re looking for AppSec specialists to shape the strategic direction of our clients application security posture, collaborating with developers, product managers, and security stakeholders to ensure that security is embedded throughout the SDLC. Main Responsibilities: Define and enforce secure architecture … SANS CWE Top 25, and secure coding best practices. Familiarity with threat modelling methodologies such as STRIDE and architectural risk analysis. Hands-on experience with tools such as SAST/DAST/IAST, Snyk, SonarQube, Burp Suite, Veracode, or similar. Strong understanding of cloud platforms) and modern development architectures Relevant certifications such as CSSLP, OSWE, GWAPT, CISSP , or equivalent are More ❯

Social network you want to login/join with: Senior Application Security Architect, bristol col-narrow-left Client: Opus Recruitment Solutions Location: bristol, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 3 Posted: 26.06.2025 Expiry Date: 10.08.2025 col-wide Job Description: Opus are looking for multiple experienced Application Security … AppSec team. As our client continues the development and improvement of their overall cyber team, they’re looking for AppSec specialists to shape the strategic direction of our clients application security posture, collaborating with developers, product managers, and security stakeholders to ensure that security is embedded throughout the SDLC. Main Responsibilities: Define and enforce secure architecture … SANS CWE Top 25, and secure coding best practices. Familiarity with threat modelling methodologies such as STRIDE and architectural risk analysis. Hands-on experience with tools such as SAST/DAST/IAST, Snyk, SonarQube, Burp Suite, Veracode, or similar. Strong understanding of cloud platforms) and modern development architectures Relevant certifications such as CSSLP, OSWE, GWAPT, CISSP , or equivalent are More ❯

Social network you want to login/join with: Application Security Architect, swindon, wiltshire col-narrow-left Client: Opus Recruitment Solutions Location: swindon, wiltshire, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 3 Posted: 26.06.2025 Expiry Date: 10.08.2025 col-wide Job Description: Opus are looking for multiple experienced Application Security … AppSec team. As our client continues the development and improvement of their overall cyber team, they’re looking for AppSec specialists to shape the strategic direction of our clients application security posture, collaborating with developers, product managers, and security stakeholders to ensure that security is embedded throughout the SDLC. Main Responsibilities: Define and enforce secure architecture … SANS CWE Top 25, and secure coding best practices. Familiarity with threat modelling methodologies such as STRIDE and architectural risk analysis. Hands-on experience with tools such as SAST/DAST/IAST, Snyk, SonarQube, Burp Suite, Veracode, or similar. Strong understanding of cloud platforms) and modern development architectures Relevant certifications such as CSSLP, OSWE, GWAPT, CISSP , or equivalent are More ❯

Social network you want to login/join with: Application Security Architect, newcastle-upon-tyne, tyne and wear col-narrow-left Client: Opus Recruitment Solutions Location: newcastle-upon-tyne, tyne and wear, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 3 Posted: 26.06.2025 Expiry Date: 10.08.2025 col-wide Job Description: Opus … are looking for multiple experienced Application Security Architects to join our clients growing AppSec team. As our client continues the development and improvement of their overall cyber team, they’re looking for AppSec specialists to shape the strategic direction of our clients application security posture, collaborating with developers, product managers, and security stakeholders to ensure … SANS CWE Top 25, and secure coding best practices. Familiarity with threat modelling methodologies such as STRIDE and architectural risk analysis. Hands-on experience with tools such as SAST/DAST/IAST, Snyk, SonarQube, Burp Suite, Veracode, or similar. Strong understanding of cloud platforms) and modern development architectures Relevant certifications such as CSSLP, OSWE, GWAPT, CISSP , or equivalent are More ❯

Application Security Architect, gloucester Client: Opus Recruitment Solutions Location: gloucester, United Kingdom Job Category: Other - EU work permit required: Yes Job Views: 4 Posted: 26.06.2025 Expiry Date: 10.08.2025 Job Description: Opus are looking for multiple experienced Application Security Architects to join our clients growing AppSec team. As our client continues the development and improvement of their … overall cyber team, they’re looking for AppSec specialists to shape the strategic direction of our clients application security posture, collaborating with developers, product managers, and security stakeholders to ensure that security is embedded throughout the SDLC. Main Responsibilities: Define and enforce secure architecture standards and frameworks across web, mobile, and cloud-native applications. Provide security … SANS CWE Top 25, and secure coding best practices. Familiarity with threat modelling methodologies such as STRIDE and architectural risk analysis. Hands-on experience with tools such as SAST/DAST/IAST, Snyk, SonarQube, Burp Suite, Veracode, or similar. Strong understanding of cloud platforms) and modern development architectures Relevant certifications such as CSSLP, OSWE, GWAPT, CISSP , or equivalent are More ❯

Social network you want to login/join with: Senior Application Security Architect, exeter col-narrow-left Client: Opus Recruitment Solutions Location: exeter, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 3 Posted: 26.06.2025 Expiry Date: 10.08.2025 col-wide Job Description: Opus are looking for multiple experienced Application Security … AppSec team. As our client continues the development and improvement of their overall cyber team, they’re looking for AppSec specialists to shape the strategic direction of our clients application security posture, collaborating with developers, product managers, and security stakeholders to ensure that security is embedded throughout the SDLC. Main Responsibilities: Define and enforce secure architecture … SANS CWE Top 25, and secure coding best practices. Familiarity with threat modelling methodologies such as STRIDE and architectural risk analysis. Hands-on experience with tools such as SAST/DAST/IAST, Snyk, SonarQube, Burp Suite, Veracode, or similar. Strong understanding of cloud platforms) and modern development architectures Relevant certifications such as CSSLP, OSWE, GWAPT, CISSP , or equivalent are More ❯

Social network you want to login/join with: Senior Application Security Architect, swindon, wiltshire col-narrow-left Client: Opus Recruitment Solutions Location: swindon, wiltshire, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 3 Posted: 26.06.2025 Expiry Date: 10.08.2025 col-wide Job Description: Opus are looking for multiple experienced Application Security Architects to join our clients growing AppSec team. As our client continues the development and improvement of their overall cyber team, they’re looking for AppSec specialists to shape the strategic direction of our clients application security posture, collaborating with developers, product managers, and security stakeholders to ensure that security is embedded throughout … SANS CWE Top 25, and secure coding best practices. Familiarity with threat modelling methodologies such as STRIDE and architectural risk analysis. Hands-on experience with tools such as SAST/DAST/IAST, Snyk, SonarQube, Burp Suite, Veracode, or similar. Strong understanding of cloud platforms) and modern development architectures Relevant certifications such as CSSLP, OSWE, GWAPT, CISSP , or equivalent are More ❯

My growing defence client is seeking a Security Engineer. You'll join a leading organisation that develops cutting edge products and technology. Role Purpose You'll own the security posture across our client's product portfolio-encompassing software, hardware, and services-by embedding robust security controls throughout the development lifecycle, identifying and mitigating risks, and ensuring compliance … execute penetration tests and automated vulnerability scans; validate fixes. Oversee third-party security assessments as required. Continuous Improvement Drive security tooling and automation (CI/CD integration, SAST/DAST). Stay ahead of emerging threats and security technologies; evangelise best practices across teams. Qualifications & Experience Proven experience (5+ years) in product or application security …/5/31000, NIST 800-series) and Defence Standards (JSPs, Def Stan 05-138/139). Hands-on experience with security testing tools and techniques (SAST, DAST, penetration testing). Eligible for UK SC clearance; right to work in the UK. Why Join? You'll Gain exposure to cutting-edge defence technology and intelligence insights. More ❯

Security Engineer/Cloud/DSOMM/OWASP/Salesforce Permanent Hybrid – 2 or 3 days p/w on-site Bournemouth FPSG have a fantastic opportunity to join a large-scale digital transformation programme aimed at uniting multiple internal business units under a new, secure, cloud-native digital platform. Ideal for a hands-on Security Engineer who … UDP, and cloud network architecture (VPNs, subnets, zones) Experience with API security and integration-related platforms such as Auth0 or API Gateways Proficiency with security tools including SAST (e.g. Snyk, Checkmarx), SCA, and DAST (e.g. OpenZAP, Qualys DAST) Ability to manage secure operations of large-scale software estates, including deployment pipelines, rollback strategies, and uptime monitoring Practical experience … Engineering, Cybersecurity Engineer, Information Security Specialist, Salesforce, Azure, OWASP CI/CD, DSOMM, SAMM, Cloud Security Posture Management, Prisma Cloud, Azure Defender, Snyk, Checkmarx, OpenZAP, Qualys, DAST, SAST, CI/CD, Infrastructure Security, Auth0, Secure APIs, Networking Protocols, DevSecOps, Secure Development, CRM Security Next Steps Please click "Apply now" and submit your up-to-date CV More ❯