21 of 21 Static Application Security Testing Jobs in the UK

security across the organisation Ensure security controls are integrated early into CI/CD pipelines Own and operate AppSec tooling, including DAST, SAST, SCA , and related technologies, ensuring appropriate coverage for in-scope applications Define, implement, and maintain secure development standards, including threat modelling and secure coding practices … Security or Secure Software Development Demonstrated experience leading, coaching, or mentoring technical teams Hands-on experience implementing and operating AppSec tooling (eg SAST, DAST, SCA, secrets management) Proven experience integrating security controls into CI/CD pipelines (eg using AWS DevOps or GitHub-based workflows) Deep understanding ...

developing, and supporting the Application Security team to deliver high-quality AppSec services. Owning and operating application security tooling (including SAST and DAST) to ensure effective coverage across all in-scope applications. Embedding automated security testing and guardrails into CI/CD pipelines … related role, including 2+ years focused on AppSec. Experience leading, mentoring, or coaching engineers or security professionals. Hands-on experience with AppSec tooling (SAST, DAST, SCA, secrets management). Experience integrating security controls into CI/CD pipelines (eg, GitHub, AWS DevOps). Strong understanding of Agile, DevOps ...

Knowledge of modern authentication and authorization (OAuth2, OIDC, SAML, JWT, RBAC/ABAC) Experience integrating security tooling into CI/CD (SAST, DAST, SCA, container scanning) Familiarity with Terraform or Pulumi and policy-as-code approaches Exposure to AI/ML systems and associated security risks … opportunities. Senior Application Security Engineer Central Manchester (3 days in-office) AWS/Azure/GCP, Application Security, Terraform, Authentication, SAST, DAST, Container Security etc. ...

offices . Job Description: At Ardent Credit Services, we are dedicated to excellence in the Banking & Financial Services sector. Our commitment to innovation and security underpins our success, and we are seeking a skilled IT Security Engineer to join our dynamic team. This pivotal role will contribute directly …/CD pipelines (DevSecOps), ensuring security is "shifted left." Vulnerability Management: Manage and execute Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) on proprietary applications. Remediation & Guidance: Act as the primary security resource for development teams, providing technical ...

offices . Job Description: At Phillips & Cohen Associates, we are dedicated to excellence in the Banking & Financial Services sector. Our commitment to innovation and security underpins our success, and we are seeking a skilled IT Security Engineer to join our dynamic team. This pivotal role will contribute directly …/CD pipelines (DevSecOps), ensuring security is "shifted left." Vulnerability Management: Manage and execute Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) on proprietary applications. Remediation & Guidance: Act as the primary security resource for development teams, providing technical ...

Cloud Application Security Engineer Central Manchester (3 days a week in-office) Up to £90,000 + Generous Benefits We’re currently supporting an exciting SaaS fintech that’s looking to bring on a Cloud Application Security Engineer to strengthen their growing team. This … patterns (OAuth2, OIDC, SAML, JWT, RBAC/ABAC) and how to implement them at scale Experience integrating security into CI/CD pipelines (SAST, DAST, SCA, container scanning) Experience with Infrastructure as Code (e.g. Terraform, Pulumi) and applying security policy as code The company are very ...

Koud is looking for a Senior AI Security Engineer to work with one of our clients. We are seeking a Senior AI Security Engineer to lead the security of AI-powered products, platforms, and infrastructure. You will operate at the intersection of cybersecurity and AI, addressing emerging … TypeScript, Rust, or Java); Experience with cloud security (AWS, Azure, or GCP — IAM, network, encryption, secrets); Proficiency with security tools (SAST, DAST, SCA, SIEM, vulnerability management); Expertise in authentication/authorization (OAuth2, OIDC, SAML, RBAC/ABAC, zero trust); Strong knowledge of Secure SDLC and DevSecOps practices; Ability ...

between Hafnia, in partnership with Marfin Management, C Transport Maritime, Trans Sea Transport and BW Epic Kosan and Símbolo We are looking for a Security & Compliance Speciallist to own and drive our security and compliance requirements. This role is hands-on and strategic, balancing day-to-day operations … security operations, including vulnerability management, access reviews, and incident response readiness. Provide insights and triage signals from security tooling (SAST, DAST, dependency scanning, SIEM). Work hands-on to perform internal security assessments or penetration testing. Manage relationships with external pentest providers, auditors, and assessors. Secure Development ...

About the Role We are seeking multiple Security Consultants (Contract positions) to support a variety of transformation and security initiatives across different platforms including Private Cloud, Economic Crime Prevention (ECP), Payments, and Innovation Programs . You will join a high-performing Security Consultancy and Design team , working … experience in assessing and designing Private Cloud environments (VMware, Containers, etc.) Hands-on experience with DevSecOps tools and processes – Kubernetes (K8s), Harness, Terraform, GitHub, SAST/DAST, and SDLC integration Proven capability in embedding security within engineering pipelines 2. Security Consultant – Economic Crime Prevention (ECP) Platform (Start Date ...

informed decisions powered by data from real people, collected in a privacy safe way. As we continue to expand, we’re seeking a Cloud Security and Platform Engineer who will play a key role in our engineering team, working on our underlying infrastructure that supports our applications and business. … policies · Knowledge of coding standards · Experience using AI tools to enhance productivity and quality · Experience working with security tooling such as SIEMs, SAST analysers, vulnerability scanners · Ability to enable teams through a pragmatic approach to security · Development experience with Python, Terraform and CloudFormation · Experience with AI Tooling ...

informed decisions powered by data from real people, collected in a privacy safe way. As we continue to expand, we’re seeking a Cloud Security and Platform Engineer who will play a key role in our engineering team, working on our underlying infrastructure that supports our applications and business. … policies · Knowledge of coding standards · Experience using AI tools to enhance productivity and quality · Experience working with security tooling such as SIEMs, SAST analysers, vulnerability scanners · Ability to enable teams through a pragmatic approach to security · Development experience with Python, Terraform and CloudFormation · Experience with AI Tooling ...

Azure DevSecOps Consultant – Information Security Location: Ipswich, Suffolk Onsite/Hybrid (UK – 3 days per week in office). Candidates must live a commutable distance from Ipswich. We are partnered with a major enterprise undergoing significant cloud-security transformation, and we're seeking an experienced Azure DevSecOps Consultant … teams. Implementing automated cloud control validation aligned to internal and industry frameworks. Leading the adoption of Policy as Code principles. Integrating security tooling (SAST, DAST, SCA, secret scanning) into the DevOps toolchain. Creating documentation, SOPs, and guidance to support secure development and cloud practices. Translating complex technical risks into ...

engineering, product, legal, and commercial teams to embed security into lifecycle governance Define and implement a modern DevSecOps tooling strategy (CI/CD, SAST/DAST, SCM, automation) Drive secure coding, threat modelling, and supply chain security practices (SBOM, provenance, signing) Develop KPIs, metrics, and maturity models … practices (Agile, CI/CD, cloud, automation) Expertise in application security, threat modelling, and secure coding standards Experience implementing tooling ecosystems (e.g. SAST, DAST, SCA, pipeline automation) A track record of influencing senior stakeholders and driving cultural change Ability to build and lead both direct and virtual teams ...

implement, and manage secure cloud solutions that align with industry best practices and compliance frameworks. The successful candidate will combine technical mastery of Azure security services with hands-on experience in CI/CD, IAM, and network security, enabling the organization to build resilient, compliant, and scalable cloud … ensure robust network security (VNETs, NSGs, Firewalls, VPN/ExpressRoute). Oversee data protection, secrets management, and container security (AKS). Integrate SAST/DAST/SCA tools into CI/CD pipelines and collaborate on compliance (NIST, ISO 27001, SOC 2, GDPR). Qualifications: 5+ years ...

tenantsystemswheresecurityisacorearchitecturalconsideration,includingtenantisolationatbothapplicationanddatalayers Hands-onexperiencewithAWS,AzureorGCP UnderstandingtoAI/MLplatformsandinfrastructure(e.g.modelpipelines,servinglayers,vectordatabases,LLMintegrations) Strongknowledgeofauthenticationandauthorizationpatterns(OAuth2,OIDC,SAML,JWT,RBAC/ABAC)andhowtoimplementthematscale ExperienceintegratingsecurityintoCI/CDpipelines(SAST,DAST,SCA,containerscanning) ExperiencewithInfrastructureasCode(e.g.Terraform,Pulumi)andapplyingsecuritypolicyascode Thecompanyareverybigontraininganddevelopmentandareconsideringcandidateswithoutalltherequiredskills. Youllplayakeyroleindrivingsecure-by-designprinciples,workingcloselywithengineeringteamstoembedsecurityintoarchitecture,development,anddeployment. Applynowtobeconsidered-AlternativelyfollowReVybeITRecruitmentforsimilarjobs. ...

DevOps Engineer Location: Newcastle Upon Tyne Please Note: Any offer of employment is subject to satisfactory BPSS and SC security clearance which requires 5 years continuous UK address history (typically including no periods of 30 consecutive days or more spent outside of the UK) Accenture is a leading global … Vault, AWS Secrets Manager) Maintain scalable CI/CD pipelines supporting frequent, reliable deployments. Experience implementing security scanning in CI/CD with SAST and DAST Experience with deployment strategies such as Blue/Green or Canary Releases Proven track record of applying analytical and creative thought that translate ...

through automation, tooling, and best practice guidance. Key Responsibilities Design and implement scalable CI/CD pipelines using Azure DevOps Integrate security tooling (SAST/DAST) into build and release pipelines Embed DevSecOps controls, including: Vulnerability scanning Secure build gates Policy enforcement Collaborate with engineering and security teams … Required Skills & Experience Strong experience with Azure DevOps (CI/CD pipelines) Proven background in DevOps/DevSecOps consulting roles Hands-on experience integrating SAST and DAST tools into pipelines Solid understanding of secure software delivery practices Experience with: Containerisation Orchestration Strong knowledge of: Git and branching strategies Automation ...

Permanent Senior Security Engineer - London My client an insurance organisation in London has a requirement for a permanent Security Engineer, to join their IT department. Key Skills: Proven experience in a similar role within a mid/large sized organisation, preferably in a regulated industry such as Financial … accreditations covering multiple security domains. Cyber security subject matter expert with relevant certifications such as CISSP, CISM, CSSP, or equivalent. Proficiency in SAST, DAST and SCA with hands on experience integrating such tools into development pipelines. Extensive experience of consulting on projects, building in security requirements ...

align with industry best practices and compliance frameworks. Key requirements: Architect and implement secure Azure environments, integrating DevOps and CI/CD pipelines with security gates. Develop and enforce Policy as Code, IAM, and privileged access security controls. Manage Azure security services (Defender for Cloud, Sentinel, Azure … ensure robust network security (VNETs, NSGs, Firewalls, VPN/ExpressRoute). Oversee data protection, secrets management, and container security (AKS). Integrate SAST/DAST/SCA tools into CI/CD pipelines and collaborate on compliance (NIST, ISO 27001, SOC 2, GDPR). Relevant certifications ...

Senior hands-on role securing Azure platforms with a strong focus on security tooling, scanning, vulnerability remediation, and backup and recovery. The role requires deep Azure expertise, ARM and Bicep experience, and the ability to work closely with engineering and security teams to deliver secure, resilient platforms. Client … harden Azure platform environments Implement security scanning, tooling and remediation plans Build and secure CI/CD pipelines in Azure DevOps Integrate SAST, DAST, dependency and secret scanning tools Design and implement backup and recovery aligned to RTO/RPO Manage identity and access management controls Implement monitoring ...

practices, including: CI/CD pipelines and integrations. Git-based source control tools (eg, GitHub, GitLab, Bitbucket). Security technologies such as SCA, SAST, SBOM management, and container security. Desired: Background in software development is a strong advantage. Experience or exposure to MLOps is a plus. Senior Technical Sales ...