19 of 19 Static Application Security Testing Jobs in the UK excluding London

scope to infrastructure and cloud environments as maturity grows. Continuously simulate attacker techniques to validate product resilience. Ø Tooling & Automation Drive adoption of SAST (Static Application Security Testing) and DAST (Dynamic Application Security Testing) solutions, with emphasis on Java and web application … continuous improvement. Knowledge, Skills and Abilities : Ø Strong knowledge of secure development practices, threat modeling, and vulnerability management. Ø Hands-on experience with SAST/DAST tools and CI/CD integration. Ø Excellent communication skills to engage developers, auditors, and executives. Ø Proven experience leading teams in agile/ ...

About the role The position will be based at our Tesco Technology offices in London. About the Security Partners team We are the trusted security advisors for Tesco Technology. Our purpose is to collaborate seamlessly with the product and engineering stakeholders, leveraging our deep expertise in cyber security … designing security/privacy controls to mitigate risks. Experience in application security, supply chain security, and using tools such as SAST, DAST, SCA, and IAC. • Experience in reviewing code to spot weaknesses and suggesting mitigations. Experience applying industry standards like OWASP ASVS (Application Security ...

About the role The position will be based at our Tesco Technology offices in London. About the Security Partners team We are the trusted security advisors for Tesco Technology. Our purpose is to collaborate seamlessly with the product and engineering stakeholders, leveraging our deep expertise in cyber security … designing security/privacy controls to mitigate risks. Experience in application security, supply chain security, and using tools such as SAST, DAST, SCA, and IAC. • Experience in reviewing code to spot weaknesses and suggesting mitigations. Experience applying industry standards like OWASP ASVS (Application Security ...

About the role An exciting opportunity to join a leading company and play an influential part in their continued dedication to Application Security. At Tesco, the application security team's strategy is to provide security tooling that fits seamlessly into software engineering teams ways of working … application security (Web, API, Mobile) • An understanding of microservices and container orchestration • Solid grasp of Application Security Tooling (SCA/SAST/DAST/IaC Security) • Knowledge of OWASP Top 10, Mitre Top 25 and CVSS frameworks, mapping to business risk • Experience in implementing security ...

About the role An exciting opportunity to join a leading company and play an influential part in their continued dedication to Application Security. At Tesco, the application security team's strategy is to provide security tooling that fits seamlessly into software engineering teams ways of working … application security (Web, API, Mobile) • An understanding of microservices and container orchestration • Solid grasp of Application Security Tooling (SCA/SAST/DAST/IaC Security) • Knowledge of OWASP Top 10, Mitre Top 25 and CVSS frameworks, mapping to business risk • Experience in implementing security ...

INFORMATION SECURITY SPECIALIST KEY POINTS * Hybrid working model (Stoke-on-Trent) - up to £55,000 p/a* Focus on application security, code analysis, threat modelling and penetration testing* Work closely with Software Development teams across a large technical environment* Opportunity to influence secure development practices … client in conjunction with this vacancy only. KEY SKILLS Application Security, AppSec, OWASP, Threat Modelling, Secure Development Lifecycle, Code Review, DAST, SAST, CI/CD, Penetration Testing, Supply Chain Security, Risk Assessment, Software Security, Automation ...

Title: Senior Application Security EngineerSalary: £70,000Location: Reading/remote About the Organisation Join a fast-growing UK technology and consulting firm that's investing heavily in cutting-edge cyber security. With a strong focus on innovation, collaboration, and professional development, this company empowers its people to shape … software are secure by design. Drive vulnerability management and implement a risk-based approach across the technology stack. Perform security testing (SAST, DAST, SCA) and work with developers to remediate findings. Support cloud security controls (primarily Azure, including cloud-native apps). Champion secure development, threat modelling ...

Title: Senior Application Security EngineerSalary: £70,000Location: Reading/remote About the Organisation Join a fast-growing UK technology and consulting firm that's investing heavily in cutting-edge cyber security. With a strong focus on innovation, collaboration, and professional development, this company empowers its people to shape … software are secure by design. Drive vulnerability management and implement a risk-based approach across the technology stack. Perform security testing (SAST, DAST, SCA) and work with developers to remediate findings. Support cloud security controls (primarily Azure, including cloud-native apps). Champion secure development, threat modelling ...

show how much they can achieve. Our success is truly a collective effort - we succeed when all our people succeed. Softcat's Information Security team is seeking an Application Security Engineer with a strong emphasis on cloud security & secure development practice. This role … clear guidelines and best practices for secure coding and assist developers in implementing them across multiple languages (Java, C#, .NET, Python) Ensuring technologies like SAST, DAST and SCA are utilised effectively Establish and communicate metrics to help us understand effectiveness and measure improvement Support teams in developing, implementing and maintaining ...

Cyber Security Consultant £30,000 - £45,000 per annum Melton Mowbray Role Summary Our client is a growing MSP based in Melton Mowbray, helping organisations of all sizes strengthen their security posture and achieve recognised certifications. They are looking for a skilled Cyber Security Consultant specialising … CCRT/CCT or CHECK Team Member . OSCP/OSWE/OSEP/GPEN/eCPPT/similar. Experience with secure code review, SAST/DAST pipelines, or DevSecOps. Familiarity with ISO 27001 or wider GRC frameworks. What Our Client Offers: Competitive salary and annual performance bonus. Training budget ...

Cloud & Security Engineer Hybrid - Belfast | Full-time About the Role: Our client is a leading organisation in the digital asset space, supporting institutional partners with secure, innovative technology solutions. They are seeking a Cloud & Security Engineer to help design, implement, and maintain secure multi-cloud environments while strengthening … Policy). Build security automation and IaC-driven deployments using Terraform or CloudFormation. Integrate security testing into CI/CD pipelines (SAST, DAST, IaC scanning). Ensure cloud infrastructure meets internal policies and regulatory standards. Configure cloud-native logging, monitoring, and incident response workflows. Collaborate with DevOps ...

immediately available Test Manager with experience in connected vehicle ecosystems, IoT, or automotive software testing? This role provides leadership and oversight across all test activities, from planning through execution to sign-off, with accountability for ensuring that solutions are robust, reliable, and fit for purpose. The Test Manager will … distributed systems and microservices architectures. Working knowledge of OWASP standards, common security vulnerabilities, and experience conducting or coordinating security testing including SAST, DAST, and penetration testing. Understanding of authentication and authorization frameworks (OAuth, JWT, SAML) and familiarity with secure coding practices and threat modelling Experience in test ...

About the role Shape the Future of Cloud Security at Tesco Mobile Tesco Mobile is the UK’s largest virtual mobile network, powered by O2 and backed by the strength of Tesco. We’re known for doing things differently — winning awards for customer satisfaction and bringing the best … using PowerShell or Azure CLI Infrastructure as Code experience (Terraform) Experience with SIEM tools and log management CI/CD pipeline security integration SAST and secure coding practices A collaborative attitude and eagerness to learn Bonus skills: Exposure to AWS environments GitHub & GitHub Actions Splunk (data streams, dashboards, ingestion ...

Agile Scrum and design meetings Governance of web application CI/CD pipelines Governance of web application software quality (e.g. unit tests, SAST, SCA) Design and development of web application security Technical mentorship of frontend engineers What you'll need: At least 6 years of experience … similar modern JS framework) Experience mentoring and leading engineering team Experience with test libraries, such as Jest Practical knowledge of modern web application deployment infrastructures Fluency in English, written and verbal Strong knowledge of SDLC Benefits: Competitive salary Company Pension & Life Assurance Schemes On-site parking Hybrid Working Subsidised ...

client within Investment Banking are looking for a DevSecOps SME to join their team.The role will be working on the integration of security … practices into our DevOps pipelinesRequirements Design, implement, and maintaining secure CI/CD pipelines. Integrate security tools and practices into DevOps workflows (e.g., SAST, DAST, SCA, secrets management). Collaborate with development, operations, and security teams to implement and ensure secure coding and deployment practices. Advise on threat ...

automated compliance workflows. Key Responsibilities Design & implement a backend platform that schedules ingestion, normalization, storage, and historical tracking of security artifacts (BOMs, SAST/SCA findings, fuzzing results) in a scalable, tool-agnostic fashion. Develop and maintain ETL pipelines and database schemas for high-throughput ingestion and historical trend … document data schemas, APIs, and dashboard usage. “Nice to Have” Skills and Experience Experience with Grafana, Prometheus, or similar observability platforms. Familiarity with SAST and SCA tools (e.g., Coverity, Black Duck) and experience understanding their findings. Experience defining and visualizing key security and performance metrics within dashboard solutions. Experience ...

Please note that the role requires frequent travel to Nottingham. Are you ready to shape the future of security in a cutting-edge, multi-cloud environment? We're looking for a Principal Security Architect to define and lead the end-to-end security architecture for a complex … Privacy & Compliance: Map data flows, define ROPA, and embed privacy-by-design controls aligned to GDPR, HIPAA, and PCI DSS. Drive DevSecOps Excellence: Integrate SAST/DAST, IaC scanning, SBOM generation, and secure release governance into delivery pipelines. Monitor & Respond: Build detection use cases, integrate logs into SIEM, and establish ...

python, shell script, perl etc Must have implemented security tools and technologies as part of CICD pipeline fragments in Gitlab such as SAST, DAST, Threat Modelling, SCA, Container Security analysis etc. Strong experience in creating Infrastructure as Code using AWS CloudFormation, Terraform, CDK, Packer, Ansible. Strong understanding ...

Cloud infrastructure fluency (AWS, Azure or GCP) Hands-on experience with Docker, Kubernetes, CI/CD, Git, build tools Solid AppSec experience with SCA, SAST, SBOM, Container Security Ability to build full DevOps pipelines If you originally started in a software development role, then even better. Your Role: Working ...

Responsibilities Design, develop, and maintain iOS applications using Swift and SwiftUI. Collaborate with product, design, and engineering teams to deliver high-quality features. Ensure application performance, scalability, security, and reliability. Identify, design, and implement reusable components. Troubleshoot and resolve complex bugs, integration issues, and performance bottlenecks. Conduct code … Firebase Crashlytics , custom analytics, and remote configuration. Other Technical Skills: Experience with CI/CD tools such as GitHub Actions/Fastlane. Familiarity with SAST/DAST tools (nice to have). Knowledge of re-platforming assessments for mobile applications. Ability to architect mobile solutions and provide technical direction across ...

approach Automation Testing. You will be embedded within our client’s engineering organisation, conducting a maturity assessment of existing feature teams approach to automation testing, identifying improvement opportunities, and developing a comprehensive Automation Testing playbook that outlines standards, principles, tooling, and ways of working. Responsibilities Lead and coach … banking/mortgages/savings/insurance Strong background in Test Automation with hands-on experience in: Playwright, Selenium, Cucumber, Contract Testing, Gherkin, SAST using Veracode Why join us Career coaching, mentoring and access to upskilling throughout your entire FDM career Assignments with global companies and opportunities to work ...

Session, Codable Database – Swift Data, Core data, SQLite and Caching Techniques Background Task Handling using Background Modes GCD and Operation Queues, Promise Kit Unit Testing – XCTest, XCUITest, Snapshot Testing Reactive Programming Paradigm: Swift UI with Swift Concurrency Localization with best practices Country specific rollout with configuration files Familiarity … issues Perform Code reviews and mentor App Store/Play Store Distribution, Beta Releases CI/CD tool usage e.g Github Actions/Fastlane. SAST/DAST tool familiarity will be nice to have skillset Execute Re-platform assessments for Mobile Applications Ability to create application architectures & provide solutions ...

Database - Swift Data, Core data, SQLite and Caching Techniques 4 Background Task Handling using Background Modes GCD and Operation Queues, Promise Kit 5 Unit Testing - XCTest, XCUITest, Snapshot Testing 6 Reactive Programming Paradigm: Swift UI with Swift Concurrency 7 Localization with best practices Country specific rollout with configuration … Code reviews and mentor 12 App Store/Play Store Distribution, Beta Releases 13 CI/CD tool usage eg Github Actions/Fastlane. SAST/DAST tool familiarity will be nice to have skill set 14 Execute Re-platform assessments for Mobile Applications Ability to create application architectures ...