3 of 3 Static Application Security Testing Jobs in the City of London

DevSecOps Engineer – Security Led Delivery, 6 months, London/Hybrid, £550 - £600/day We’re supporting a major media & entertainment organisation looking for a hands-on DevSecOps Engineer to drive application security and BAM (Business Application Measures) improvements across a large enterprise environment. This … required: Strong DevSecOps/Application Security engineering background GitHub administration & GitHub Advanced Security (GHAS) CI/CD pipeline security integration SAST/DAST tooling (CodeQL, Semgrep, OWASP ZAP etc.) Secret scanning, dependency scanning, container & IaC scanning OIDC/short-lived credentials Security remediation & vulnerability management ...

Retail Hybrid: either London or Welwyn Garden City (whichever is closest) 3 days per week 6 months £850 per day In short: Our Application Security team require a strong Python generalist to run, deploy and maintain purpose-built applications. You’ll need solid experience across Python development, DevOps … collaborate with cross-functional teams to integrate security practices. Experience working in an agile environment, such as Scrum. Nice to have Experience with SAST/DAST tooling and security automation Familiarity with API security patterns (JWT, OAuth, rate limiting) Comfortable working with AI-assisted development tools Experience ...

Penetration Tester | London (Onsite)| A leading quantitative investment management firm is looking to hire a Penetration Tester to join its established Security Assurance function. The business operates at the intersection of technology and financial markets, running complex, high-performance infrastructure at scale, and takes a rigorous, engineering-led approach … tooling, scripts, and frameworks to automate testing and improve assessment coverage Integrate penetration testing into CI/CD pipelines, including validation of SAST/DAST findings and runtime security controls Provide mentorship and technical guidance to engineers on attack vectors, exploitation techniques, and secure design principles Stay ...