2 of 2 Static Code Analysis Jobs in Bradford

Security Consultant to conduct a comprehensive security review of a web-based application. This is a non-invasive, review-only assignment — no remediation or code modifications are required. You’ll work independently to assess application code and related configurations, identify any security vulnerabilities, and deliver a detailed, evidence … based security audit report . Key Responsibilities Perform static code analysis and security audit of a web application. Identify potential vulnerabilities in logic, data handling, authentication, and access control. Assess the application against OWASP Top 10 and other secure coding standards. Review third-party dependencies for known … issues. Produce a professional security report with risk ratings, findings, and recommendations. Required Skills & Experience 4+ years in Application Security , AppSec consulting , or Secure Code Review roles. Familiarity with tools like Snyk , Checkmarx , Veracode , or Burp Suite (passive scanning) . Knowledge of OWASP , CWE , and general secure software development More ❯

following concepts should be assessed, with 70-80% knowledge required: Lambda expressions Method references Functional interfaces Stream API Default methods Base64 Encode/Decode Static methods in interface Optional class Collectors class forEach() method Nashorn JavaScript Engine Parallel Array Sorting Type and Repeating Annotations I/O Enhancements Concurrency … is essential. Entry/mid-level knowledge of PL/SQL (Stored Procedures, SQL Queries, Joins, Indexing) is necessary. Proficiency with IntelliJ IDE and static code analysis tools like SonarQube is required. Knowledge of versioning tools such as jFrog or Nexus is mandatory. Experience with NoSQL databases More ❯