Hands-on with tools such as Burp Suite, ZAP, Nmap, Metasploit Deep understanding of secure cloud infrastructure (AWS/Azure) and scripting (Python, Bash) Familiarity with DevSecOps tools (e.g. Veracode, GitHub Advanced Security) Certifications such as OSCP or CREST/TIGER Bonus Skills: Experience within the CHECK scheme Knowledge of UK public sector security practices Exposure to threat modelling and More ❯
London, England, United Kingdom Hybrid / WFH Options
Funding Circle UK
Certified Solutions Architect - Associate, AWS Certified Security - Specialty (or willingness to obtain), CompTIA Security+, relevant SANS certs). Experience with specific security platforms/tools (e.g., Wiz, Snyk, Checkmarx, Veracode). Basic scripting skills (e.g., Python, Bash) for automation tasks are highly desirable. Experience working in FinTech or other highly regulated environments. Experience with mobile application security principles and testing. More ❯
Key Skills Required: 5+ years in AppSec or DevSecOps, with strong experience in secure SDLC and CI/CD Hands-on knowledge of security tools like GitHub Advanced Security, Veracode, Snyk, ZAP, Burp Familiarity with OWASP, MITRE, CWE, and modern dev frameworks (C#, Java, Python, React) Knowledge of scripting languages (Python, Ruby, Rust) Excellent communication skills to bridge tech and More ❯
Key Skills Required: 5+ years in AppSec or DevSecOps, with strong experience in secure SDLC and CI/CD Hands-on knowledge of security tools like GitHub Advanced Security, Veracode, Snyk, ZAP, Burp Familiarity with OWASP, MITRE, CWE, and modern dev frameworks (C#, Java, Python, React) Knowledge of scripting languages (Python, Ruby, Rust) Excellent communication skills to bridge tech and More ❯
the following: Creating and deploying CI/CD pipelines (GitLab/Jenkins/GitHub) Configuring and running Code/Binary scans using solutions like SonarQube, Semgrep, Blackbuck, Trivy, GitLeaks Veracode, etc. Configuring and using Secrets management tools like Vault and Cloud native solutions Broad knowledge of SDLC Tools, specifically Build, Test and Deploy Automation tools, e.g., Maven, Gradle, Selenium, Ansible More ❯
Strong understanding of web application security concepts, including secure coding practices, authentication mechanisms, and common vulnerabilities. Proficiency in security testing tools and techniques, such as Burp Suite, SonarQube, Checkmarx, Veracode, etc... Excellent analytical and problem-solving skills, with the ability to think critically and creatively to address complex security challenges. Strong communication and interpersonal skills, with the ability to effectively More ❯
vulnerability management expertise. Hands-on experience with threat modelling and secure code reviews. Experience with Mobile Application Security and API Security. Familiarity with security tools (Burp Suite, Fortify, Checkmarx, Veracode, ZAP, etc.). Experience with cloud security (AWS, Azure, GCP) and container security (Docker, Kubernetes). Ability to conduct maturity assessments and gap analysis. Familiarity with RASP technology as well More ❯
practices. Familiarity with threat modelling methodologies such as STRIDE and architectural risk analysis. Hands-on experience with tools such as SAST/DAST/IAST, Snyk, SonarQube, Burp Suite, Veracode, or similar. Strong understanding of cloud platforms) and modern development architectures Proficiency in one or more programming languages such as Python, Java, Go, and JavaScript. Relevant certifications such as CSSLP More ❯
practices. Familiarity with threat modelling methodologies such as STRIDE and architectural risk analysis. Hands-on experience with tools such as SAST/DAST/IAST, Snyk, SonarQube, Burp Suite, Veracode, or similar. Strong understanding of cloud platforms) and modern development architectures Relevant certifications such as CSSLP, OSWE, GWAPT, CISSP , or equivalent are advantageous. Seniority level Seniority level Mid-Senior level More ❯
vanilla, EKS, AKS, OpenShift), CI/CD pipelines, and infrastructure as code (Terraform) Security integration experience across the DevSecOps lifecycle, including: SAST, DAST, SCA, and IAST tools (e.g., Checkmarx, Veracode, OWASP ZAP) Secrets management tools like HashiCorp Vault Vulnerability management solutions such as Prisma Cloud Testing frameworks like Selenium Familiarity with JIRA, Confluence, and GitLab/Jenkins-based CI/ More ❯
vanilla, EKS, AKS, OpenShift), CI/CD pipelines, and infrastructure as code (Terraform) Security integration experience across the DevSecOps lifecycle, including: SAST, DAST, SCA, and IAST tools (e.g., Checkmarx, Veracode, OWASP ZAP) Secrets management tools like HashiCorp Vault Vulnerability management solutions such as Prisma Cloud Testing frameworks like Selenium Familiarity with JIRA, Confluence, and GitLab/Jenkins-based CI/ More ❯
Senior Product Manager, Vulnerability Management & Insights Remote GitLab is an open core software company that develops the most comprehensive AI-powered DevSecOps Platform, used by more than 100,000 organizations. Our mission is to enable everyone to contribute to and More ❯
technology: Java, SpringBoot, JPA, Hibernate, Junit, Mockito, microservices Experience with SQL (MS SQL preferred), cloud technology and messaging tools. Experience with standard DevOps tools: Jira, Bitbucket, Nexus, Confluence, SonarQube, Veracode, GitLab, Maven, NPM, etc. Experience with test driven development and CI/CD, including exposure to automated testing platforms (e.g., Cucumber, Selenium) Actively participate in all aspects of agile software More ❯
technology: Java, SpringBoot, JPA, Hibernate, Junit, Mockito, microservices · Experience with SQL (MS SQL preferred), cloud technology and messaging tools. · Experience with standard DevOps tools: Jira, Bitbucket, Nexus, Confluence, SonarQube, Veracode, GitLab, Maven, NPM, etc. · Experience with test driven development and CI/CD, including exposure to automated testing platforms (e.g., Cucumber, Selenium) · Actively participate in all aspects of agile software More ❯
technology: Java, SpringBoot, JPA, Hibernate, Junit, Mockito, microservices · Experience with SQL (MS SQL preferred), cloud technology and messaging tools. · Experience with standard DevOps tools: Jira, Bitbucket, Nexus, Confluence, SonarQube, Veracode, GitLab, Maven, NPM, etc. · Experience with test driven development and CI/CD, including exposure to automated testing platforms (e.g., Cucumber, Selenium) · Actively participate in all aspects of agile software More ❯
for technology and innovation within this specific domain. Have experience with CI/CD and the ability to evangelise about this. Have experience with tooling solutions eg Kubernetes, Istio, Veracode, Sonarcube, Maven, Jenkins or similar. Have some experience of developing training and team development plans to drive performance across multi-skilled teams. Have a good understanding of business modelling techniques More ❯
Agile development methodologies and with continuous integration/continuous deployment (CI/CD) tools (e.g., Git, GitLab, Bamboo, BitBucket, Sonarqube). Hands-on experience with Application Security Tools (e.g., Veracode, Coverity, Blackduck) and a pragmatic approach to automation. Proven working knowledge of Linux environments. Business and Sector Expertise Direct experience in the FX industry and regulated financial environments. Broader exposure More ❯
security report with risk ratings, findings, and recommendations. Required Skills & Experience 4+ years in Application Security , AppSec consulting , or Secure Code Review roles. Familiarity with tools like Snyk , Checkmarx , Veracode , or Burp Suite (passive scanning) . Knowledge of OWASP , CWE , and general secure software development principles. Strong technical writing and communication skills. Preferred certifications: OSCP , CSSLP , GWAPT , CEH , or equivalent. More ❯
security report with risk ratings, findings, and recommendations. Required Skills & Experience 4+ years in Application Security , AppSec consulting , or Secure Code Review roles. Familiarity with tools like Snyk , Checkmarx , Veracode , or Burp Suite (passive scanning) . Knowledge of OWASP , CWE , and general secure software development principles. Strong technical writing and communication skills. Preferred certifications: OSCP , CSSLP , GWAPT , CEH , or equivalent. More ❯
to login/join with: Looking for an innovative, high-growth, multi-award-winning company in one of the hottest segments of the security market? Look no further than Veracode! Veracode is a global leader in Application Risk Management for the AI era. Powered by trillions of lines of code scans and a proprietary AI-generated remediation engine, the Veracode … platform is trusted by organizations worldwide to build and maintain secure software from code creation to cloud deployment. Learn more at, on the, and on and. Veracode is seeking a talented, results-oriented, energetic, intellectually curious and highly motivated individual to join our Customer Success team. The Customer Success Manager (CSM) is responsible for building and maintaining strong relationships within … to strong renewals and solution growth opportunities. The CSM works closely with our customers alongside Sales, Support, Account Management, Security Consultants, and other Operations and Product Management teams at Veracode to ensure our services are delivered successfully and meet client expectations. What you will be responsible for: Promote customer satisfaction and loyalty by demonstrating an understanding of their critical business More ❯
Principal Account Executive Looking for an innovative, high-growth company in one of the hottest segments of the security market? Look no further than Veracode! Veracode is recognized as a premier provider of SaaS-based application security solutions, transforming the way companies secure applications in today’s software driven world. We provide our customers with a solid foundation on which … apps that support wellbeing Summer and end of year social events to bring the team together and celebrate our success Fraudulent Recruitment Alert - Be Aware and Stay Informed At Veracode, we prioritize a secure recruitment process. Unfortunately, fake recruitment and job offer scams are on the rise. They aim to deceive candidates through emails and calls to obtain sensitive information. … managers. Offer Communications: Our job offers are not sent solely through email, and we will never ask you to pay for your own hardware. Email Verification: Recruiting emails from Veracode will always originate from an “@veracode.com" email address. If you have any doubts about the authenticity of an email, letter, or telephone communication claiming to be from Veracode, please reach More ❯
