6 of 6 DemandTrendContract Static Application Security Testing Jobs in England

Security Development & Test Director 6 Months Hybrid - Birmingham 2 days per week on site £800 per day (Inside IR35) We are currently recruiting for a dynamic Security Development and Test Director to join our growing Security team. This is a great opportunity for you to play a pivotal role in helping to shape our client's transformation … CI/CD workflows to enable secure-by-design delivery. o Oversee the implementation and optimisation of security tooling, including Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Software Composition Analysis (SCA), and container security scanners. o Establish architectural review boards and security design checkpoints to validate that … Average time taken to remediate critical and high-severity vulnerabilities identified during development and testing phases. * Toolchain Utilisation Effectiveness: Adoption and effective use of security tools (e.g., SAST, DAST, SCA) across development teams, measured by scan frequency and issue resolution rates. * Training and Awareness Uptake: Percentage of development and QA staff completing secure coding and DevSecOps training programs. More ❯

technical excellence and alignment with business goals. The role is a 12-month Fixed-Term Contract based at Wembley Stadium. What will you be doing? Collaborate with solution architects, application architects and data engineers to develop solutions meeting delivery goals Identifying and capturing work that needs to be done, including dependencies external to the team Responsible for onboarding new … ensuring compliance with FA development standards and processes. Optimise the developer experience to make the development process easier and help the team to become more productive. Ensure that production application services and applications are monitored and observed proactively - spotting potential issues early. Continuously stretch engineers with meaningful challenges and provide honest, constructive feedback to accelerate their development. Monitor and … delivery Experience of providing technical leadership and oversight with offshore and/or third-party delivery teams Experience with unit testing, TDD and BDD Experience with working with SAST (Static Application Security Testing) and SCA (Software Composition Analysis) tools e.g. Sonar. Experience with design and development of n-tier architectures Knowledge of common software design More ❯

Scripting in Bash or Python Able to support migration checklists, config validation, and post-migration testing Security Tooling experience and integration with CI/CD pipelines - SCA, SAST, DAST If you'd like to discuss this OpenShift Platform Engineer role in more detail, please send your updated CV to (url removed) and I will get in touch. More ❯

Months IR35 Status: Inside IR35 Our client, a leading investment bank, is seeking an experienced DevSecOps SME to join their team. This role will lead and advise on integrating security practices into DevOps pipelines. The ideal candidate will have deep expertise across development, security, and operations, with a strong focus on automation, CI/CD, and secure software … development lifecycle (SDLC) practices. Key Responsibilities Lead the integration of security into CI/CD pipelines. Advise on secure coding and deployment practices across teams. Implement and enforce security policies, standards, and best practices. Conduct threat modeling, risk assessments, and vulnerability management. Mentor and train teams on DevSecOps … principles and tools. Skills & Experience Required CI/CD Security Engineering: Proven experience designing and maintaining secure CI/CD pipelines. DevSecOps Tool Integration: Hands-on experience with SAST, DAST, SCA, and secrets management tools. Cross-Functional Collaboration: Ability to work closely with development, operations, and security teams. Threat Modeling & Risk Assessment: Strong knowledge of security risk More ❯

Months IR35 Status: Inside IR35 Our client, a leading investment bank, is seeking an experienced DevSecOps SME to join their team. This role will lead and advise on integrating security practices into DevOps pipelines. The ideal candidate will have deep expertise across development, security, and operations, with a strong focus on automation, CI/CD, and secure software … development lifecycle (SDLC) practices. Key Responsibilities Lead the integration of security into CI/CD pipelines. Advise on secure coding and deployment practices across teams. Implement and enforce security policies, standards, and best practices. Conduct threat modeling, risk assessments, and vulnerability management. Mentor and train teams on DevSecOps … principles and tools. Skills & Experience Required CI/CD Security Engineering: Proven experience designing and maintaining secure CI/CD pipelines. DevSecOps Tool Integration: Hands-on experience with SAST, DAST, SCA, and secrets management tools. Cross-Functional Collaboration: Ability to work closely with development, operations, and security teams. Threat Modeling & Risk Assessment: Strong knowledge of security risk More ❯

will assist in the delivery on. In full: We are seeking a highly skilled and experienced DevSecOps Subject Matter Expert (SME) to lead and advise on the integration of security practices into our DevOps pipelines. This role requires a deep understanding of development, security, and operations, with a strong emphasis on automation, continuous integration/continuous deployment (CI … software development lifecycle (SDLC) practices. Advise and offer guidance on: * Design, implement, and maintaining secure CI/CD pipelines.* Integrate security tools and practices into DevOps workflows (e.g., SAST, DAST, SCA, secrets management).* Collaborate with development, operations, and security teams to implement and ensure secure coding and deployment practices.* Advise on threat modeling, risk assessments, and vulnerability … management.* Provide expert guidance on cloud security (AWS, Azure, GCP) and container security (Docker, Kubernetes).* Develop and enforce security policies, standards, and best practices.* Lead incident response and root cause analysis for security-related issues.* Mentor and train teams on DevSecOps principles and tools. Candidates will ideally show evidence of the above in their CV More ❯