9 of 9 Contract OWASP Jobs in the UK

with REST APIs and Microservices. - Confident using CI/CD tools (Git, GitLab CI, Jenkins, SonarQube, etc.). - Solid understanding of secure coding and OWASP tools (e.g. ZAP). - Proven experience in full software development lifecycle. More ❯

assurance across the SDLC in line with NCSC guidelines. Essential Criteria Penetration testing, ethical hacking, or vulnerability assessments. Security testing tools (e.g., Burp Suite, OWASP ZAP, Nikto, Nmap, Metasploit, etc.). DevSecOps principles and tools (e.g., Veracode, SonarQube, GitHub Advanced Security, IaC scanning, etc.). Secure Cloud Infrastructure, specifically AWS More ❯

on an Umbrella solution. Essential skills/experience required: Experience penetration testing, ethical hacking, or completing vulnerability assessments. Security testing tools (e.g., Burp Suite, OWASP ZAP, Nikto, Nmap, Metasploit, etc.). DevSecOps principles and tools (e.g., Veracode, SonarQube, GitHub Advanced Security, IaC scanning, etc.). Secure Cloud Infrastructure, specifically AWS More ❯

the SDLC in line with MoJ and NCSC guidelines. Essential Criteria Penetration testing, ethical hacking, or vulnerability assessments. Security testing tools (e.g., Burp Suite, OWASP ZAP, Nikto, Nmap, Metasploit, etc.). DevSecOps principles and tools (e.g., Veracode, SonarQube, GitHub Advanced Security, IaC scanning, etc.). Secure Cloud Infrastructure, specifically AWS More ❯

at all levels to technical and non-technical audiences. * Internal team engagement, working collaboratively, sharing knowledge, advising, and training colleagues. * Knowledge of common vulnerabilities OWASP Top 10, CVE databases etc * Understanding of Agile and DevOps practices for continuous testing and delivery * Knowledge of integrating security testing into test automation and More ❯

at all levels to technical and non-technical audiences. * Internal team engagement, working collaboratively, sharing knowledge, advising, and training colleagues. * Knowledge of common vulnerabilities OWASP Top 10, CVE databases etc * Understanding of Agile and DevOps practices for continuous testing and delivery * Knowledge of integrating security testing into test automation and More ❯

into CI/CD pipelines (SAST, DAST, dependency checking, IaC, etc.) and making necessary recommendations. Proficiency in security testing tools such as Burp Suite, OWASP ZAP, Nikto, Nmap, Metasploit, etc. Ability to identify vulnerabilities and ensure secure coding practices. Experience in maintaining security assurance across the SDLC in line with More ❯

Any experience with security products such as Trellix, Ivanti, ClearSwift and Yubikey will be a bonus Experience working with secure coding practices and vulnerabilities (OWASP Top 10, SANS Top 25) Security compliance and regulatory frameworks (e.g., NIST, CIS Benchmarks) Experience working with DevOps tools (e.g. Kubernetes, CI/CD pipelines More ❯

Knowledge of industry frameworks such as ISO 2700x, ITIL, and COBIT. A solid grasp of cloud and network infrastructure, along with current standards like OWASP, NIST, GDPR, NIS, and PCI-DSS. An understanding of diverse threat vectors and experience working with government security standards such as Cyber Essentials Plus. What More ❯