11 of 11 Contract OWASP Jobs in the UK

Security & Compliance Implement secure design: encryption, secret management, secure SDLC, API security (OAuth2/OIDC), network segmentation, least privilege in IAM. Align with standards (OWASP, NIST, CIS Benchmarks, PCI/ISO 27001 where applicable). Observability & Resilience Define logging, metrics, tracing (OpenTelemetry), health checks, circuit breakers, retries, and backoff strategies. ...

monitoring tools (e.g., Prometheus, Grafana) and scripting languages (e.g., Python, Bash). - Understanding of security best practises and experience with security frameworks (e.g., OWASP). - Strong communication, collaboration, and problem-solving skills. - Active SC Clearance is required for this position ...

Strong experience with cloud platforms, particularly AWS, and infrastructure-as-code tools like Terraform or CloudFormation. Solid understanding of secure software development practices, including OWASP guidelines and threat modelling. Proven ability to produce high-quality technical artefacts such as architectural diagrams, ADRs, design documentation, and runbooks. Hands-on experience with ...

phases. Experience working in Agile and/or Waterfall delivery models. Understanding of API technologies, integration patterns, and associated testing approaches. Working knowledge of OWASP standards and secure testing practices. Hands-on experience delivering end-to-end test solutions across distributed software ecosystems. Experience embedding testing within modern CI/ ...

Understanding of API technologies and integration patterns (synchronous, asynchronous, event-driven) with hands-on experience testing distributed systems and microservices architectures. Working knowledge of OWASP standards, common security vulnerabilities, and experience conducting or coordinating security testing including SAST, DAST, and penetration testing. Understanding of authentication and authorization frameworks (OAuth ...

block activities. Hands-on experience with VMware AVI or similar technologies such as F5, Imperva, or AWS WAF. Security Knowledge: Deep understanding of OWASP Top 10 vulnerabilities and web application security principles. Familiarity with SSL/TLS, HTTP protocols, and application-layer security. Additional Information Interview Process: 2-3 rounds ...

fully utilized and grow to meet the needs of the team Understanding and knowledge of common industry cyber security frameworks, standards and methodologies, including; OWASP, ISO2700x series, PCI DSS, GLBA, GDPR, Global data security and privacy acts, FFIEC guidelines, CIS and NIST standards. Windows and Linux Servers administration Strong Documentation ...

regulatory compliance environment Experience working in API testing , Network technologies and cloud solutions Have a good practical understanding of firewalls technologies, WAP and OWASP Understanding of CAF , NIST and NCSC Understanding of Cloud platform, Linux OS, OpenShift, Kubernetes ...

Code principles. Familiarity with Enterprise Design Thinking or Agile methodologies. Knowledge of code quality tools (e.g., linters, etc.) and nonfunctional standards (e.g., WCAG 2.2, OWASP). Experience with AI coding assistants like GitHub Copilot or Cursor. Excellent collaboration skills for multidisciplinary teams. All profiles will be reviewed against the required ...

technology, and data decisions are fully aligned with the overarching Enterprise Architecture strategy. Champion and apply best-practice principles for solution and data security (OWASP, NCSC, GDPR) at every stage of the delivery lifecycle. Required Skills: Active SC Security Clearance is a strict necessity, coupled with extensive, hands-on experience ...

BrowserStack (cross-device/browser testing) Ruby Cucumber/Gherkin (BDD) Selenium API testing (REST, Postman/Newman) Accessibility testing (WAVE, Pa11y) Security testing (OWASP ZAP, Dependency Check) Confident using browser developer tools and debugging techniques Strong understanding of version control using Git Comfortable working in Agile delivery environments Desirable … maintaining automated browser tests using Selenium and Ruby. Performing accessibility testing using tools such as WAVE and Pa11y and conducting security testing using OWASP ZAP and Dependency Check. Validating RESTful APIs using Postman or Newman, along with using browser developer tools (Lighthouse, JavaScript debug console, etc.) to support functional ...