1 to 3 of 3 Contract Application Security Jobs in the UK excluding London

Senior Pen Tester/Application Security Tester 6 Month Contract Hybrid (occasional trips to the London office) Financial Services ASAP Start Date My Financial Services client is currently seeking for a Senior Penetration Tester to join the team. Responsibilities/Requirements: - Manually conduct application security testing … on web applications on prem and AWS cloud reporting issues - Manage DAST ans SAST scanning tools - 6 years + experience within the security testing field - Hands on experience testing and explaining OWASP top 10 vulnerabilities - Previously worked within the financial services industry Logistics: - 6 Month Rolling Contract more »

Role Description: The role holder will be a subject matter expert in DevSecOps approaches and best practices, playing a crucial role in bridging development, security, and operations. Demonstrable knowledge of the DevOps culture and principles, Secure Software Development Life Cycle (SDLC) practices, Application security knowledge, Cloud infrastructure … knowledge and familiarity with CI/CD tools, security tooling, and automation tools. The role holder will have overall accountability and oversight for the technical solution delivered for this domain. Key Accountabilities: Creates and owns the E2E technical solution that underpins the goal of Establishing a sustainable "DevSecOps" practice. … matter expert in DevSecOps approaches and best practices Mandatory - Demonstrable knowledge of the DevOps culture and principles, Secure Software Development Life Cycle (SDLC) practices, Application security knowledge, Cloud infrastructure knowledge and familiarity with CI/CD tools, security tooling, and automation tools. Preferred - experience of agile product more »

Security Engineer - Cloud/Appsec £600-£650 p.d Outside IR35 Occasional Travel to Leeds Office 3 Months + Likely extension Start Date - ASAP Key Responsibilities: Secure Configurations & Compliance Implementation: Planning and implementation of the Center for Internet Security Microsoft Dynamics 365 Power Platform benchmark. Planning and implementation of … the Center for Internet Security Microsoft 365 Foundations Benchmark. Collaborating with cloud and DevOps engineers to refactor Terraform code for secure configurations and compliance with the Center for Internet Security Microsoft Azure Foundations Benchmark. Work with colleagues to raise any required exceptions with Information Security Governance Risk … and Compliance so that any associated operational risk is identified, assessed and managed. Work with Security Operations to onboard Azure Landing Zones into Qualys Total Cloud and address any findings relating to non-compliance. Auditing configurations in order to plan remediations and verify compliance requirements are met. SIEM Integration more »