8 of 8 Remote/Hybrid Contract OWASP Jobs

GitHub Actions , CircleCI (or similar) Monitoring & logging: Prometheus , Grafana , ELK stack (or equivalent) DevSecOps: integrating security into pipelines and delivery (e.g., SonarQube , Snyk , OWASP practices) If you'd like to discuss this DevOps Engineer role in more detail, please send your updated CV to (url removed) and I will ...

conducting threat modelling (e.g. STRIDE, attack trees) and risk analysis Strong understanding of security frameworks and best practice such as ISO 27001, NIST, CIS, OWASP, NCSC guidance Experience working in the UK Public Sector and associated security standards and guidance including GovAssure/NCSC CAF, HMG Security Policy Framework. Knowledge ...

Working with shared/common government tech stacks (Node.js, PostgreSQL, Redis) Investigating and resolving technical issues across the stack Applying secure development practices, including OWASP principles and vulnerability management Collaborating with stakeholders and communicating technical concepts clearly Tech stack includes: Node.js, HAPI (web framework) API development (REST, OpenAPI) PostgreSQL, MongoDB ...

Infrastructure as Code (Terraform or CDK) Strong grounding in clean architecture, SOLID principles, and code maintainability Knowledge of API integration and secure development practices (OWASP) What you'll be doing: Delivering end-to-end software solutions in a modern tech stack Working closely with product managers, QA, and engineering leadership ...

doing Lead backend architecture – Define and evolve scalable, secure, high-performance backend systems Set engineering standards – Champion best practices, secure coding (OWASP), and high-quality delivery Hands-on technical contribution – Support critical backend work and review complex code Guide teams & mentor engineers – Facilitate design discussions, code reviews, and technical decision ...

government standards Writing clean, maintainable, and reusable code/configuration Supporting issue investigation, resolution, and continuous improvement Applying secure development practices, including awareness of OWASP principles Collaborating with stakeholders and clearly communicating technical concepts Tech and environment: Microsoft Power Platform (Power Apps, Power Automate, Dataverse) Integration with wider enterprise systems ...

Bases, Guardrails, and model lifecycles. AI/ML Core: Mastery of FMs, RAG, tool-use, and non-deterministic agent logic. Security Frameworks: Proficiency in OWASP LLM Top 10 and NIST AI RMF . Role 1: Identity Expert Mission: Secure the "Human-to-Agent" and "Agent-to-Resource" identity chain. ...

lifecycle). AI/ML Foundations: Deep understanding of FMs, RAG , non-deterministic agents, and complex tool-use. Secure AI: Expert-level knowledge of OWASP LLM Top 10 and Agentic AI threats . Familiarity with NIST AI RMF is a massive plus! Your Mission: Identity & Access Specialist As our Identity ...