1 to 25 of 36 Permanent OWASP Jobs in Berkshire

control). Knowledge of SQL and experience verifying backend data consistency. Familiarity with containerized environments (Docker, Kubernetes). Familiarity with tools like Burp Suite, OWASP ZAP, or static analysis tools is a plus. What We Offer Competitive salary and benefits package. Opportunities for learning, growth, and contributing to a product More ❯

control). Knowledge of SQL and experience verifying backend data consistency. Familiarity with containerized environments (Docker, Kubernetes). Familiarity with tools like Burp Suite, OWASP ZAP, or static analysis tools is a plus. What We Offer Competitive salary and benefits package. Opportunities for learning, growth, and contributing to a product More ❯

with AWS (or other cloud-based solutions) . Strong understanding of secured Software Development Lifecycle (SDLC) and CI/CD platforms . Familiarity with OWASP, CIS frameworks, and security best practices . Infrastructure & Scripting Knowledge: Proficiency in Microsoft platforms (Office 365, IIS, .NET, SQL Server, Windows Server, Active Directory). More ❯

Build and maintain REST API microservices using Java 17 (and occasionally Go), deploying them on OpenShift/Kubernetes 🔹 Integrate security tools like Snyk, BlackDuck, OWASP DependencyTrack, and Artifactory into our CI/CD pipelines 🔹 Work with Jenkins, TeamCity, and Tekton to optimize and maintain our DevSecOps toolchain 🔹 Collaborate with developers More ❯

essential. Experience working with security issues in software architecture, software development, e.g. static and/or dynamic code analysis and tools, software dependency check, OWASP Top10 testing, application threat modelling. In-depth experience working in an Agile software development environment, with classic applications as well as microservices, using modern code More ❯

experience in the design, development, and support of software products. Knowledge of best practices for coding defensively against possible attack vectors, and testing with OWASP tooling (e.g. ZAP). Desirable skills/knowledge/experience: Test experience: unit, integration, performance, security § Java (1.8) (including Spring Boot, Drop Wizard, Jersey, CXF More ❯

Terraform, CloudFormation) •Familiarity with Jira or other ticketing systems – essential •Technical architecture design and review skills – essential •Ability to identify vulnerabilities using CWE or OWASP •Knowledge of operating systems and their hardening techniques •Understanding of development concepts such as CICD, Pipelines, and SDLC •Penetration testing knowledge is also super useful More ❯

Docker, Kubernetes, Terraform, Helm Experience building modern web apps using Angular and Typescript Experience working in Azure DevOps managing backlogs etc Working knowledge of OWASP security best practices Knowledge of working with FedRamp compliance Our Employer Commitment This job posting will remain active until a qualified candidate is identified. At More ❯

systems such as Elastic APM or DataDog to track and diagnose issues in production A solid understanding of security principles and secure coding including OWASP Top 10 Desirable Skills: Experience in VOIP, (SIP and RTP advantageous) Experience of TDD/BDD/DDD principles Knowledge of PCI compliance and associated More ❯

Code (Terraform) Scripting: Python, Bash, PowerShell OS & Tooling: Linux, Docker, Kubernetes, GitLab CI/CD testing & automation (GitLab, JMeter, PyTest) ✅ Domain Expertise: Security Products : OWASP, encryption (AES, RSA), PKI, SIEM Identity & Directory Tech : Active Directory, GPOs, IAM, SSO, OAuth2, SAML More ❯

Terraform, CloudFormation) Familiarity with Jira or other ticketing systems – essential Technical architecture design and review skills – essential Ability to identify vulnerabilities using CWE or OWASP Knowledge of operating systems and their hardening techniques Understanding of development concepts such as CICD, Pipelines, and SDLC Penetration testing knowledge is also super useful More ❯

distributed and hybrid teams . Ability to effectively communicate complex technical concepts in non-technical terms to stakeholders. Familiarity with modern security frameworks like OWASP and SANS25 . Experience with Continuous Delivery and Automated Deployment using tools like Azure DevOps . More ❯

Agile environment, in particular Scrum, and applying supporting practices. In addition any experience in the following would be beneficial: Knowledge and experience working to OWASP ASVS or equivalent application security standards. Experience of .NET 5 or 6. Experience of Javascript, Typescript and associated frameworks and libraries, in particular React.js. More ❯

Agile environment, in particular Scrum, and applying supporting practices. In addition any experience in the following would be beneficial: Knowledge and experience working to OWASP ASVS or equivalent application security standards. Experience of .NET 5 or 6. Experience of Javascript, Typescript and associated frameworks and libraries, in particular React.js. More ❯

vulnerabilities. Requirements: 5+ years of hands-on experience in application security and secure software development. Strong knowledge of secure coding practices and common vulnerabilities (OWASP) Experience with SAST, DAST, and IAST tools and integrating them into CI/CD pipelines. Proficiency in writing and reviewing code (JavaScript, Java, Python) with More ❯

vulnerabilities. Requirements: 5+ years of hands-on experience in application security and secure software development. Strong knowledge of secure coding practices and common vulnerabilities (OWASP) Experience with SAST, DAST, and IAST tools and integrating them into CI/CD pipelines. Proficiency in writing and reviewing code (JavaScript, Java, Python) with More ❯

Bank security posture. Analytical skills to interpret data and provide insights into threats facing the bank. Awareness of common Cyber Incidents and Security breaches (OWASP). Knowledge or experience in SOC2, ISO 27001, PCI DSS and GDPR. Previous experience working within an organisations Cyber Incident Response function. Hands on experience More ❯

experience. Eligibility for or possession of UK Security Clearance (preferred but not required). Solid understanding of common attack techniques and vulnerability classes (e.g., OWASP Top 10, MITRE ATT&CK). Strong familiarity with tools such as Burp Suite, Nmap, Metasploit, etc. Excellent communication and reporting skills. Required Qualifications: Demonstrable More ❯

experience. Eligibility for or possession of UK Security Clearance (preferred but not required). Solid understanding of common attack techniques and vulnerability classes (e.g., OWASP Top 10, MITRE ATT&CK). Strong familiarity with tools such as Burp Suite, Nmap, Metasploit, etc. Excellent communication and reporting skills. Required Qualifications: Demonstrable More ❯

Skills: Experience with Governance, Risk, and Compliance (GRC) tools (preferred: OneTrust). Familiarity with AGILE methodologies, preferably Atlassian/Jira. Understanding of Application Security (OWASP Top 10). Knowledge of web development technologies and programming languages. Proficiency with security assessment tools and techniques. Understanding of legal and regulatory obligations related More ❯

CI/CD experience with microservices Hands-on with modern auth providers (Auth0, Kinde, Okta, Cognito), including RBAC Familiarity with GraphQL Strong understanding of OWASP Top 10, CSP, CSRF, and XSS mitigation Confident written communicator – clear documentation and stakeholder updates are a must Bonus points for: Experience migrating to managed More ❯

and constructive. Comfortable with Git workflows, Docker, Linux and CI pipelines; bonus points for GCP, Figma, Storybook, MySQL, Python FastAPI and solid understanding of OWASP web-security practices. Why join us? Become part of our flexible and supportive work environment, where our innovative team values your ideas and collaboration drives More ❯

to an improved Bank security posture. Analytical skillsto interpret data and provideinsights into threatsfacing the bank. Awareness of common Cyber Incidents and Security breaches(OWASP). Desirable Knowledge or experience in SOC2, ISO 27K, PCI DSS and GDPR. Previous experience working withinan organisations Cyber Incident Responsefunction. Hands on experience with More ❯

expertise in AWS security, secure coding, Service Mesh/Observability, IAM/Okta, threat modelling and a strong understanding of security frameworks like ISO27001, OWASP or NIST, and the ability to drive secure coding practices, SAST and DAST, we want to hear from you! About the Role As a Cloud … of security frameworks such as ISO 27001, NIST, or CIS benchmarks. Experience in application security reviews, vulnerability management, and security controls implementation. Familiarity with OWASP Top 10, CWE, and secure coding practices. Basic coding/scripting skills in Python, JavaScript, or similar. Strong communication skills with the ability to engage More ❯

at rest/in transit, and other application security standards. Ensure software and infrastructure meet organizational security and compliance requirements (e.g., GDPR, ISO 27001, OWASP Top 10). Team Management & Culture Build and scale high-performance engineering teams, including backend, frontend, full-stack, data, and security engineers. Define and track … APIs, ETL, Azure Data Factory DevOps/Infra : CI/CD pipelines (e.g., GitHub Actions, Azure DevOps), containerization, Azure PaaS Security : Secure development lifecycle, OWASP, authentication/authorization protocols Leadership Attributes Technically credible leader with the ability to deep-dive on architecture and code when necessary. Strong decision-making skills More ❯