1 to 25 of 53 Permanent OWASP Jobs in England

Terraform) Containerisation (Docker, AKS) and serverless (Azure Functions) Monitoring and observability (Application Insights, Log Analytics) Secrets management and vulnerability scanning (Key Vault, SonarQube, OWASP) Architecture & Design Microservices and event-driven design (Service Bus, Event Grid, Kafka) Domain-Driven Design (DDD) principles Resilient and scalable system patterns (circuit breakers, retries) Integration ...

awareness support to internal teams. Essential Skills & Experience Strong hands-on experience in application and cloud security engineering. Deep understanding of web app vulnerabilities (OWASP Top 10, CWE) and secure coding practices. Proficiency with security testing tools and vulnerability management platforms. Broad knowledge of network and infrastructure security concepts (WAFs ...

Hands-on experience securing Azure environments (identity, network, platform, data security). Strong background in application security, secure SDLC, threat modelling, and real-world OWASP Top 10 mitigation. Confident presenting to CIOs, senior leadership, and clients, translating technical topics into business risk language. Experience in regulated financial services , pensions, insurance ...

Hands-on experience securing Azure environments (identity, network, platform, data security). Strong background in application security, secure SDLC, threat modelling, and real-world OWASP Top 10 mitigation. Confident presenting to CIOs, senior leadership, and clients, translating technical topics into business risk language. Experience in regulated financial services , pensions, insurance ...

development is required. Maintain awareness of web application security and building applications which meet high standards of security, pass penetration tests and align with OWASP recommendations. Taking an active part in the whole Software Development Lifecycle end-to-end - including conception, design, architecture, build and deployment. Producing accurate estimates ...

competency - Cloud security awareness (AWS/Azure/GCP + IAM principles) - Scripting/automation skills (Python, PowerShell, Bash) - Understanding of secure coding/OWASP Top 10 - Working knowledge of ISO 27001, NIST, Cyber Essentials - Incident triage, log analysis, and threat investigation capability - Strong communication, problem solving, and teamwork skills ...

Lambda, Spring Boot, NodeJS, Python FastAPI, Oracle, PostgreSQL, and MongoDB . Work within Agile and DevSecOps environments, utilising tooling such as Atlassian, Jenkins, GitLab, OWASP and AWS services. Apply Site Reliability Engineering principles to enhance reliability, resilience, and performance. Support technical decision-making, explaining trade-offs and best practices ...

Lambda, Spring Boot, NodeJS, Python FastAPI, Oracle, PostgreSQL, and MongoDB . Work within Agile and DevSecOps environments, utilising tooling such as Atlassian, Jenkins, GitLab, OWASP and AWS services. Apply Site Reliability Engineering principles to enhance reliability, resilience, and performance. Support technical decision-making, explaining trade-offs and best practices ...

Lambda, Spring Boot, NodeJS, Python FastAPI, Oracle, PostgreSQL, and MongoDB . Work within Agile and DevSecOps environments, utilising tooling such as Atlassian, Jenkins, GitLab, OWASP and AWS services. Apply Site Reliability Engineering principles to enhance reliability, resilience, and performance. Support technical decision-making, explaining trade-offs and best practices ...

based data models across relational databases Work within an Agile team, contributing to stand-ups, sprint planning and retrospectives Apply secure development practices, including OWASP standards and authentication protocols Implement and maintain CI/CD pipelines, automated testing and deployments Participate in code reviews and support continuous improvement of engineering ...

technical security concepts to technical and non-technical audiences including executives. Perform technical quality reviews and conduct technical conversations directly with clients. Confident with OWASP Top 10 and SANS Top 25 vulnerabilities; ability to effectively communicate methodologies and techniques with development teams. Utilize tools such as BurpSuite, Nessus, Nmap, Kali ...

modern frontend frameworks like React.js or Stencil. Deep understanding of authorization and authentication standards (OAuth) and secure-by-design development practices. Strong awareness of OWASP Top 10 and a proactive approach to identifying and mitigating security vulnerabilities during development. Experience designing and deploying Retrieval-Augmented Generation (RAG) pipelines, working with ...

modern API-driven architectures Experience embedding security into CI/CD pipelines and cloud-native workflows Knowledge of secure development frameworks and practices (e.g. OWASP-based approaches) Experience with application security tooling such as SAST, SCA, DAST, or container security Understanding of cloud networking, identity, access management, and secure integrations ...

modern API-driven architectures Experience embedding security into CI/CD pipelines and cloud-native workflows Knowledge of secure development frameworks and practices (e.g. OWASP-based approaches) Experience with application security tooling such as SAST, SCA, DAST, or container security Understanding of cloud networking, identity, access management, and secure integrations ...

modern API-driven architectures Experience embedding security into CI/CD pipelines and cloud-native workflows Knowledge of secure development frameworks and practices (e.g. OWASP-based approaches) Experience with application security tooling such as SAST, SCA, DAST, or container security Understanding of cloud networking, identity, access management, and secure integrations ...

Cloud: IaaS, PaaS, SaaS, M365, Azure, Cloud Security, Azure DevOps. Applications: .NET, MS Dynamics, SQL Server, SSRS, M365 Apps, Exchange, SharePoint, IIS, Apache. Security: OWASP, Firewalls, ISO27001, Azure Security Benchmark, Microsoft Defender, zScaler. Networking: Switches, Firewalls, ExpressRoute, MPLS, Routing Protocols, CASB, Azure FrontDoor. Servers: VMware, Windows Server (Apply online only ...

Science, Cybersecurity or related subject (or UK Master's as alternative) 3-5 years commercial penetration testing experience Strong understanding of offensive security techniques, OWASP Top 10, MITRE ATT&CK Deep knowledge of operating systems, networking protocols, and system architecture Experience with penetration testing tools (Burp Suite, Metasploit, custom scripts ...

databases, ideally SQL Server Server side development experience using C# or a similar object oriented language Strong understanding of secure development practices aligned with OWASP guidelines Comfortable working with Git based version control workflows Experience with common front end tools and frameworks such as jQuery and SASS Confidence engaging directly ...

ISMS. • Proven track record of delivering security improvement initiatives and security awareness programmes. • Experience applying industry best practice frameworks such as NCSC, NIST, OWASP, SAMM, or SABSA. • Ability to provide security consultancy across multiple projects, advising on risk, treatment options, and controls. • Demonstrable experience conducting information security risk assessments, threat ...

digital forensics and the ability to document sensitive investigations accurately. Understanding of cloud security principles, PCI DSS/ISO 27001, MITRE ATT&CK, OWASP and vulnerability management frameworks. Ability to automate tasks or scripting experience to enhance SOC efficiency. Experience working with and explaining security concepts to non-technical stakeholders. ...

knowledge: network protocols, server infrastructure, Windows Server, Linux. Experience with threat hunting and spotting potential business-wide threats. Familiarity with frameworks: CVSS, CVE, CWE, OWASP, MITRE. OT vulnerability scanning and CTI monitoring experience. Strong analytical, prioritisation, communication, and reporting skills. Desirable: PCI-DSS/ISO27001, retail, cloud, DevOps/code ...

environments. Perform in-depth analysis of findings and produce high-quality reports detailing exploitation paths, business risk, and remediation recommendations. Apply strong knowledge of OWASP Top 10 and SANS Top 25, effectively aligning findings to industry standards. Essential Skills & Experience Strong hands-on experience delivering professional penetration testing engagements. Proficiency ...

Vue.js Composer Node.js and NPM Cloudflare configuration Working knowledge of Linux web servers Google Analytics 4 Google Tag Manager Git Submodules Core Web Vitals OWASP Top Ten/secure development methodologies 'On-page' technical SEO concepts including schema/structured microdata W3C Accessibility standards Experience of the agile/scrum ...

Vue.js Composer Node.js and NPM Cloudflare configuration Working knowledge of Linux web servers Google Analytics 4 Google Tag Manager Git Submodules Core Web Vitals OWASP Top Ten/secure development methodologies ‘On-page’ technical SEO concepts including schema/structured microdata W3C Accessibility standards Experience of the agile/scrum ...

programming languages, including How to test for/exploit them Real world mitigations that can be applied Familiarity with vulnerability classification frameworks (e.g. OWASP Top 10) What We'll Give You A team of very skilled and diverse personnel across the globe Ability to work in a flexible work from ...