19 of 19 Permanent Static Application Security Testing Jobs in England

INFORMATION SECURITY SPECIALIST (APPLICATION SECURITY) Manchester or Stoke-on-Trent (Hybrid) KEY POINTS * Application Security focused role * Hybrid working - Manchester or Stoke-on-Trent * Secure Development Lifecycle, AppSec tooling, CI/CD integration * Salary up to £80,000 DOE ABOUT THE CLIENT Due to continued … required skills) your application to our client in conjunction with this vacancy only. KEY SKILLS Application Security, AppSec, OWASP, Threat Modelling, SAST, DAST, CI/CD Security, Secure SDLC, Penetration Testing, Code Review, Supply Chain Security, Automation, AI Security ...

security standards such as OWASP Top 10, SANS Top 25, NIST, and ASVS. Hands-on experience with security tools like SAST, SCA, and container scanning, plus familiarity with programming languages such as Java, C#, and Python. Knowledge of modern development practices, including Agile, DevOps, and SecDevOps, enabling … clearly explain the rationale behind security fixes to ensure understanding and impact. Strong analytical skills to interpret and correlate data from sources like SAST, SCA, and penetration tests, identifying trends and prioritizing remediation efforts. The capability to link issues across multiple layers—code, infrastructure, identity, cloud environments, and third ...

Title: Senior Application Security EngineerSalary: £70,000Location: Reading/remote About the Organisation Join a fast-growing UK technology and consulting firm that's investing heavily in cutting-edge cyber security. With a strong focus on innovation, collaboration, and professional development, this company empowers its people to shape … software are secure by design. Drive vulnerability management and implement a risk-based approach across the technology stack. Perform security testing (SAST, DAST, SCA) and work with developers to remediate findings. Support cloud security controls (primarily Azure, including cloud-native apps). Champion secure development, threat modelling ...

years in a demonstrable leadership capacity.• Strong technical grounding in application security, cloud security, and DevSecOps.• Hands-on experience with SCA, SAST, DAST, CSPM, CNAPP • Excellent practical familiarity with industry frameworks such as OWASP and NIST.• Proven ability to drive organisational change and influence senior stakeholders.• Excellent … related services Keyword Terminology Application Security, Product Security, AppSec, Cloud Security, DevSecOps, Secure-by-Design, SDLC Security, OWASP, NIST, SAST, DAST, SCA, CSPM, CNAPP, CISSP, CISM, CISA, Security Frameworks, GDPR, ISO 27001, Risk Management, Security Governance ...

maintain security controls across cloud infrastructure using Infrastructure as Code, with a security-first mindset. Automate security testing processes, including SAST, DAST and IAST, enabling early detection and remediation of vulnerabilities. Conduct and support regular automated security assessments, vulnerability scans and remediation planning. Build … CloudFormation. Deep knowledge of securing AWS-based environments, container platforms (Docker, Kubernetes) and cloud-native services. Experience implementing and managing security tools including SAST, DAST, vulnerability scanners and container security tools. Strong scripting and automation skills using Bash, Python or similar languages. Experience with monitoring, logging and SIEM ...

client is a leading international financial services organisation seeking a senior Cybersecurity professional to take ownership of information security, cybersecurity and data security across the business. This role acts as the first line of defence within IT and plays a critical part in safeguarding systems, data and infrastructure … Review and optimise network and firewall policies to ensure effectiveness and necessity • Oversee application security across development and testing phases, including SAST and DAST • Monitor and assess data leakage risks and strengthen encryption controls for data at rest, in transit and in use Key Skills and Experience ...

Product Security Specialist (PSS) at HL, you will be a key member of a collaborative team of security professionals dedicated to safeguarding HL's products and services. In this role, you will serve as the primary security contact for assigned product teams/squads, providing expert guidance … preferred. Knowledge of security principles, practices, and frameworks, such as OWASP, NIST, and ISO. Awareness of security tools and technologies, such as SAST, DAST, IAST, SCA, WAF, IDS, IPS. Experience in conducting threat modelling and risk assessments. Interview process The interview process for this role is two stages ...

Senior Security Engineer/DevSecOps Engineer Location: Multiple locations across the UK (hybrid & flexible)Salary: Up to £85,000 + comprehensive benefits package The Opportunity A large-scale digital organisation is undertaking a significant technology transformation, building modern cloud platforms that support millions of users across consumer and enterprise … cloud-native workflows Knowledge of secure development frameworks and practices (e.g. OWASP-based approaches) Experience with application security tooling such as SAST, SCA, DAST, or container security Understanding of cloud networking, identity, access management, and secure integrations Ways of Working Comfortable working as part of a cross ...

Senior Security Engineer/DevSecOps Engineer Location: Multiple locations across the UK (hybrid & flexible)Salary: Up to £85,000 + comprehensive benefits package The Opportunity A large-scale digital organisation is undertaking a significant technology transformation, building modern cloud platforms that support millions of users across consumer and enterprise … cloud-native workflows Knowledge of secure development frameworks and practices (e.g. OWASP-based approaches) Experience with application security tooling such as SAST, SCA, DAST, or container security Understanding of cloud networking, identity, access management, and secure integrations Ways of Working Comfortable working as part of a cross ...

Senior Security Engineer/DevSecOps Engineer Location: Multiple locations across the UK (hybrid & flexible)Salary: Up to £85,000 + comprehensive benefits package The Opportunity A large-scale digital organisation is undertaking a significant technology transformation, building modern cloud platforms that support millions of users across consumer and enterprise … cloud-native workflows Knowledge of secure development frameworks and practices (e.g. OWASP-based approaches) Experience with application security tooling such as SAST, SCA, DAST, or container security Understanding of cloud networking, identity, access management, and secure integrations Ways of Working Comfortable working as part of a cross ...

looking for a hands-on DevSecOps Engineer to take ownership of application and cloud security across a modern, Azure-first product environment. This is a product-focused security role, sitting at the intersection of development, DevOps and security, helping teams understand why vulnerabilities exist … automation and education. The role: Act as the DevSecOps lead, owning application and cloud security practices across the business Analyse outputs from SAST and DAST tools (e.g. Snyk, BrightSec), understanding vulnerabilities at a low level and advising development teams on remediation Work closely with DevOps to ensure secure ...

Security Engineer Salary: Up to £85,000 (depending on experience) Locations: London, Leeds, Middlesbrough, Bristol or Bournemouth Working Pattern: Hybrid - two days per week in one of the above offices Overview: An established enterprise organisation is undertaking enhancements to its digital platforms as part of an ongoing modernisation strategy.As …/IP, UDP, HTTP/3, AMQP, streaming protocols), cloud networking concepts (VPNs, subnets, regions/zones) and integration technologies Hands-on experience with SAST and SCA tools such as Snyk and Checkmarx Experience with DAST tools such as OWASP ZAP or Qualys DAST (preferred), ideally working with HTTP APIs ...

Security Engineer £50,000 to 67,000 GBP Bonus Hybrid WORKING Location: Manchester, North West - United Kingdom Type: Permanent Security Engineer - API, IAM & Automation Locations: Glasgow, Greater Manchester or Northampton (Hybrid) Salary: Up to £67,000 base + bonus (DOE) The Role We're looking for a Security … Background in Security Engineering, DevSecOps, SRE, or Platform Engineering. Desirable Experience integrating security into CI/CD pipelines. Knowledge of vulnerability scanning (SAST, DAST, SCA). Familiarity with container and Kubernetes security. This is an opportunity to play a key role in shaping secure-by-design engineering practices ...

have an exciting opportunity for a Software Security Engineer to join our Global Healthcare client. As a Security Engineer, you’ll provide hands-on technical expertise to guide software development, delivery and continuous improvement focusing on risk and security. You’ll help evolve our client’s new Digital … HTTP/3, AMQP, streaming protocols etc), cloud network design (VPNs, subnets, regions/zones etc), and integration related technologies (Auth0, APIM) Expertise with SAST & SCA systems such as Snyk, Checkmarx Experience with DAST systems such as OpenZAP, Qualys DAST (preferred) ideally with HTTP APIs Ability to manage large scale ...

pipelines and reusable modules, guardrails, andpolicyascodeto support secure, consistent cloud adoption. Applyendtoendsecurity across identity, networking, encryption, secrets, MFA, andzerotrust. Implement automated security scanning (SAST/DAST), dependency checks, and secure pipeline patterns, aligning platforms withorganisationaland regulatory standards. Work across the full project lifecycle. About You: Experienced in designing … Experience of the following would be advantageous: Consulting or client facing project leadership experience Experience with .NET of Python Familiar with cloud-native security tooling If you are looking to join a leading consultancy specialising in Digital, Security and AI solutions then this is the role for you. ...

continuous evolution of our enterprise API Platform. This role is fully hands-on, combining deep expertise in Azure cloud services, Kubernetes, Terraform, API security, and distributed systems with the ability to guide, review, and contribute to .NET Core API development practices. The architect will define and maintain the vision … pipeline definition for APIM deployments, testing, API versioning, and documentation automation. Establish CI/CD pipelines for Terraform, .NET API builds, image scanning, SAST/DAST, compliance enforcement. 8. Hands-On .NET Core API Integration & Code Reviews Review .NET Core API implementations to ensure correct API design, platform alignment ...

continuous evolution of our enterprise API Platform. This role is fully hands-on , combining deep expertise in Azure cloud services, Kubernetes, Terraform, API security, and distributed systems with the ability to guide, review, and contribute to .NET Core API development practices . The architect will define and maintain … pipeline definition for APIM deployments, testing, API versioning, and documentation automation. Establish CI/CD pipelines for Terraform, .NET API builds, image scanning, SAST/DAST, compliance enforcement. 8. Hands-On .NET Core API Integration & Code Reviews Review .NET Core API implementations to ensure correct API design , platform alignment ...

appoint a Senior Azure Cloud Engineer. This is a hands-on senior role where youll take ownership of Azure infrastructure, DevOps practices, and cloud security, working closely with architects and development teams in an agile environment. The platform is API-driven and operates at scale, so reliability, performance … security Proven Infrastructure-as-Code expertise (Terraform, Bicep/ARM) Experience with Azure DevOps, GitHub, and CI/CD pipelines Familiarity with DevSecOps, SAST/DAST, and cloud monitoring Confident communicator with a pragmatic, delivery-focused mindset This is an opportunity to join a business where cloud engineering ...

Senior Azure Cloud Engineer. This is a hands-on senior role where you’ll take ownership of Azure infrastructure, DevOps practices, and cloud security, working closely with architects and development teams in an agile environment. The platform is API-driven and operates at scale, so reliability, performance, and security … security Proven Infrastructure-as-Code expertise (Terraform, Bicep/ARM) Experience with Azure DevOps, GitHub, and CI/CD pipelines Familiarity with DevSecOps, SAST/DAST, and cloud monitoring Confident communicator with a pragmatic, delivery-focused mindset This is an opportunity to join a business where cloud engineering ...