14 of 14 Permanent Static Application Security Testing Jobs in England

APPLICATION SECURITY ENGINEER £90,000 + 15% Bonus + Excellent Staff Benefits including Strong Pension, Life Assurance Hybrid Working ( 2 Days per Week Onsite ) An interesting opportunity has presented itself within one of the UKs largest Independent Software Based Organisations who are one of a major driving forces behind Innovative Development of Enterprise-Led Internet Technology. They are … now looking for an Application Security Engineer to join their existing & high performing large scale In - House Security Team including SOC & Cyber Analysts through to Experienced Cyber Security Engineers & Security Architects. As an AppSec Engineer you will focus on the technical side of IT Security, specifically looking at Application Security & Code Analysis … ensuring their Applications are Built Securely. The Information & Cyber Security Team deal with the Security of Closed-Sourced, Open-Source & In-House Developed Applications ensuring that All Systems & Services are Built with Privacy & Security by Design. You will be working closely with the Software Development Team , to confirm that Application Based Vulnerabilities are Understood & Mitigated meaning More ❯

Stock Exchange (EXPN), we have a team of 22,500 people across 32 countries. Our corporate headquarters are in Dublin, Ireland. Learn more at experianplc.com. Job Description Experian, Global Security Office are looking for an experienced Senior Application Security Engineer to enhance our application security processes with emphasis on business engagement. You will be responsible … understand their needs and the risk profile for each application and customize solutions to meet the needs of the application Collaborate on the implementation and management of SAST, SCA, DAST, and other scanning solutions to provide coverage for the application portfolio Guide development teams through a review of their applications and risks against common application flaws … experience in enterprise-level application security. Experience in AppSec or DevSecOps, collaborating and presenting to developers, supporting development teams to adopt and mature secure development practices Proficiency with SAST, SCA, DAST, IAST, RASP and others tools associated with DevSecOp. Experience with programming and software development including CI/CD pipelines and related technologies such as Git, Jekins, Maven, Chef More ❯

threat modelling exercises, and continually improve the organisations application security posture. Key Responsibilities Secure Development Lifecycle (SDLC) Experience working with static and dynamic code analysis tools (SAST, DAST) is essentialwhile you dont need to have set them up, you should have collaborated with developers to ensure code is scanned and critical vulnerabilities are blocked in the pipeline. … Integrate security controls into CI/CD pipelines and development workflows. Manage and monitor SAST, DAST, and SCA tools to detect vulnerabilities early in the lifecycle. Conduct secure code reviews and support remediation efforts. Threat Modelling & Architecture Review Requirements (Primarily Essential) 2+ years of experience in application security or secure software development. Strong knowledge of OWASP Top … secure coding principles, and threat modelling. Hands-on experience with SAST, DAST, SCA, and vulnerability management tools. Familiarity with cloud platforms (Azure or AWS), CI/CD pipelines, and DevOps processes. Strong communication skills and the ability to collaborate effectively across teams. Understanding of regulatory and security standards (ISO 27001, FCA, NIST). (Nice to have) Youll need to More ❯

A leading fintech company is seeking a Lead AppSec Engineer to join their established team. Youll be instrumental in embedding security into every stage of the software development lifecycleguiding engineers, shaping best practices, and driving secure, scalable solutions across our platform. Key Responsibilities: Security Advisory : Serve as the go-to expert for application security across engineering … teamsproviding hands-on guidance, resolving concerns, and fostering a security-first mindset. DevSecOps Enablement : Promote and implement secure development practices across CI/CD pipelines, secrets and key management, dependency … management, and secure design. Vulnerability Management : Lead vulnerability remediation effortstriaging findings, prioritizing risks, and partnering with teams to deliver effective, pragmatic fixes. Tooling & Automation : Integrate security tools (e.g., SAST, DAST, SCA, secrets scanning) into developer workflows, ensuring automation is both scalable and developer-friendly. Cloud Security Collaboration : Work alongside infrastructure teams to ensure secure configuration of AWS and More ❯

Security Engineer (Salesforce) Permanent Hybrid - 3 days p/w on-site Leeds area (Hands on recent career experience of Salesforce/Salesforce Industries/Vlocity is essential) FPSG have a fantastic opportunity to join a large-scale digital transformation programme aimed at uniting multiple internal business units under a new, secure, cloud-native digital platform. Ideal for a … and cloud network architecture (VPNs, subnets, zones) Experience with API security and integration-related platforms such as Auth0 or API Gateways Proficiency with security tools including SAST (e.g. Snyk, Checkmarx), SCA, and DAST (e.g. OpenZAP, Qualys DAST) Ability to manage secure operations of large-scale software estates, including deployment pipelines, rollback strategies, and uptime monitoring Practical experience building … Information Security Specialist, Salesforce, Salesforce Industries, Vlocity, Azure, OWASP CI/CD, DSOMM, SAMM, Cloud Security Posture Management, Prisma Cloud, Azure Defender, Snyk, Checkmarx, OpenZAP, Qualys, DAST, SAST, CI/CD, Infrastructure Security, Auth0, Secure APIs, Networking Protocols, DevSecOps, Secure Development, CRM Security Next Steps Please click "Apply now" and submit your up-to-date CV More ❯

/2 days in London Salary: Circa 65K 75K + Benefits Cybersecurity Engineer required by fast-growing, revolutionary tech company! This is a challenging, hands-on role leading the security of their applications, APIs, infrastructure, and data. Youll identify vulnerabilities, define best practices, and implement controls without slowing delivery Essential: At least 3yrs in cybersecurity, application security … security roles Strong knowledge of web/mobile security (OWASP Top 10, API security), cloud security (AWS), and CI/CD pipeline hardening Familiar with SAST/DAST tools, vulnerability scanners, penetration testing frameworks, and monitoring platforms (e.g. Splunk, ELK, Datadog) Understanding of GDPR and data privacy best practices Tremendous opportunity offering plenty of scope More ❯

football club. We are excited to bring in passionate people who share our vision and drive for success. The Role: We are looking for a highly skilled Senior Information Security Engineer with deep technical expertise in security tooling across both on-premise and cloud environments. You will lead threat detection, incident response, and security architecture efforts within … a hybrid environment. This is a highly technical engineering role, where you'll be hands-on developing and maintaining our security operations tooling. Key Responsibilities: Security Infrastructure & Engineering Architect, implement, and manage security technologies including: SIEM (Sentinel) Microsoft Defender suite (Cloud, Endpoint and Identity), Microsoft Sentinel, Purview and Azure infrastructure (including RBAC, PIM, NSGs and identity protections … on risk, and drive remediation efforts. Research and test emerging threats, zero-days, and exploit mitigations. Cloud & DevSecOps Security Implement security controls in CI/CD pipelines (SAST, DAST, container scanning) Enforce security baselines in Azure and/or AWS (IAM, key management, encryption, logging) Threat Intelligence - analyse potential threats, identify vulnerabilities, and implement measures to mitigate More ❯

Overview Role Title: DevSecOps Security Engineer Duration: 6 Months Location: Manchester or Glasgow Rate: £650 Per Day - Umbrella only Would you like to join a global leader in consulting, technology services and digital transformation? Our client is at the forefront of innovation to address the entire breadth of opportunities in the evolving world of cloud … digital and platforms. Role purpose/summary We are seeking an experienced DevSecOps Engineer to support a strategic initiative involving: Implementation and optimisation of existing and new SCA and SAST tooling Integration of security into CI/CD pipelines Key Responsibilities Evaluate, implement, and configure SAST and SCA tools (e.g., Wiz, Veracode, Checkmarx, Snyk, SonarQube) Integrate security tooling … findings and tool usage Provide guidance on secure coding practices and developer enablement. Conduct codebase analysis, identify vulnerabilities, and support remediation efforts. Required Skills & Experience Proven experience with SAST/SCA tools and their integration into development workflows Strong understanding of DevSecOps principles and secure SDLC Hands-on experience with CI/CD pipelines and automation Familiarity with cloud More ❯

My client, a Professional Services company, is looking for an IT Security Engineer to join their client (in the Insurance sector) on site in London (Kent to be exact). Please note I am away from Thursday 14th August - Wednesday 20th August. About the IT Security Engineer Role: As a Security Engineer, you'll provide hands-on … security. You'll help evolve our new Digital Platform to ensure it is secure and compliant with internal and industry regulations. You will analyze new feature code to identify security risks and work with engineers to mitigate them, applying modern security standards such as OWASP CI/CD, DSOMM, SAMM, and Cloud Security Posture management systems like … preferred). Experience with modern standards such as OWASP CI/CD, DSOMM, SAMM, and cloud security posture management systems like Azure Defender and Prisma Cloud. Expertise with SAST & SCA systems such as Snyk and Checkmarx, including policy management. Ability to develop Threat Models as part of risk assessment, including remediation plans (preferred). Experience with DAST systems such More ❯

Lead the design and implementation of secure, scalable DevSecOps solutions across cloud, on-prem, and hybrid environments Advise customers on best practices for CI/CD, containerisation, and integrating security across the SDLC Collaborate with Sales and Consulting teams to develop technical proposals and bid responses Facilitate customer workshops, design reviews, and solution assurance activities Drive innovation and thought … SAFe, Kanban, etc.) Deep expertise in Kubernetes (vanilla, EKS, AKS, OpenShift), CI/CD pipelines, and infrastructure as code (Terraform) Security integration experience across the DevSecOps lifecycle, including: SAST, DAST, SCA, and IAST tools (e.g., Checkmarx, Veracode, OWASP ZAP) Secrets management tools like HashiCorp Vault Vulnerability management solutions such as Prisma Cloud Testing frameworks like Selenium Familiarity with … are still areas of our business with clear hiring requirements - and we would like to bring talent like you on board! By the way, we have completely virtualised our application process and our recruiters remain available to you should you have any questions. We are still looking forward to getting to know you! About us Computacenter is a leading More ❯

Lead the design and implementation of secure, scalable DevSecOps solutions across cloud, on-prem, and hybrid environments Advise customers on best practices for CI/CD, containerisation, and integrating security across the SDLC Collaborate with Sales and Consulting teams to develop technical proposals and bid responses Facilitate customer workshops, design reviews, and solution assurance activities Drive innovation and thought … SAFe, Kanban, etc.) Deep expertise in Kubernetes (vanilla, EKS, AKS, OpenShift), CI/CD pipelines, and infrastructure as code (Terraform) Security integration experience across the DevSecOps lifecycle, including: SAST, DAST, SCA, and IAST tools (e.g., Checkmarx, Veracode, OWASP ZAP) Secrets management tools like HashiCorp Vault Vulnerability management solutions such as Prisma Cloud Testing frameworks like Selenium Familiarity with … are still areas of our business with clear hiring requirements - and we would like to bring talent like you on board! By the way, we have completely virtualised our application process and our recruiters remain available to you should you have any questions. We are still looking forward to getting to know you! About us Computacenter is a leading More ❯

Lead the design and implementation of secure, scalable DevSecOps solutions across cloud, on-prem, and hybrid environments Advise customers on best practices for CI/CD, containerisation, and integrating security across the SDLC Collaborate with Sales and Consulting teams to develop technical proposals and bid responses Facilitate customer workshops, design reviews, and solution assurance activities Drive innovation and thought … SAFe, Kanban, etc.) Deep expertise in Kubernetes (vanilla, EKS, AKS, OpenShift), CI/CD pipelines, and infrastructure as code (Terraform) Security integration experience across the DevSecOps lifecycle, including: SAST, DAST, SCA, and IAST tools (e.g., Checkmarx, Veracode, OWASP ZAP) Secrets management tools like HashiCorp Vault Vulnerability management solutions such as Prisma Cloud Testing frameworks like Selenium Familiarity with … are still areas of our business with clear hiring requirements - and we would like to bring talent like you on board! By the way, we have completely virtualised our application process and our recruiters remain available to you should you have any questions. We are still looking forward to getting to know you! About us Computacenter is a leading More ❯

Lead the design and implementation of secure, scalable DevSecOps solutions across cloud, on-prem, and hybrid environments Advise customers on best practices for CI/CD, containerisation, and integrating security across the SDLC Collaborate with Sales and Consulting teams to develop technical proposals and bid responses Facilitate customer workshops, design reviews, and solution assurance activities Drive innovation and thought … SAFe, Kanban, etc.) Deep expertise in Kubernetes (vanilla, EKS, AKS, OpenShift), CI/CD pipelines, and infrastructure as code (Terraform) Security integration experience across the DevSecOps lifecycle, including: SAST, DAST, SCA, and IAST tools (e.g., Checkmarx, Veracode, OWASP ZAP) Secrets management tools like HashiCorp Vault Vulnerability management solutions such as Prisma Cloud Testing frameworks like Selenium Familiarity with … are still areas of our business with clear hiring requirements - and we would like to bring talent like you on board! By the way, we have completely virtualised our application process and our recruiters remain available to you should you have any questions. We are still looking forward to getting to know you! About us Computacenter is a leading More ❯

wins. You MUST Have: 7+ years in technical pre-sales or sales engineering roles Hands-on with Docker, Kubernetes, CI/CD, Git, build tools Solid AppSec experience: SCA, SAST, SBOM, Container Security Cloud infrastructure fluency (AWS, Azure or GCP - must especially tick this box) Proven track record building enterprise relationships - from tech champions to C-level Ability to More ❯