1 to 19 of 19 Permanent Static Application Security Testing Jobs in England

Security Engineer - Application Security, £70,000 - £90,000 base, 15% bonus, + Great benefit package We're working with a FTSE 100 e-commerce firm that is looking for an experienced Application Security expert to enhance its secure software capabilities. This opportunity is ideal for … a DevSecOps/Application Security technical consultant or engineer with a proven track record in agile environments. The role involves providing expert guidance and driving improvements to bolster the client's Application Security posture. The role involves identifying and managing security toolsets, providing guidance to … technical support for our products. Experience & Core Technical Skills: Proficiency in Python, JavaScript, or Java. Experience deploying Application Security Tooling (SCA/SAST/DAST/IaC Security) into DevOps environments. Deep understanding of application security across Web, API, and Mobile platforms. Knowledge of OWASP more »

An exciting opportunity to join a leading company and play an influential part in their continued dedication to Application Security. At Tesco, the application security team’s strategy is to provide security tooling that fits seamlessly into software engineering teams ways of working, helping them find … and deal with security problems early within the software development process before it reaches production. In this role you will be responsible for helping to identify appropriate toolsets that fit with the application security team’s strategy, provide comprehensive guidance that allow engineering teams to effectively self … security (Web, API, Mobile) An understanding of microservices and container orchestration Experience Solid grasp of Application Security Tooling (SCA/SAST/DAST/IaC Security) Knowledge of OWASP Top 10, Mitre Top 25 and CVSS frameworks, mapping to business risk Experience in implementing security more »

Who we are looking for An Information Security Specialist who will focus on the technical side of IT Security, specifically looking at application security and code analysis to ensure applications are built securely. The Information Security team deal with the security of closed-sourced … open-source and in-house written applications. The objective is to ensure that systems and services are built with privacy and security by design. You will be working closely with the Software Development team, to confirm that application based vulnerabilities are understood and mitigated. This is done from … a security assessment point of view rather than code QA, therefore code reading skills are desirable. The team comprises of a variety of individuals, ranging from graduates to time served engineers with backgrounds as sys-admin, networks, service operation as well as security. We use first-class, enterprise-level more »

Who we are looking for An Information Security Specialist who will focus on the technical side of IT Security, specifically looking at application security and code analysis, ensuring applications are built securely. The Information Security team deal with the security of closed-sourced, open … source and in-house written applications. The objective is to ensure that systems and services are built with privacy and security by design. You will be working closely with the Software Development team, to confirm that application based vulnerabilities are understood and mitigated. This is done from a … security assessment point of view rather than code QA, therefore code reading skills are desirable. The team comprises of a variety of individuals, ranging from graduates to time served engineers with backgrounds as sys-admin, networks, service operation as well as security. We use first class, enterprise level tools more »

Who we are looking for An Information Security Specialist who will focus on the technical side of IT Security, specifically looking at application security and code analysis, ensuring applications are built securely. The Information Security team deal with the security of closed-sourced, open … source and in-house written applications. The objective is to ensure that systems and services are built with privacy and security by design. You will be working closely with the Software Development team, to confirm that application based vulnerabilities are understood and mitigated. This is done from a … security assessment point of view rather than code QA, therefore code reading skills are desirable. The team comprises of a variety of individuals, ranging from graduates to time served engineers with backgrounds as sys-admin, networks, service operation as well as security. We use first class, enterprise level tools more »

Who we are looking for A Senior Information Security Specialist to focus on the technical side of IT Security, specifically looking at application security and code analysis to ensure applications are built securely. The Information Security team deal with the security of closed sourced … open source and in house written applications. The objective is to ensure that systems and services are built with privacy and security by design. You will work closely with the Software Development team to confirm that application based vulnerabilities are understood and mitigated. This is done from a … security assessment point of view rather than code QA, therefore code reading skills are desirable. The team comprises of graduates to time served engineers with backgrounds as sys-admin, networks, service operation as well as security. We use first-class, enterprise-level tools to identify threats to the systems more »

Who we are looking for An Information Security Specialist who will focus on the technical side of IT Security, specifically looking at application security and code analysis to ensure applications are built securely. The Information Security team deal with the security of closed-sourced … open-source and in-house written applications. The objective is to ensure that systems and services are built with privacy and security by design. You will be working closely with the Software Development team, to confirm that application based vulnerabilities are understood and mitigated. This is done from … a security assessment point of view rather than code QA, therefore code reading skills are desirable. The team comprises of a variety of individuals, ranging from graduates to time served engineers with backgrounds as sys-admin, networks, service operation as well as security. We use first-class, enterprise-level more »

Application Security and DevSecOps Engineer, AXA DCP London London – UK , Wroclaw – Poland, Paris – France, Milan – Italy, Barcelona or Madrid – Spain AXA’s Management Committee is driving a unique strategic initiative - Digital Commercial Platform (DCP) – designed to transform AXA’s value proposition. Through DCP, AXA will serve existing and … commercial lines book of business of AXA Group Create a platform for risk management and prevention services Build an ecosystem of business partners As Application security and DevSecOps engineer, your main mission will be to ensure the security and integrity of our applications and infrastructure. You will … such as ISO 27001, GDPR, OWASP, and common web application vulnerabilities. Experience with DevSecOps practices and tools (CI/CD, Infrastructure as code, SAST, DAST) and Agile development methodologies Experience with cloud platforms (e.g., AWS) , containerization technologies and security best practices (API Security, Container Security, and more »

you have Test Lead experience and you’re seeking a new role in London, we want to hear from you. Cognizant is recruiting a Security Test Lead for a Government and Public Sector client, and the role comes with an attractive salary and benefits package. As a Security … give you an idea of how this flexible role would look and feel, here are some of the things you could expect to do: Static application security testing using tools like Checkmarx, Veracode Dynamic application security testing using tools such as AppScan, WebInspect … this Security Test Lead role, your soft skills, expertise and experience should include: Extensive experience in security testing with expertise in SAST using tools like Fortify, App Scan Source, Checkmarx, VeraCode and DAST using AppScan, Burpesuite, Fortify WebInspect, etc. At Cognizant, taking care of employees is a more »

consistency of service Makes decisions which impact on the success of assigned projects i.e. results, deadlines and budge Act in accordance with Computacenter Information Security Policies and report any potential or actual Security events or other Security risks to the organisation What you’ll need Experience of … working in a team of DevOps or DevSecOps practitioners DevOps Tooling experience (Automation, Orchestration, CI/CD, Testing etc.) An understanding of Agile Delivery (Kanban/SCRUM/XP/Lean/SAFe) An understanding of DevOps Management … JIRA, Confluence) Awareness of CI/CD tooling such as Jenkins, GitLab or similar Experience of Hashicorp Terraform Experience of Hashicorp Vault Awareness of SAST Security Testing - GitLab, Checkmarx, Veracode Awareness of DAST Security Testing - GitLab, Veracode Awareness of SCA Security Testing - Checkmarx, GitLab more »

+ Bonus + Benefits Locke & McCloud are looking for an experienced DevSecOps Engineer to join our client who are actively building out their Security Engineering function. In this role you will be driving the capability and maturity of our clients DevSecOps function and will have the opportunity to lead … hands on experience specifically in the DevSecOps space and are looking to work on some super exciting projects, then please apply! Main responsibilities: Integrate security tools and processes into the DevOps pipeline to ensure secure code deployment and infrastructure management. Design and implement automated security testing, including … Strong knowledge of security principles, practices, and technologies, including encryption, authentication, and access control. Experience with security tools and technologies such as SAST, DAST, vulnerability scanners, SIEM, and WAF. Proficiency with CI/CD tools like Jenkins, GitLab, CircleCI, or similar, and infrastructure-as-code tools like Terraform more »

Technical Information Security Consultant required for market-leading financial services firm. The role will be centred on ensuring security is delivered into a wide range of projects. There will be a focus on working closely with DevOps teams and embedding security throughout a software development life cycle. … Responsibilities: Act as the main security point of contact & SME for required projects Manage security risk for the whole project life cycle Perform security activities, including but not limited to, security design reviews, risk assessments, threat modelling, and vulnerability management and risk mitigation on internally & externally … Web apps, Containers, Platforms etc Reviewing security assessment reports and create a remediation pipeline Experience in web application security assessments like SAST, DAST etc. Act as the Security subject matter expert within Agile/waterfall project planning, development, and execution Obtain and review all required artefacts more »

As an Azure SecOps Engineer, you will play a vital role in managing and deploying environments securely and optimally. Responsibilities include overseeing logging and Security Information and Event Management (SIEM) aspects of infrastructure, collaborating with application development teams to resolve issues, and enhancing security measures within the … CI/CD pipeline and hold advanced Terraform experience. Skills and Experience Required: Significant commercial experience in security operations management. Proficiency with Azure. Terraform AKS … Azure Kubernetes Service) Familiarity with CI/CD pipelines and integrating security tooling. Knowledge of Static Application Security Testing (SAST) and other techniques for enhancing code security. more »

A well-known software development company is looking to grow their London based cyber security team with talented Application Security Engineers. This will be 3 days per week in the office (central London). Hiring at multiple levels, you can expect a salary anywhere from … than 50% last year and use the most cutting edge technology available. If you're someone who is deeply technical and passionate about implementing security into the SDLC then I would love to speak with you. If you have expertise within software development/engineering and champion security … likely to be successful. You will be training developers on writing secure code, perform threat modelling and security testing of applications, run SAST, DAST, SCA and secret scanning tools, manage the bug bounty program and lead incident response for software bugs. Please apply if you're looking to more »

Security Operations Analyst Egress Software Technologies, a leading Cyber Security company, is dedicated to your wellbeing and career development. We offer unparalleled work-life balance and transparent career paths, celebrating your unique contributions. Passionate about Cyber Security? Join us to work in a stable yet exciting industry. … Financial Services, Legal, Healthcare, and Government sectors, from advanced threats, ensuring they can achieve their missions safely. At the forefront of the IT Cyber Security industry, Egress can provide an unrivalled career path in Security Operations. The Team The three Egress security teams report to the Chief … our regular social events after work. The Role Reporting to the Security Operations Manager, your key tasks may involve: Managing vulnerability scanning tools - SAST, SCA, IaC, Containers & DAST for all Egress products Investigate SIEM alerts, working with the Engineering and Operations teams to resolve issues Managing vetting applications, supplier more »

As the Lead Security Specialist at HL, you will join a team of security experts working with various modern technologies to ensure the security of HL's products. You will oversee security issues and requirements for all product teams, dealing with complex projects daily and serving … as the escalation point for the Product Security Specialist (PSS). You will lead threat modelling workshops and engage with key stakeholders to identify threats and recommend countermeasures. Additionally, you will lead a team of Product Security Specialists, providing leadership, technical guidance, and support in tailoring their development … preferrable. Knowledge of security principles, practices, and frameworks, such as OWASP, NIST, and ISO Awareness of security tools and technologies, such as SAST, DAST, IAST, SCA, WAF, IDS, IPS. Experience in conducting threat modelling and risk assessments. Interview process The interview process for this role is two stages more »

As a Product Security Specialist (PSS) at HL, you will join a team of security experts who work with various modern technologies to ensure the security of HL's products. You will be the main point of contact for security issues and requirements for each assigned … development life-cycle. You will also facilitate threat modeling workshops assisting product teams in identifying and mitigating threats. What you will be doing Oversee security related issues across multiple product teams/squads. Working within Product teams, you will be the single point of contact for security related … required. Knowledge of security principles, practices, and frameworks, such as OWASP, NIST, and ISO. Awareness of security tools and technologies, such as SAST, DAST, IAST, SCA, WAF, IDS, IPS. Experience in conducting threat modeling and risk assessments. Interview process The interview process for this role is two stages more »

We are looking for a highly skilled, highly experienced Senior DevSecOps engineer to join a growing function within the business, focussing on infrastructure, automation, security practices and providing tooling solutions to streamline the path-to-live for development teams. The ideal candidate will be passionate about best practices within … technology teams, fully supportive of what the group is doing and who wishes to make a difference. Responsibilities: Drive shift left security culture uptake by assisting with security training friendly phishing campaigns as well as conducting brown bag sessions with all staff. Assist with the implementation of security … be an autonomous, proactive, confident, credible, and persuasive team player. Collaborate and support developers, analysts, and data scientists to continually improve and innovate. Conduct SAST and DAST testing as well as penetration testing and threat simulations to identify potential risks. Have a practical understanding of firewall networking, ingress more »

Cyber Security Project Manager Full-time Permanent Tunbridge wells (hybrid/flexible) Up to £105,000 + 5% performance related bonus We have an exciting new opportunity for a Cyber Security Project Manager to Join Resource Solutions as a Workforce Consultant. As an Employed Workforce Consultant, you will … groups, serving 93 million clients, individuals and business, in 51 countries! Skills & experience requirements: Project Management skills, specifically expertise and evident experience in Cyber Security Excellent, clear spoken and written communication skills Excellent stakeholder engagement and management skills, up to MD level Strong experience of the basics of project … plans with product & platform teams Experience implementing OWASP DSOMM & SAMM maturity improvements with agile teams Experience working to implement security processes based around SAST, DAST and pen testing If you possess relevant experience and this sounds like the opportunity for you, please don't hesitate to apply! Our more »