13 of 13 Permanent OWASP Jobs in Leeds

control). Knowledge of SQL and experience verifying backend data consistency. Familiarity with containerized environments (Docker, Kubernetes). Familiarity with tools like Burp Suite, OWASP ZAP, or static analysis tools is a plus. What We Offer Competitive salary and benefits package. Opportunities for learning, growth, and contributing to a product More ❯

Experience with cloud technologies such as Microsoft Azure or AWS. Hands-on experience with browser automation tools and writing Cucumber/Gherkin. Familiarity with OWASP Testing Tools and CI/CD pipelines. Knowledge of ISTQB/ISEB qualifications, JIRA, and Microsoft Azure DevOps. Experience in performance testing (K6 experience is More ❯

training, and guidance on security practices and their relevance. Partner with product and engineering teams, embedding secure software development practices (DevSecOps, secure coding standards, OWASP top 10) into everyday processes. Oversee the security posture of cloud environments, ensuring secure configurations, proactive threat monitoring, and resilience planning. Establish and maintain a More ❯

distributed and hybrid teams . Ability to effectively communicate complex technical concepts in non-technical terms to stakeholders. Familiarity with modern security frameworks like OWASP and SANS25 . Experience with Continuous Delivery and Automated Deployment using tools like Azure DevOps . More ❯

vulnerabilities. Requirements: 5+ years of hands-on experience in application security and secure software development. Strong knowledge of secure coding practices and common vulnerabilities (OWASP) Experience with SAST, DAST, and IAST tools and integrating them into CI/CD pipelines. Proficiency in writing and reviewing code (JavaScript, Java, Python) with More ❯

experience. Eligibility for or possession of UK Security Clearance (preferred but not required). Solid understanding of common attack techniques and vulnerability classes (e.g., OWASP Top 10, MITRE ATT&CK). Strong familiarity with tools such as Burp Suite, Nmap, Metasploit, etc. Excellent communication and reporting skills. Required Qualifications: Demonstrable More ❯

simultaneously. Any experience of these would be really useful Awareness of industry related security standards such as ISO 27000 series, PCI DSS, COBIT, NIST, OWASP Certifications in Security Management such as CISSP/CISM/CCSP or equivalent Certifications in technical Security domains such as CEH/OSCP or equivalent More ❯

simultaneously. Any experience of these would be really useful Awareness of industry related security standards such as ISO 27000 series, PCI DSS, COBIT, NIST, OWASP Certifications in Security Management such as CISSP/CISM/CCSP or equivalent Certifications in technical Security domains such as CEH/OSCP or equivalent More ❯

at rest/in transit, and other application security standards. Ensure software and infrastructure meet organizational security and compliance requirements (e.g., GDPR, ISO 27001, OWASP Top 10). Team Management & Culture Build and scale high-performance engineering teams, including backend, frontend, full-stack, data, and security engineers. Define and track … APIs, ETL, Azure Data Factory DevOps/Infra : CI/CD pipelines (e.g., GitHub Actions, Azure DevOps), containerization, Azure PaaS Security : Secure development lifecycle, OWASP, authentication/authorization protocols Leadership Attributes Technically credible leader with the ability to deep-dive on architecture and code when necessary. Strong decision-making skills More ❯

/components interact correctly. Test APIs, databases, and service flows. Security Testing & Penetration Testing (Ethical Hacking) Simulate attacks to find vulnerabilities. Tools: Burp Suite , OWASP ZAP , Metasploit . CEH , OSCP , CISSP certifications an advantage Vulnerability Testing Scan systems for known vulnerabilities. Collaborate with SecOps and DevSecOps teams. Security QA/… Secure Code Testing Test software from a secure coding perspective. Ensure compliance with secure development standards (OWASP Top 10, etc.). Test Management Oversee testing across multiple teams and or products. Handle stakeholder communication, budget, vendor selection, and process compliance. Test Architectecture Design testing frameworks, strategies, and toolchains. Advise on More ❯

vulnerabilities and non-trivial security issues. Support technical teams in resolving vulnerabilities and strengthening security measures. Develop and maintain security testing methodologies aligned with OWASP, NIST, and CIS Controls . Integrate security testing into the CI/CD pipeline to detect and fix vulnerabilities early. Ensure compliance with industry security … continuous improvements. What You Bring to TLScontact Demonstrable experience in penetration testing and security testing . Hands-on expertise with security tools (Burp Suite, OWASP ZAP) and scripting languages (Python, Bash, PowerShell, Metasploit, Checkmarx). Experience with CI/CD tools (GitLab, Jenkins, GitHub Actions). Deep understanding of secure More ❯

to work remotely with some occasional trips to the London site. This role will be operating INSIDE IR35 Key Skills Required: Deep knowledge of OWASP API Top 10 Able to review Swagger/Open API specs for vulnerabilities Advise on secure API design patterns Familiar with fallback controls such as … WAF's, API gateways Experience using SIEM/logging tools to track API threats Familiarity with NIST, OWASP SAMM, or internal security frameworks Experience producing risk dashboards/reports for API's Able to translate technical risks into business language, collaborating with key stakeholders If interested in this role, please More ❯

role will be circa £650 per day, inside IR35 Key Skills Required: Strong Security and Development background, in SDLC-focused roles Deep knowledge of OWASP API Top 10 Able to review Swagger/Open API specs for vulnerabilities Advise on secure API design patterns Familiar with fallback controls such as … WAF's, API gateways Experience using SIEM/logging tools to track API threats Familiarity with NIST, OWASP SAMM, or internal security frameworks Experience producing risk dashboards/reports for API's Able to translate technical risks into business language, collaborating with key stakeholders Experience in large-scale, enterprise environments More ❯