1 to 25 of 30 Permanent OWASP Jobs in the North of England

tools such as AWS CodeBuild, Jenkins, GitLab, Azure DevOps. Proficiency in scripting languages such as Python, PowerShell. Knowledge of security tools and frameworks (e.g., OWASP, SCA, SAST, DAST). Familiarity with one or more cloud platforms (AWS, Azure, GCP) and containerization technologies (Docker, Kubernetes). Excellent problem-solving skills and More ❯

Continuous Inspection (SonarQube); Virtualisation (VMWare, Amazon EC2); Networking Concepts, technologies and protocols (TCP/IP, HTTP, FTP, DNS); Monitoring (Sensu, Consul, DataDog); Penetration testing (OWASP ZAP) Recent significant hands-on experience with the following offerings within an AWS environment: ECS; RDS; S3; CloudWatch; EKS; ElastiCache Desirable Experience and knowledge of More ❯

CI/CD: TeamCity, Octopus, BitBucket Pipelines, GitHub Actions, Docker, Kubernetes. Software Architecture & Testing: Microservices, TDD, unit testing (xUnit, NUnit, Moq). Security Practices: OWASP, Wiz, Snyk for improving security posture. A Bit About Us When it comes to appliances and electricals, we've got the lot. Washing machines? Yep. More ❯

pipelines implemented in Docker, Linux & Gradle. Behaviour Driven Development (BDD), with Gherkin & SpecFlow. Atlassian Jira, Github, Bamboo, Confluence & JFrog Artifactory. Software security implementation (e.g. OWASP, PKI, X509 Certificates, TLS). Software development for regulated environments (e.g. IVD/Medical devices). In addition to salary, we work flexibly, and provide More ❯

DNS, NAC, NSPM, and architectures like SASE and Zero Trust. Application Security: Experience with SAST, DAST, RAST, IAST tools, integrating security into SDLC processes, OWASP, API security design, robust threat modelling, and containerization security. Data Security: Skilled in implementing information protection tools, key and secrets management, data loss prevention, and More ❯

DNS, NAC, NSPM, and architectures like SASE and Zero Trust. Application Security: Experience with SAST, DAST, RAST, IAST tools, integrating security into SDLC processes, OWASP, API security design, robust threat modelling, and containerization security. Data Security: Skilled in implementing information protection tools, key and secrets management, data loss prevention, and More ❯

and Agile methodologies Degree in computer science, software engineering, or related field preferred Experience with API testing tools like Postman or SoapUI Knowledge of OWASP vulnerabilities and security testing ISTQB certification Experience with source control tools like Git or Bitbucket Strong problem-solving, communication, and time management skills Minimum of More ❯

distributed and hybrid teams . Ability to effectively communicate complex technical concepts in non-technical terms to stakeholders. Familiarity with modern security frameworks like OWASP and SANS25 . Experience with Continuous Delivery and Automated Deployment using tools like Azure DevOps . More ❯

distributed and hybrid teams . Ability to effectively communicate complex technical concepts in non-technical terms to stakeholders. Familiarity with modern security frameworks like OWASP and SANS25 . Experience with Continuous Delivery and Automated Deployment using tools like Azure DevOps . More ❯

distributed and hybrid teams . Ability to effectively communicate complex technical concepts in non-technical terms to stakeholders. Familiarity with modern security frameworks like OWASP and SANS25 . Experience with Continuous Delivery and Automated Deployment using tools like Azure DevOps . More ❯

distributed and hybrid teams . Ability to effectively communicate complex technical concepts in non-technical terms to stakeholders. Familiarity with modern security frameworks like OWASP and SANS25 . Experience with Continuous Delivery and Automated Deployment using tools like Azure DevOps . More ❯

distributed and hybrid teams . Ability to effectively communicate complex technical concepts in non-technical terms to stakeholders. Familiarity with modern security frameworks like OWASP and SANS25 . Experience with Continuous Delivery and Automated Deployment using tools like Azure DevOps . More ❯

distributed and hybrid teams . Ability to effectively communicate complex technical concepts in non-technical terms to stakeholders. Familiarity with modern security frameworks like OWASP and SANS25 . Experience with Continuous Delivery and Automated Deployment using tools like Azure DevOps . More ❯

integration/deployment (CI/CD) practices. · Solid understanding of web security practices, including JWT authentication, secure API design, rate limiting, and familiarity with OWASP vulnerabilities. · Ability to troubleshoot and find solutions without needing hand-holding. Salary & Benefits 🎁 No two days are the same at Arcube. In a high-performing More ❯

or Gradle, code management tools like git. Using and implementing unit test frameworks like JUnit, assertion libraries, data serialization tools, security best practices like OWASP Top 10, and standards such as WCAG to design automated accessibility tests. Extensively using CI/CD tools for pipeline automation and a solid understanding More ❯

Experience in a cyber-security role Working knowledge of technical and cyber security standards Working knowledge of industry best practices (such as NIST Framework, OWASP top ten, SANS and NCSC Guidance) Technical knowledge of information systems, infrastructure, and networks Security monitoring and testing technologies such as vulnerability scanning, penetration testing More ❯

and static application security testing tools. Excellent understanding and experience with manual security testing to find vulnerabilities and logical issues. Knowledge and understanding of OWASP and its utilisation within threat modelling. Experience of software development and languages. Working knowledge of CI and CD pipelines and associated security tooling. Use of More ❯

simultaneously. Any experience of these would be really useful Awareness of industry related security standards such as ISO 27000 series, PCI DSS, COBIT, NIST, OWASP Certifications in Security Management such as CISSP/CISM/CCSP or equivalent Certifications in technical Security domains such as CEH/OSCP or equivalent More ❯

simultaneously. Any experience of these would be really useful Awareness of industry related security standards such as ISO 27000 series, PCI DSS, COBIT, NIST, OWASP Certifications in Security Management such as CISSP/CISM/CCSP or equivalent Certifications in technical Security domains such as CEH/OSCP or equivalent More ❯

simultaneously. Any experience of these would be really useful Awareness of industry related security standards such as ISO 27000 series, PCI DSS, COBIT, NIST, OWASP Certifications in Security Management such as CISSP/CISM/CCSP or equivalent Certifications in technical Security domains such as CEH/OSCP or equivalent More ❯

additional benefit) Excellent understanding of government and industry standard security policy, standards and best practice guidance Experience with security frameworks and standards (e.g., NIST, OWASP) Experience of working in an IT function and relevant field Benefits: You'll receive benefits including a competitive pension scheme, enhanced annual leave allowance and More ❯

Competitive salary available upon request Hybrid working from a Manchester office (must be based in the UK without visa/sponsorship requirements) Permanent We are awaze, the largest managed vacation rentals and holiday resorts business in Europe, which brings together More ❯

and digital experience owners to improve DevOps best practices and workflows within an Agile framework. Implementing security measures, compliance policies, and vulnerability assessments following OWASP guidelines and applicable UK regulations such as UK-GDPR, UK Payment Services Regulations and PCI-DSS. Supporting disaster recovery planning and backup strategies. Keeping up … Knowledge of scripting and automation languages such as Powershell, Bash. Familiarity with networking and security best practices. Knowledge of application secure coding principles (e.g., OWASP) for protection against vulnerabilities and the ability to implement secure coding and deployment best practices. Experience in Agile software development methodologies and how DevOps practices More ❯

ll analyse new feature code to identify security risks and work with engineers to mitigate them, working and applying modern security standards such as OWASP CI/CD, DSOMM, SAMM and Cloud Security Posture management systems such as Azure Defender and Prisma Cloud. What you'll be doing: · Analysing new … complicated Salesforce environments · Exposure to Cloud Native software development, including cloud infrastructure and API design (Azure preferred) · Proven experience applying modern standards such as OWASP CI/CD, DSOMM, SAMM etc · Strong networking protocol knowledge (TCP/IP, UDP, HTTP/3, AMQP, streaming protocols etc), cloud network design (VPNs More ❯

to work remotely with some occasional trips to the London site. This role will be operating INSIDE IR35 Key Skills Required: Deep knowledge of OWASP API Top 10 Able to review Swagger/Open API specs for vulnerabilities Advise on secure API design patterns Familiar with fallback controls such as … WAF's, API gateways Experience using SIEM/logging tools to track API threats Familiarity with NIST, OWASP SAMM, or internal security frameworks Experience producing risk dashboards/reports for API's Able to translate technical risks into business language, collaborating with key stakeholders If interested in this role, please More ❯