12 of 12 Permanent OWASP Jobs in Scotland

systems and TCP/IP networking protocols Proven ability to perform source code reviews and application security analysis Advanced understanding of web application vulnerabilities (OWASP Top 10) and mitigation strategies Excellent report writing and executive communication skills—ability to translate technical findings into business risk Ability to work autonomously ...

/cloud) Broad engineering skills: C#, Linux toolchains, Bash, PowerShell Hands-on experience with IaC tools such as Terraform, Bicep, or CloudFormation Familiarity with OWASP, CVE, and general infrastructure and software security frameworks Experience working in hybrid environments including physical infrastructure, virtualisation and data centres Ability to implement and communicate ...

/cloud) Broad engineering skills: C#, Linux toolchains, Bash, PowerShell Hands-on experience with IaC tools such as Terraform, Bicep, or CloudFormation Familiarity with OWASP, CVE, and general infrastructure and software security frameworks Experience working in hybrid environments including physical infrastructure, virtualisation and data centres Ability to implement and communicate ...

Experience using tools like k6 or JMeter to test API limits (highly valuable as we onboard larger clients). Security Awareness: Basic knowledge of OWASP Top 10. You know how to spot a basic security flaw (like IDOR or XSS) during testing. Database Literacy: Ability to write basic SQL queries ...

Experience using tools like k6 or JMeter to test API limits (highly valuable as we onboard larger clients). Security Awareness: Basic knowledge of OWASP Top 10. You know how to spot a basic security flaw (like IDOR or XSS) during testing. Database Literacy: Ability to write basic SQL queries ...

Experience using tools like k6 or JMeter to test API limits (highly valuable as we onboard larger clients). Security Awareness: Basic knowledge of OWASP Top 10. You know how to spot a basic security flaw (like IDOR or XSS) during testing. Database Literacy: Ability to write basic SQL queries ...

programming languages, including How to test for/exploit them Real world mitigations that can be applied Familiarity with vulnerability classification frameworks (e.g. OWASP Top 10) What We'll Give You A team of very skilled and diverse personnel across the globe Ability to work in a flexible work from ...

programming languages, including How to test for/exploit them Real world mitigations that can be applied Familiarity with vulnerability classification frameworks (e.g. OWASP Top 10) What We'll Give You A team of very skilled and diverse personnel across the globe Ability to work in a flexible work from ...

CHECK-approved penetration tests across infrastructure, web applications, APIs, and cloud environments. Perform manual, high-depth testing and advanced exploitation aligned with industry standards (OWASP, NCSC, CREST). Support adversarial validation engagements, collaborating with internal and client security teams. Produce clear, actionable reports and present findings to technical and executive ...

CHECK-approved penetration tests across infrastructure, web applications, APIs, and cloud environments. Perform manual, high-depth testing and advanced exploitation aligned with industry standards (OWASP, NCSC, CREST). Support adversarial validation engagements, collaborating with internal and client security teams. Produce clear, actionable reports and present findings to technical and executive ...

/C++ programming skills SECURITY Understanding of encryption algorithms, key management, and secure protocols (TLS, SSH, etc.) Strong understanding of common vulnerabilities (e.g., OWASP Top 10, CWE/SANS Top 25) Familiarity with Linux, Windows, RTOS and network protocols (TCP/IP, DNS, Understanding of industrial protocols (e.g., Serial, Modbus … HART) Experience implementing DevSecOps best practices ; Azure DevOps experience is a plus Knowledge of industry standards : IEC 62443, ISO 27001, NIST, OWASP Self-directed and motivated in a team-oriented environment CANDIDATES MUST POSSESS HANDS-ON EXPERIENCE WITHIN THE SECURITY ASPECT of the role in accordance with CRA requirements. ...

/C++ programming skills SECURITY Understanding of encryption algorithms, key management, and secure protocols (TLS, SSH, etc.) Strong understanding of common vulnerabilities (e.g., OWASP Top 10, CWE/SANS Top 25) Familiarity with Linux, Windows, RTOS and network protocols (TCP/IP, DNS, HTTP/S) Understanding of industrial protocols … e.g., Serial, Modbus, HART) Experience implementing DevSecOps best practices ; Azure DevOps experience is a plus Knowledge of industry standards : IEC 62443, ISO 27001, NIST, OWASP Self-directed and motivated in a team-oriented environment CANDIDATES MUST POSSESS HANDS-ON EXPERIENCE WITHIN THE SECURITY ASPECT of the role in accordance with ...