7 of 7 Permanent OWASP Jobs in the South West

Secure architecture design and secure-by-design principles Risk assessment, threat modelling, and vulnerability management Security frameworks: ISO 27001, NIST 800-30/53, OWASP Cloud security architecture (AWS, Azure, GCP) Incident response, penetration testing, and remediation concepts Persuasive communication skills across technical and non-technical stakeholders Excellent analytical, documentation ...

security and resilience of complex systems. What You’ll Bring Experience conducting web application security testing using tools such as Burp Suite or OWASP, ZAP Ability to analyse and validate automated security findings, distinguishing real risks from false positives Basic knowledge of networking concepts (TCP/IP, DNS, firewalls, ports ...

testing experience Strong understanding of web application and infrastructure testing methodologies Experience with tools such as Burp Suite, Nmap, Nessus, Metasploit, etc. Understanding of OWASP Top 10 and common attack vectors Strong report writing and communication skills Consultancy/client-facing experience beneficial Additional certifications such as CPSA or cloud ...

DDoS mitigation, web proxy, vulnerability management) Understanding of Information Security principles, frameworks and regulatory requirements (e.g. ISO27001, FCA, PRA, ICO) Working knowledge of OWASP Top 10 and build/integration tools (e.g. Maven, Jenkins, Chef, TFS) Effective communication skills, including the ability to explain technical concepts and impacts ...

technical documentation. Experience in supporting and developing environments and applications within Azure (e.g., WAMP/LAMP). Familiarity with cloud-based solutions adhering to OWASP developer best practices. Proficiency in languages/middleware such as Asp.Net, Python, PHP, Apache. Experience managing SQL databases (Azure DB, Managed SQL, MS SQL & MySQL ...

experience delivering web application, API, and/or infrastructure penetration tests in a professional consultancy setting. Strong understanding of common vulnerability classes (e.g. OWASP Top 10), exploitation techniques, and remediation guidance. Confident client-facing communication skills, with the ability to explain technical findings to both technical and non-technical audiences. ...

architecture and design discussions, and help integrate security into the SDLC.Key skills:Secure-by-design experience, code review (C/C++, Python or similar), OWASP Top 10, SDLC, Git, CI/CD, Linux/Windows.Experience with embedded or performance-sensitive systems is a plus. Modis International Ltd acts ...