14 of 14 Remote Permanent Static Application Security Testing Jobs

About the role The position will be based at our Tesco Technology offices in London. About the Security Partners team We are the trusted security advisors for Tesco Technology. Our purpose is to collaborate seamlessly with the product and engineering stakeholders, leveraging our deep expertise in cyber security … designing security/privacy controls to mitigate risks. Experience in application security, supply chain security, and using tools such as SAST, DAST, SCA, and IAC. • Experience in reviewing code to spot weaknesses and suggesting mitigations. Experience applying industry standards like OWASP ASVS (Application Security ...

About the role The position will be based at our Tesco Technology offices in London. About the Security Partners team We are the trusted security advisors for Tesco Technology. Our purpose is to collaborate seamlessly with the product and engineering stakeholders, leveraging our deep expertise in cyber security … designing security/privacy controls to mitigate risks. Experience in application security, supply chain security, and using tools such as SAST, DAST, SCA, and IAC. • Experience in reviewing code to spot weaknesses and suggesting mitigations. Experience applying industry standards like OWASP ASVS (Application Security ...

About the role An exciting opportunity to join a leading company and play an influential part in their continued dedication to Application Security. At Tesco, the application security team's strategy is to provide security tooling that fits seamlessly into software engineering teams ways of working … application security (Web, API, Mobile) • An understanding of microservices and container orchestration • Solid grasp of Application Security Tooling (SCA/SAST/DAST/IaC Security) • Knowledge of OWASP Top 10, Mitre Top 25 and CVSS frameworks, mapping to business risk • Experience in implementing security ...

About the role An exciting opportunity to join a leading company and play an influential part in their continued dedication to Application Security. At Tesco, the application security team's strategy is to provide security tooling that fits seamlessly into software engineering teams ways of working … application security (Web, API, Mobile) • An understanding of microservices and container orchestration • Solid grasp of Application Security Tooling (SCA/SAST/DAST/IaC Security) • Knowledge of OWASP Top 10, Mitre Top 25 and CVSS frameworks, mapping to business risk • Experience in implementing security ...

INFORMATION SECURITY SPECIALIST KEY POINTS * Hybrid working model (Stoke-on-Trent) - up to £55,000 p/a* Focus on application security, code analysis, threat modelling and penetration testing* Work closely with Software Development teams across a large technical environment* Opportunity to influence secure development practices … client in conjunction with this vacancy only. KEY SKILLS Application Security, AppSec, OWASP, Threat Modelling, Secure Development Lifecycle, Code Review, DAST, SAST, CI/CD, Penetration Testing, Supply Chain Security, Risk Assessment, Software Security, Automation ...

show how much they can achieve. Our success is truly a collective effort - we succeed when all our people succeed. Softcat's Information Security team is seeking an Application Security Engineer with a strong emphasis on cloud security & secure development practice. This role … clear guidelines and best practices for secure coding and assist developers in implementing them across multiple languages (Java, C#, .NET, Python) Ensuring technologies like SAST, DAST and SCA are utilised effectively Establish and communicate metrics to help us understand effectiveness and measure improvement Support teams in developing, implementing and maintaining ...

Cyber Security Consultant £30,000 - £45,000 per annum Melton Mowbray Role Summary Our client is a growing MSP based in Melton Mowbray, helping organisations of all sizes strengthen their security posture and achieve recognised certifications. They are looking for a skilled Cyber Security Consultant specialising … CCRT/CCT or CHECK Team Member . OSCP/OSWE/OSEP/GPEN/eCPPT/similar. Experience with secure code review, SAST/DAST pipelines, or DevSecOps. Familiarity with ISO 27001 or wider GRC frameworks. What Our Client Offers: Competitive salary and annual performance bonus. Training budget ...

unrivalled - though this isn't for the feint of heart, an established Business in growth phase and a true Unicorn. The Role: The Senior Security Engineer will provide hands-on technical leadership within the UK, ensuring that cyber security strategy and architecture defined by Group are implemented effectively … have an initial teams/zoom with those selected. Keywords: Security Engineer, Senior Security Engineer, Palo Alto, SOC, SOC 2, ISO27001, CIS, SAST, DAST, VPN, Vulnerability, Pen Testing, InfoSec, CyberSec ...

About the role As a Cloud Security Engineer within the Run and Operate chapter at Tesco Mobile, you'll play a key role in securing and optimising our cloud platforms—primarily AWS and Azure. You'll help design, manage, and deploy secure solutions across a variety of environments, maintaining … Proven track record of delivering cloud and SaaS security improvement projects. Familiarity with CI/CD pipelines and integrating security tooling (e.g., SAST). Experience with infrastructure validation, threat identification, and risk mitigation. Nice to have: GitHub and GitHub Actions experience. Hands-on experience with Azure cloud security ...

join our Risk Technology function. In this role, you will architect and implement advanced DevOps solutions across a complex technology landscape, driving automation, security, and scalability for mission-critical applications. This is an exceptional opportunity to influence DevOps strategy and play a key role in enabling innovation within … domain expertise in: Cloud application development (IaaS, Serverless, API Management) Container orchestration (Docker, Kubernetes) Storage, compute, and networking components. Experience configuring and supporting SAST and DAST tools in enterprise environments. Excellent oral and written communication skills, with the ability to: Clearly articulate technical concepts to non-technical stakeholders Collaborate ...

Agile Scrum and design meetings Governance of web application CI/CD pipelines Governance of web application software quality (e.g. unit tests, SAST, SCA) Design and development of web application security Technical mentorship of frontend engineers What you'll need: At least 6 years of experience … similar modern JS framework) Experience mentoring and leading engineering team Experience with test libraries, such as Jest Practical knowledge of modern web application deployment infrastructures Fluency in English, written and verbal Strong knowledge of SDLC Benefits: Competitive salary Company Pension & Life Assurance Schemes On-site parking Hybrid Working Subsidised ...

Agile Scrum and design meetings Governance of web application CI/CD pipelines Governance of web application software quality (e.g. unit tests, SAST, SCA) Design and development of web application security Technical mentorship of frontend engineers What you'll need: At least 6 years of experience … similar modern JS framework) Experience mentoring and leading engineering team Experience with test libraries, such as Jest Practical knowledge of modern web application deployment infrastructures Fluency in English, written and verbal Strong knowledge of SDLC Benefits: Competitive salary Company Pension & Life Assurance Schemes On-site parking Hybrid Working Subsidised ...

client is a fast-growing cyber-defence and threat-intelligence company committed to protecting organisations from sophisticated cyber threats. They combine advanced security analytics, automation and human expertise to deliver real-time defence across modern cloud and on-prem environments. They are expanding their engineering team and looking … across cloud and on-prem environments. +Build and manage Infrastructure-as-Code (Terraform, Ansible, CloudFormation, etc.). +Integrate security tooling into development workflows: SAST, DAST, dependency scanning, secrets management, etc. +Collaborate with engineering teams to perform threat modelling and ensure secure system design. Key Skills and Experience: +Strong experience ...

Requirements 1. Architecture Leadership & Platform Ownership Own the architecture, design, standards, patterns, and roadmap of the enterprise API Platform across Azure, AKS, APIM, networking, security, observability, and DevOps layers. Translate business, security, and domain requirements into scalable, secure, highly available platform architectures. Provide authoritative architectural guidance while remaining … pipeline definition for APIM deployments, testing, API versioning, and documentation automation. Establish CI/CD pipelines for Terraform, .NET API builds, image scanning, SAST/DAST, compliance enforcement. 8. Hands-On .NET Core API Integration & Code Reviews Review .NET Core API implementations to ensure correct API design , platform alignment ...