1 to 25 of 59 Permanent OWASP Jobs

segmentation, and host security. Hands on experience with the following security products Trellix, Ivanti, ClearSwift, Yubikey Understanding of secure coding practices and common vulnerabilities (OWASP Top 10, SANS Top 25). Expertise in identity and access management (IAM), including RBAC, ABAC, JWT and Cookie based authentication. Incident detection and response ...

Docker and/or Kubernetes Development Practices - Mandatory RESTful API design, development, and life cycle management Secure development - SAST/DAST tooling, code review, OWASP awareness Technical documentation to a high standard On-site in Taunton, Somerset - 2 days per week minimum Desirable Skills & Experience Legacy Windows technologies - Win32 ...

/CD pipelines and DevSecOps principles Familiarity with software engineering best practices and SDLC processes Security Expertise Secure coding practices and vulnerability remediation OWASP Top 10 and common application security risks Static and dynamic application security testing concepts Secrets management and dependency security Threat modelling and risk analysis Soft Skills ...

practical knowledge of offensive security across web applications, APIs, networks, and cloud environments Solid understanding of system internals, networking, and common vulnerability classes including OWASP Top 10, authentication and authorisation flaws, logic issues, and race conditions Familiarity with Windows and Linux environments from an attacker's perspective Proficiency with standard ...

experience with CI/CD security integration (GitLab CI or similar) Familiarity with SAST/DAST tooling and dependency scanning Understanding of common vulnerabilities (OWASP Top 10) and remediation Previous experience working as a back end or full stack developer Knowledge of GDPR and data protection legislation Strong communicator; able ...

conducting threat modelling (e.g. STRIDE, attack trees) and risk analysis Strong understanding of security frameworks and best practice such as ISO 27001, NIST, CIS, OWASP, NCSC guidance Experience working in the UK Public Sector and associated security standards and guidance including GovAssure/NCSC CAF, HMG Security Policy Framework. Knowledge ...

automated testing using tools such as NUnit, Jasmine and Selenium Good knowledge of SOLID principles Desirable Skills: Containers (docker, K8s) Security best practice (OWASP top ten) OpenIDConnect/Identity server MS SQL Server Azure DevOps, TeamCity Infrastructure as Code (Bicep, ARM templates, Terraform) Please apply now or contact ...

automated testing using tools such as NUnit, Jasmine and Selenium Good knowledge of SOLID principles Desirable Skills: Containers (docker, K8s) Security best practice (OWASP top ten) OpenIDConnect/Identity server MS SQL Server Azure DevOps, TeamCity Infrastructure as Code (Bicep, ARM templates, Terraform) Please apply now or contact (url removed ...

testing experience Strong understanding of web application and infrastructure testing methodologies Experience with tools such as Burp Suite, Nmap, Nessus, Metasploit, etc. Understanding of OWASP Top 10 and common attack vectors Strong report writing and communication skills Consultancy/client-facing experience beneficial Additional certifications such as CPSA or cloud ...

Strong grasp of integration patterns with Legacy systems (Mainframe, ESB, message-based, batch) and incremental modernisation strategies Solid understanding of secure-by-design principles, OWASP risks, and engineering for high-assurance environments Experience with infrastructure-as-code (Terraform, CloudFormation, CDK) and modern CI/CD practices Strong experience working ...

strong differentiator but not essential: Security exposure in any of the following areas will set you apart: threat modelling, Zero Trust architecture, IAM, OWASP, secure-by-design, or API security. The details: Salary: £90,000 Location: Belfast Working pattern: Hybrid, no set minimum in-office days but a preference ...

Experience with cloud platforms (AWS, Azure, or GCP) Strong knowledge of testing tools such as: Selenium, Cypress, Playwright Cucumber/Gherkin JMeter/BlazeMeter OWASP ZAP, SonarQube, BrowserStack Experience delivering: Performance & scalability testing Security & penetration testing Accessibility testing UAT/OAT Experience of working in a consultancy professional services environment ...

Experience with cloud platforms (AWS, Azure, or GCP) Strong knowledge of testing tools such as: Selenium, Cypress, Playwright Cucumber/Gherkin JMeter/BlazeMeter OWASP ZAP, SonarQube, BrowserStack Experience delivering: Performance & scalability testing Security & penetration testing Accessibility testing UAT/OAT Experience of working in a consultancy professional services environment ...

cloud native applications in Azure, GCP, or AWS Advanced knowledge of HTTP, SSL/TLS encryption, DNS, switching and routing, and Application Security, mitigating OWASP top 10 security threats Proven experience with Imperva delivery and security services. Strong understanding of CDN architecture and web performance optimization. Expertise in Imperva ...

through code review, application testing, and infrastructure assessments. High proficiency deploying and configuring applications in large-scale enterprise environments. Working knowledge of: • NIST frameworks • OWASP Top 10 • Enterprise grade security design patterns DTS offers excellent compensation package. Contact: Ajay Bharbutta Team Lead Digital Technology Solutions ...

across diverse teams and projects. Experience in managing and mentoring technical security professionals. Desirable Familiarity with secure development practices and application security frameworks (e.g. OWASP). Experience with using Akamai. Knowledge of Zero Trust architecture principles. Certifications such as CISSP, CCSP, or SABSA. Additional Responsibilities Drive security architecture reviews ...

Google Cloud Platform (GCP) Cloud Security and Zero Trust architectures Enterprise and Security Architecture frameworks ISO 27001, NIST 800-53, CIS Controls, and OWASP Identity & Access Management (IAM) and Privileged Access Management (PAM) Security Monitoring, SIEM, Threat Detection, and Response Risk Management and Governance frameworks SaaS platforms including Salesforce ...

Experience with mobile analytics, crash reporting, and APM tools (e.g. Firebase, Dynatrace, App Center) • Understanding of secure coding practices and mobile security frameworks (e.g. OWASP Mobile) • Experience with mobile device management (MDM) or enterprise distribution • Familiarity with cross-platform considerations, even if primarily native-focused Scope & Accountability • Responsible for hands ...

fintech knowledge (reconciliation, idempotency, auditability, ledger concepts). Experience with distributed systems patterns (queues, background jobs, retries, rate limiting). Security experience (threat modelling, OWASP-style concerns, secure API design). Familiarity with Terraform. Our stack Backend: Python, Flask Data: Postgres Cloud: AWS Edge: Cloudflare Infrastructure as Code: Terraform Delivery ...

fintech knowledge (reconciliation, idempotency, auditability, ledger concepts). Experience with distributed systems patterns (queues, background jobs, retries, rate limiting). Security experience (threat modelling, OWASP-style concerns, secure API design). Familiarity with Terraform. Our stack Backend: Python, Flask Data: Postgres Cloud: AWS Edge: Cloudflare Infrastructure as Code: Terraform Delivery ...

fintech knowledge (reconciliation, idempotency, auditability, ledger concepts). Experience with distributed systems patterns (queues, background jobs, retries, rate limiting). Security experience (threat modelling, OWASP-style concerns, secure API design). Familiarity with Terraform. Our stack Backend: Python, Flask Data: Postgres Cloud: AWS Edge: Cloudflare Infrastructure as Code: Terraform Delivery ...

fintech knowledge (reconciliation, idempotency, auditability, ledger concepts). Experience with distributed systems patterns (queues, background jobs, retries, rate limiting). Security experience (threat modelling, OWASP-style concerns, secure API design). Familiarity with Terraform. Our stack Backend: Python, Flask Data: Postgres Cloud: AWS Edge: Cloudflare Infrastructure as Code: Terraform Delivery ...

fintech knowledge (reconciliation, idempotency, auditability, ledger concepts). Experience with distributed systems patterns (queues, background jobs, retries, rate limiting). Security experience (threat modelling, OWASP-style concerns, secure API design). Familiarity with Terraform. Our stack Backend: Python, Flask Data: Postgres Cloud: AWS Edge: Cloudflare Infrastructure as Code: Terraform Delivery ...

fintech knowledge (reconciliation, idempotency, auditability, ledger concepts). Experience with distributed systems patterns (queues, background jobs, retries, rate limiting). Security experience (threat modelling, OWASP-style concerns, secure API design). Familiarity with Terraform. Our stack Backend: Python, Flask Data: Postgres Cloud: AWS Edge: Cloudflare Infrastructure as Code: Terraform Delivery ...

fintech knowledge (reconciliation, idempotency, auditability, ledger concepts). Experience with distributed systems patterns (queues, background jobs, retries, rate limiting). Security experience (threat modelling, OWASP-style concerns, secure API design). Familiarity with Terraform. Our stack Backend: Python, Flask Data: Postgres Cloud: AWS Edge: Cloudflare Infrastructure as Code: Terraform Delivery ...