201 to 225 of 667 Permanent OWASP Jobs

Platform (GCP) Security & Compliance Cloud and a pplication security: Cloud posture management tools (e.g. Azure Dender, GCP SCCE), WAFs (e.g. Azure WAF, Cloud Armor AWS WAF), and protection against OWASP Top 10 and emerging threats. Network & infrastructure security: Network security principles (e.g. segmentation, monitoring, intrusion detection/prevention). Any experience in Zero Trust architecture in cloud environments would be More ❯

Platform (GCP) Security & Compliance Cloud and a pplication security: Cloud posture management tools (e.g. Azure Dender, GCP SCCE), WAFs (e.g. Azure WAF, Cloud Armor AWS WAF), and protection against OWASP Top 10 and emerging threats. Network & infrastructure security: Network security principles (e.g. segmentation, monitoring, intrusion detection/prevention). Any experience in Zero Trust architecture in cloud environments would be More ❯

Git. Experience working within an Agile environment, in particular Scrum, and applying supporting practices. In addition, any experience in the following would be beneficial: Knowledge and experience working to OWASP ASVS or equivalent application security standards. Experience of recent .NET versions. Experience in developing containerized applications with Docker and using orchestration such as Kubernetes. Experience in NoSQL databases such as More ❯

applications in production environments. Common architectural patterns (e.g. layered, hexagonal, clean). Databases (Including concepts like indexes and transaction scopes). Performance and monitoring. Security practices (e.g. understanding of OWASP Top 10). Be comfortable safely refactoring legacy code. Be able to work alongside client-facing support and product owners to analyse business requirements. Be keen to learn new technologies More ❯

cases and performance bottlenecks proactively. Implement and promote 15-factor app principles for highly scalable APIs and integrations. Work closely with security teams to ensure APIs are compliant with OWASP and API security patterns. Guide development teams on proper API design patterns, governance, and documentation practices. Required Skills: Strong expertise in MuleSoft Anypoint Platform (Design Center, Runtime Manager, API Manager More ❯

performance analysis and tuning using memory and thread dump analysis. Work with databases including Oracle, PL/SQL, and MongoDB. Understand and implement secure coding practices in line with OWASP guidelines. Collaborate in a Kubernetes-based environment. Integrate with identity and access management platforms (e.g., ForgeRock). Handle Kafka-based data streaming and understand Kafka architecture. Utilize enterprise-level Elastic More ❯

Minimum 5 years of practical penetration testing experience (web, infrastructure, external/internal). Experience in scoping penetration testing assessments. Strong knowledge of security testing methodologies and frameworks (eg, OWASP, NIST). Proficiency with industry-standard tools (eg, Burp Suite, Nmap, Metasploit, Kali Linux). Excellent written and verbal communication skills. O ne of the following qualifications is essential: OSCP More ❯

junior team members and support collaborative delivery of projects. Occasionally support the creation of marketing materials such as research papers and articles. Skills/Must have: Strong knowledge of OWASP methodologies and offensive testing across black/grey/white-box approaches. Proficiency in tools like Burp Suite, Kali, Nmap, Nessus, Qualys, Metasploit. Familiarity with cloud platform security testing (AWS More ❯

junior team members and support collaborative delivery of projects. Occasionally support the creation of marketing materials such as research papers and articles. Skills/Must have: Strong knowledge of OWASP methodologies and offensive testing across black/grey/white-box approaches. Proficiency in tools like Burp Suite, Kali, Nmap, Nessus, Qualys, Metasploit. Familiarity with cloud platform security testing (AWS More ❯

new detection use cases. Hands-on experience with AWS security services, such as GuardDuty, Security Hub, CloudTrail, and IAM configurations. Familiarity with securing web applications, including common vulnerabilities (e.g. OWASP Top 10) and mitigation techniques. Proficiency in scripting languages like PowerShell and Python. Experience working within agile or continuous improvement environments. Desired Qualifications : Strong analytical skills, with the ability to More ❯

offers, and knowledge of its limitations. • Good understanding of the configuration of Power Pages • An understanding of security best practices around Power Pages, with knowledge of items such as OWASP • Hands on experience with Dataverse and Dataverse for Teams as part of implementing Power Platform solutions. • Hands on experience in the setup of Continuous Integration (CI) and Continuous Delivery (CD More ❯

systems (e.g., Git) and continuous integration/deployment (CI/CD) practices. · Solid understanding of web security practices, including JWT authentication, secure API design, rate limiting, and familiarity with OWASP vulnerabilities. · Ability to troubleshoot and find solutions without needing hand-holding. Salary & Benefits 🎁 No two days are the same at Arcube. In a high-performing and tight-knit team, the More ❯

Focus on ensuring different modules/components interact correctly. Test APIs, databases, and service flows. Security Testing & Penetration Testing (Ethical Hacking) Simulate attacks to find vulnerabilities. Tools: Burp Suite , OWASP ZAP , Metasploit . CEH , OSCP , CISSP certifications an advantage Vulnerability Testing Scan systems for known vulnerabilities. Collaborate with SecOps and DevSecOps teams. Security QA/Secure Code Testing Test software … from a secure coding perspective. Ensure compliance with secure development standards (OWASP Top 10, etc.). Test Management Oversee testing across multiple teams and or products. Handle stakeholder communication, budget, vendor selection, and process compliance. Test Architectecture Design testing frameworks, strategies, and toolchains. Advise on choosing tools (e.g., UFT vs Selenium) and scaling automation. API Testing Validate REST/SOAP More ❯

experience with Government Digital Standards (GDS) Demonstrable experience in Test Automation using Playwright with JavaScript Expertise in Browserstack for use in compatibility testing Previous experience in security testing with OWASP ZAP Performance testing knowledge (JMeter preferred) Experience in CI/CD Integration for Test Automation Azure DevOps proficiency for Test Management and defect tracking Working experience of BDD Framework (Cucumber More ❯

Month Contract London/Remote Working Working background as a Test Lead within the public sector Previous experience with Government Digital Standards (GDS) Previous experience in security testing with OWASP ZAP Performance testing knowledge (JMeter preferred) Experience in CI/CD Integration for Test Automation Azure DevOps proficiency for Test Management and defect tracking Working experience of BDD Framework (Cucumber More ❯

Month Contract London/Remote Working Working background as a Test Lead within the public sector Previous experience with Government Digital Standards (GDS) Previous experience in security testing with OWASP ZAP Performance testing knowledge (JMeter preferred) Experience in CI/CD Integration for Test Automation Azure DevOps proficiency for Test Management and defect tracking Working experience of BDD Framework (Cucumber More ❯

to review and contribute to GitHub PRs. Experience in a continuous flow environment and active participation in Agile practices. Bonus skills include: Designing scalable test frameworks. Security testing fundamentals (OWASP Top 10, Sonarcloud). Writing custom GitHub Actions. Chaos Engineering knowledge. What you can expect: Salary reviews, share options, office perks, wellness and learning budgets, conference attendance, volunteer days, generous More ❯

building secure software across multiple types of projects. Significant experience working in highly regulated environments, with previous involvement in cryptocurrency-related projects being a strong plus. Strong knowledge of OWASP standards, Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Software Composition Analysis (SCA) tools. Familiarity with integrating these tools into CI/CD pipelines is highly desirable. More ❯

the DevSecOps team. What you’ll need: At least 3 years of software engineering experience, with 2+ years focused on application security. In-depth knowledge of application security testing, OWASP, and secure web application development. Strong understanding of Agile and experience promoting security awareness across teams. Excellent communication, stakeholder management, and prioritization skills. Experience working with hacker/pen-testing More ❯

the DevSecOps team. What you’ll need: At least 3 years of software engineering experience, with 2+ years focused on application security. In-depth knowledge of application security testing, OWASP, and secure web application development. Strong understanding of Agile and experience promoting security awareness across teams. Excellent communication, stakeholder management, and prioritization skills. Experience working with hacker/pen-testing More ❯

you'll bring Experience: 5+ years of experience in application security, with a proven track record of identifying and remediating vulnerabilities Expertise: Strong understanding of secure coding practices, including OWASP Top 10 and SANS 25 Most Critical Software Errors Automated Testing: Experience with static and dynamic application security testing tools Penetration Testing: Proficiency in penetration testing methodologies, including black-box More ❯

teams to secure APIs, microservices, and containerized workloads. Evaluate and implement security tools for code analysis and runtime protection. Qualifications: Proven experience in application security architecture. Deep knowledge of OWASP Top 10, SANS CWE Top 25, and secure coding best practices. Familiarity with threat modeling methodologies such as STRIDE. Hands-on experience with tools like SAST, DAST, IAST, Snyk, SonarQube More ❯

to secure APIs, microservices, and containerized workloads. Evaluate and implement security tools for code analysis and runtime protection. Candidate Requirements: Proven experience in application security architecture. Deep knowledge of OWASP Top 10, SANS CWE Top 25, and secure coding best practices. Familiarity with threat modeling methodologies like STRIDE and architectural risk analysis. Hands-on experience with SAST/DAST/ More ❯

teams to secure APIs, microservices, and containerized workloads. Evaluate and implement security tools for code analysis and runtime protection. Qualifications: Proven experience in application security architecture. Deep knowledge of OWASP Top 10, SANS CWE Top 25, and secure coding practices. Familiarity with threat modeling methodologies such as STRIDE and risk analysis. Experience with tools like SAST/DAST/IAST More ❯

teams to secure APIs, microservices, and containerized workloads. Evaluate and implement security tools for code analysis and runtime protection. Requirements: Proven experience in application security architecture. Deep knowledge of OWASP Top 10, SANS CWE Top 25, and secure coding practices. Familiarity with threat modeling methodologies like STRIDE and architectural risk analysis. Hands-on experience with tools such as SAST/ More ❯