451 to 475 of 529 Permanent OWASP Jobs

. Key Responsibilities Perform static code analysis and security audit of a web application. Identify potential vulnerabilities in logic, data handling, authentication, and access control. Assess the application against OWASP Top 10 and other secure coding standards. Review third-party dependencies for known issues. Produce a professional security report with risk ratings, findings, and recommendations. Required Skills & Experience 4+ years … in Application Security , AppSec consulting , or Secure Code Review roles. Familiarity with tools like Snyk , Checkmarx , Veracode , or Burp Suite (passive scanning) . Knowledge of OWASP , CWE , and general secure software development principles. Strong technical writing and communication skills. Preferred certifications: OSCP , CSSLP , GWAPT , CEH , or equivalent. Executive summary for non-technical stakeholders. Technical breakdown of findings with severity and More ❯

. Key Responsibilities Perform static code analysis and security audit of a web application. Identify potential vulnerabilities in logic, data handling, authentication, and access control. Assess the application against OWASP Top 10 and other secure coding standards. Review third-party dependencies for known issues. Produce a professional security report with risk ratings, findings, and recommendations. Required Skills & Experience 4+ years … in Application Security , AppSec consulting , or Secure Code Review roles. Familiarity with tools like Snyk , Checkmarx , Veracode , or Burp Suite (passive scanning) . Knowledge of OWASP , CWE , and general secure software development principles. Strong technical writing and communication skills. Preferred certifications: OSCP , CSSLP , GWAPT , CEH , or equivalent. Executive summary for non-technical stakeholders. Technical breakdown of findings with severity and More ❯

. Key Responsibilities Perform static code analysis and security audit of a web application. Identify potential vulnerabilities in logic, data handling, authentication, and access control. Assess the application against OWASP Top 10 and other secure coding standards. Review third-party dependencies for known issues. Produce a professional security report with risk ratings, findings, and recommendations. Required Skills & Experience 4+ years … in Application Security , AppSec consulting , or Secure Code Review roles. Familiarity with tools like Snyk , Checkmarx , Veracode , or Burp Suite (passive scanning) . Knowledge of OWASP , CWE , and general secure software development principles. Strong technical writing and communication skills. Preferred certifications: OSCP , CSSLP , GWAPT , CEH , or equivalent. Executive summary for non-technical stakeholders. Technical breakdown of findings with severity and More ❯

. Key Responsibilities Perform static code analysis and security audit of a web application. Identify potential vulnerabilities in logic, data handling, authentication, and access control. Assess the application against OWASP Top 10 and other secure coding standards. Review third-party dependencies for known issues. Produce a professional security report with risk ratings, findings, and recommendations. Required Skills & Experience 4+ years … in Application Security , AppSec consulting , or Secure Code Review roles. Familiarity with tools like Snyk , Checkmarx , Veracode , or Burp Suite (passive scanning) . Knowledge of OWASP , CWE , and general secure software development principles. Strong technical writing and communication skills. Preferred certifications: OSCP , CSSLP , GWAPT , CEH , or equivalent. Executive summary for non-technical stakeholders. Technical breakdown of findings with severity and More ❯

. Key Responsibilities Perform static code analysis and security audit of a web application. Identify potential vulnerabilities in logic, data handling, authentication, and access control. Assess the application against OWASP Top 10 and other secure coding standards. Review third-party dependencies for known issues. Produce a professional security report with risk ratings, findings, and recommendations. Required Skills & Experience 4+ years … in Application Security , AppSec consulting , or Secure Code Review roles. Familiarity with tools like Snyk , Checkmarx , Veracode , or Burp Suite (passive scanning) . Knowledge of OWASP , CWE , and general secure software development principles. Strong technical writing and communication skills. Preferred certifications: OSCP , CSSLP , GWAPT , CEH , or equivalent. Executive summary for non-technical stakeholders. Technical breakdown of findings with severity and More ❯

risk and impact of discovered vulnerabilities. Requirements: 5+ years of hands-on experience in application security and secure software development. Strong knowledge of secure coding practices and common vulnerabilities (OWASP) Experience with SAST, DAST, and IAST tools and integrating them into CI/CD pipelines. Ability to work closely with engineers to drive adoption of security best practices across teams. More ❯

Basic Knowledge on security models such as ITIL, ISO27002, PCI DSS and Cobit 5  Experience on Security tools & Technologies  Integration of testing mechanisms with industry best practices such as OWASP & NIST  Good Understanding of IT security policy, procedure, design, and implementation. Behavioral Skills –  Ability to handle multiple strategic & critical projects/deliveries simultaneously  Effective interpersonal, Coaching, team building and communication More ❯

Hashicorp Vault, Defect Dojo and more. What You Bring: Hands-on experience with API Security, CI/CD pipelines (GitHub), container & cloud security . Familiarity with security frameworks like OWASP SAMM . The drive to make DevSecOps part of the culture, not just the process. Why Join? ️ Freedom to work as a Project Consultant or Freelancer - your choice! ️ Collaborate with More ❯

ll come with hands-on experience with AWS and Cloudflare and be comfortable working with Infrastructure as Code tools like Terraform. A strong understanding of common vulnerabilities and the OWASP Top 10 is essential, as is the ability to write and review code in Python, Scala or Go. Working on mobile-first platforms will also be a big plus. This More ❯

Information Security Engineer Buckinghamshire – 1 or 2 days a week in the office Up to £70,000 salary plus a discretionary bonus of up to 15% After a transformative 3-year change initiative, they have outlined a strategic 5-year More ❯

implementing ISMS in line with ISO 27001. Performing both qualitative and quantitative risk assessments. Security governance and process optimization. Security frameworks and methodologies (e.g., ISO 27000 series, COBIT, NIST, OWASP, CIS Controls). Strong knowledge of relevant legislation (e.g., NIS2). Familiarity with ITIL practices. Certifications such as CISM, CISSP, or CEH (depending on your area of expertise). Language More ❯

of gelijkwaardig door ervaring.Minimaal 5 jaar ervaring in een security engineering of software security rol.Bij voorkeur houder van certificaten zoals GIAC, CISSP of CISM.Grondige kennis van secure development lifecycle, OWASP, CVSS, cryptografie, enz.Ervaring met threat modeling en het analyseren van kwetsbaarheden (bv. via SBOM).Je hebt (preferabel) kennis van Python, C++ en JavaScript (Rust is een pluspunt).Sterke communicatievaardigheden in More ❯

frameworks and methodologies such as ISO/IEC 27001/2, ISO27005/31000, NIST 800-30, NIST 800-53. Strong understanding of security standards and frameworks including OWASP, Secure by Design principles, and MOD-specific guidelines (e.g., JSP, Def Stan 05-138/139). Familiarity with HMG security principles and assurance frameworks is advantageous. Comfortable using threat More ❯

multiple teams. Experience with technical concepts of cloud security, data ecosystem and the Incident Response process lifecycle. Understand industry wide security terms and models: NIST, ISO/IEC 27001, OWASP, MITRE ATT&CK for Cloud Enterprise. Proven ability to build relationships and propel momentum with clients and stakeholders. About Databricks Databricks is the data and AI company. More than More ❯

security protocols Highest level of technical expertise in cybersecurity, including deep familiarity with relevant penetration and intrusion techniques and attack vectors Familiarity with the Open Web Application Security Project (OWASP) top 10 vulnerabilities Rate & Duration: £550 - £600 per day 6 Months Penetration Tester - £550 - £600 Per Day – London (Hybrid) – 6 Months - Financial Services More ❯

security protocols Highest level of technical expertise in cybersecurity, including deep familiarity with relevant penetration and intrusion techniques and attack vectors Familiarity with the Open Web Application Security Project (OWASP) top 10 vulnerabilities Rate & Duration: £550 - £600 per day 6 Months Penetration Tester - £550 - £600 Per Day – London (Hybrid) – 6 Months - Financial Services More ❯

Basic Knowledge on security models such as ITIL, ISO27002, PCI DSS and Cobit 5 § Experience on Security tools & Technologies § Integration of testing mechanisms with industry best practices such as OWASP & NIST § Good Understanding of IT security policy, procedure, design, and implementation. Behavioral Skills – · Ability to handle multiple strategic & critical projects/deliveries simultaneously · Effective interpersonal, Coaching, team building and communication More ❯

mobile application security assessments Conduct API, cloud and infrastructure pen tests Provide post-test support Assist with the development of junior team members 3-5 Years Previous Testing Experience OWASP Web Applications Testing Methodology OSI Model Annual Training and Development Plans Regular Performance Reviews Industry Events and Conferences Apply Now! If you are an experienced Penetration Tester and you are More ❯

to set up a React and React Native build pipeline identify and address performance bottlenecks and troubleshoot application issues are able to apply security best practices and protect against OWASP top 10 vulnerabilities are detailed, flexible & organized are analytical with a problem solving mindset are an active contributor in a fun, motivated & growing team! have a positive mindset and you More ❯

Skills • Advanced knowledge of testing tools (Selenium, Soap UI, NeoLoad). • Experience with test management and defect tracking tools. • Strong understanding of development environments and relational databases. • Familiarity with OWASP Top Ten and web application security practices. WHAT WILL YOU FIND AT SEIDOR? A diverse team. We respect the differences that make us more human. Companionship. We work as a More ❯

Practical experience of CMS platforms, Digital Asset Management, .NET, C#, ASP.NET, MVC EPiServer EPiServer Commerce ImageValut or any Digital Asset management EPiServer Find Experience in working in PCI, DSS, OWASP compliant organizations/projects Good understanding of current application development standards, methodologies, issues etc. Good understanding REST APIs and SOAP protocols Extensive knowledge of Infrastructure components eg Hosted platform, Networking More ❯

testing are able to set up a NodeJS build pipeline identify and address performance bottlenecks and troubleshoot application issues are able to apply security best practices and protect against OWASP top 10 vulnerabilities are detailed, flexible & organized are analytical with a problem solving mindset are an active contributor in a fun, motivated & growing team! have a positive mindset and you More ❯

knowledge of network and cloud infrastructure security. Up-to-date on the latest cybersecurity threats and technologies. Strong knowledge in pen testing tools ( Metasploit, Nmap, Wireshark, Burp Suite, Nessus, OWASP ZAP, Eyewitness, Nessus, sqlmap, kali linux, etc) Ideally certified – eg OSCP, CRTP, CPPT, CEH, CISSP, OSWP, eJPT, eWPT Good reporting and security debriefing skills A passion for cybersecurity and a More ❯

knowledge of network and cloud infrastructure security. Up-to-date on the latest cybersecurity threats and technologies. Strong knowledge in pen testing tools ( Metasploit, Nmap, Wireshark, Burp Suite, Nessus, OWASP ZAP, Eyewitness, Nessus, sqlmap, kali linux, etc) Ideally certified – eg OSCP, CRTP, CPPT, CEH, CISSP, OSWP, eJPT, eWPT Good reporting and security debriefing skills A passion for cybersecurity and a More ❯

automation strategy across enterprise programmes Deep understanding of scalable frameworks, modular scripting, and DevOps alignment Tech Environment Tools: Selenium, Playwright, Cucumber, Serenity BDD, Appium, REST Assured Nice-to-Have: OWASP ZAP, NeoLoad, TestGPT, SonarQube #J-18808-Ljbffr More ❯