51 to 75 of 232 Permanent OWASP Jobs

and cloud security vulnerabilities (e.g., XSS, SSRF, CSRF, CORS, SQL Injection, broken authentication/authorization, encryption flaws). Provide expert guidance on secure coding practices, common vulnerability classes (e.g., OWASP Top 10), and threat modeling for modern web applications. Conduct security reviews of design and architecture documents; lead threat modeling exercises using frameworks such as STRIDE, PASTA, MITRE ATT&CK … developers, write clear documentation, and engage stakeholders. Nice to have: Certifications such as OSCP, GCIH, GWAPT, or CISSP. Familiarity with security frameworks such as NIST CSF, MITRE ATT&CK, OWASP ASVS, or ISO 27001. Experience with commercial security tools such as EDR, SIEM, CSPM, CNAPP, vulnerability scanners, bug bounty platforms, WAFs, or compliance automation platforms. Prior experience driving security engineering More ❯

languages and Infrastructure as Code (Terraform, CloudFormation) •Familiarity with Jira or other ticketing systems – essential •Technical architecture design and review skills – essential •Ability to identify vulnerabilities using CWE or OWASP •Knowledge of operating systems and their hardening techniques •Understanding of development concepts such as CICD, Pipelines, and SDLC •Penetration testing knowledge is also super useful •Familiarity with Cloud Development Kit More ❯

languages and Infrastructure as Code (Terraform, CloudFormation) •Familiarity with Jira or other ticketing systems – essential •Technical architecture design and review skills – essential •Ability to identify vulnerabilities using CWE or OWASP •Knowledge of operating systems and their hardening techniques •Understanding of development concepts such as CICD, Pipelines, and SDLC •Penetration testing knowledge is also super useful •Familiarity with Cloud Development Kit More ❯

Understanding of current testing trends and Agile methodologies Degree in computer science, software engineering, or related field preferred Experience with API testing tools like Postman or SoapUI Knowledge of OWASP vulnerabilities and security testing ISTQB certification Experience with source control tools like Git or Bitbucket Strong problem-solving, communication, and time management skills Minimum of 5 years in a Software More ❯

application monitoring platforms such as Dynatrace and Catchpoint. Understanding of .NET applications and experience making small code changes when required. Knowledge of Akamai or similar CDNs, perimeter security, and OWASP security guidelines. Strong networking experience across DNS, routing, load balancers, and firewalls. Skilled with enterprise‐level deployments across microservices and multi‐server environments. Experience with MLOps platforms (ideally Azure), database More ❯

application monitoring platforms such as Dynatrace and Catchpoint. Understanding of .NET applications and experience making small code changes when required. Knowledge of Akamai or similar CDNs, perimeter security, and OWASP security guidelines. Strong networking experience across DNS, routing, load balancers, and firewalls. Skilled with enterprise‐level deployments across microservices and multi‐server environments. Experience with MLOps platforms (ideally Azure), database More ❯

Experience with Azure Managed Services, Docker, Kubernetes, Terraform, Helm Experience building modern web apps using Angular and Typescript Experience working in Azure DevOps managing backlogs etc Working knowledge of OWASP security best practices Knowledge of working with FedRamp compliance Our Employer Commitment This job posting will remain active until a qualified candidate is identified. At Ivanti, we are committed to More ❯

maintaining Datadog Experience using GitHub and GitHub Actions Behaviour Driven Development (BDD), with Gherkin & SpecFlow Atlassian Jira, Confluence & JFrog Artifactory Ideally some software security best practices and implementation (e.g. OWASP, PKI, X509 Certificates, TLS) Software development for regulated environments (e.g. IVD/Medical devices). Not essential More ❯

LoadRunner). Experience with database testing and SQL query language. Experience testing AWS services like Lambda, API Gateway, DynamoDB, and S3. Understanding of security testing concepts and tools (e.g., OWASP ZAP, Burp Suite). Knowledge of usability testing and user experience (UX) principles. Start-up experience About You Effective collaboration skills, able to work with cross-functional teams and stakeholders. More ❯

LoadRunner). Experience with database testing and SQL query language. Experience testing AWS services like Lambda, API Gateway, DynamoDB, and S3. Understanding of security testing concepts and tools (e.g., OWASP ZAP, Burp Suite). Knowledge of usability testing and user experience (UX) principles. Start-up experience About You Effective collaboration skills, able to work with cross-functional teams and stakeholders. More ❯

SQL and familiarity with relational & NoSQL databases. Experience designing and consuming REST APIs. Hands?on with cloud services (AWS) and Docker containers. Solid grasp of secure?coding best practices (OWASP Top?10). Mindset & Behaviours Collaborative: thrive in cross?functional teams and build strong relationships with peers. Communicative: speak up in discussions, share ideas and listen actively. Leadership mindset: take More ❯

AWS or Azure). Assist with containerisation (Docker/Kubernetes). Support implementation of authentication systems (OAuth 2.0, Auth0, AWS Cognito). Gain exposure to security best practices (e.g., OWASP). Work on RESTful API design and consumption. Collaborate on version control practices using Git, documentation, and code reviews. Desired Skills: Passion for software development and continuous learning. Some frontend More ❯

AWS or Azure). Assist with containerisation (Docker/Kubernetes). Support implementation of authentication systems (OAuth 2.0, Auth0, AWS Cognito). Gain exposure to security best practices (e.g., OWASP). Work on RESTful API design and consumption. Collaborate on version control practices using Git, documentation, and code reviews. Desired Skills: Passion for software development and continuous learning. Some frontend More ❯

SQL and familiarity with relational & NoSQL databases. Experience designing and consuming REST APIs. Hands‐on with cloud services (AWS) and Docker containers. Solid grasp of secure‐coding best practices (OWASP Top 10). Mindset & Behaviours Collaborative: thrive in cross‐functional teams and build strong relationships with peers. Communicative: speak up in discussions, share ideas and listen actively. Leadership mindset: take More ❯

REST API principles and best practices including API versioning, authentication/authorization models and techniques, and secret management. Familiarity with Entity Framework or other ORM tools. Experience in applying OWASP secure coding practices. Confident applying cloud best-practices for identity and access management, hosting, deployment and monitoring. Confident working on problems from scratch - resourceful in turning problems into simple solutions More ❯

solving skills and attention to detail. 3+ years of professional PHP development experience. Solid understanding of object-oriented programming and SOLID principles. Solid knowledge of secure coding practices (e.g. OWASP). Experience with modern PHP frameworks (preferably Laravel or Symfony). Familiarity with relational databases (MySQL) and writing performant queries. Comfortable working with Git, Composer and modern development workflows. Strong More ❯

Contribute to the development of security policies, procedures, and best practices. Requirements: Proven experience in application security, penetration testing, and secure software development practices. Strong understanding of security vulnerabilities (OWASP Top 10, etc.) and secure coding techniques. Experience with security tools (e.g., static/dynamic analysis tools, vulnerability scanners). Familiarity with common web technologies (e.g., Java, Python, JavaScript, SQL More ❯

payment processing, or credit card platforms Strong technical understanding of web applications, APIs, authentication, and data security Ability to identify and exploit vulnerabilities manually – beyond commercial tools Knowledge of OWASP Top 10, secure coding principles, and threat modelling frameworks Experience working in or with high-compliance environments (e.g. PCI DSS, ISO27001) Comfortable working independently in a remote-first environment Right More ❯

into effective security controls 🧠 Key Skills & Experience: 5+ years in security architecture or consulting in regulated environments Deep knowledge of secure SDLC, DevSecOps, cloud (Azure/AWS), and frameworks (OWASP, MITRE) Hands-on experience with vulnerability tools, threat modelling, and compliance (GDPR, HIPAA, PCI) Strong communication and stakeholder engagement skills Technical knowledge across .NET, Java, scripting (Python, PowerShell), APIs, and More ❯

into effective security controls 🧠 Key Skills & Experience: 5+ years in security architecture or consulting in regulated environments Deep knowledge of secure SDLC, DevSecOps, cloud (Azure/AWS), and frameworks (OWASP, MITRE) Hands-on experience with vulnerability tools, threat modelling, and compliance (GDPR, HIPAA, PCI) Strong communication and stakeholder engagement skills Technical knowledge across .NET, Java, scripting (Python, PowerShell), APIs, and More ❯

of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security experience - Knowledge of commonly found software security vulnerabilities (like OWASP top 10) and remediation techniques - 2+ years of programming in one of the following or similar: Python, Ruby, Go, Swift, Java, .Net, C++. PREFERRED QUALIFICATIONS - Experience with AWS products and More ❯

. Proficient in scripting languages such as PowerShell, YAML, JASON, etc. Experience in software security design review Strong knowledge of development principles such as NCSC Secure Development & Deployment Guidance, OWASP, NIST Secure Software Development Framework (SSDF - 800-218), Microsoft Azure Secure Development best practices, ISO27001 Experience with Azure cloud infrastructure, particularly Azure PaaS service Experience being client-facing and presenting More ❯

. Proficient in scripting languages such as PowerShell, YAML, JASON, etc. Experience in software security design review Strong knowledge of development principles such as NCSC Secure Development & Deployment Guidance, OWASP, NIST Secure Software Development Framework (SSDF - 800-218), Microsoft Azure Secure Development best practices, ISO27001 Experience with Azure cloud infrastructure, particularly Azure PaaS service Experience being client-facing and presenting More ❯

. Proficient in scripting languages such as PowerShell, YAML, JASON, etc. Experience in software security design review Strong knowledge of development principles such as NCSC Secure Development & Deployment Guidance, OWASP, NIST Secure Software Development Framework (SSDF - 800-218), Microsoft Azure Secure Development best practices, ISO27001 Experience with Azure cloud infrastructure, particularly Azure PaaS service Experience being client-facing and presenting More ❯

. Proficient in scripting languages such as PowerShell, YAML, JASON, etc. Experience in software security design review Strong knowledge of development principles such as NCSC Secure Development & Deployment Guidance, OWASP, NIST Secure Software Development Framework (SSDF - 800-218), Microsoft Azure Secure Development best practices, ISO27001 Experience with Azure cloud infrastructure, particularly Azure PaaS service Experience being client-facing and presenting More ❯