16 of 16 Part-Time OWASP Jobs in the UK

tooling Experience with DevSecOps, embedding security into CI/CD pipelines and secure code practices Proven experience presenting security solutions to CISOs, IT Directors, and senior stakeholders Knowledge of OWASP Top 10, cryptography, threat modeling, and secure coding principles Certifications: CISSP (required), Azure Security Engineer/GCP Security Engineer/AWS Security Specialty (preferred), CISM, CCSP, OSCP (desirable) Nice-to More ❯

/Postgres , databases DevOps: CI/CD, Docker , containerisation, Ubuntu/Linux, AWS , Serverless, CDK/CDKTF , Ansible Quality & Analytics: Postman API, testing frameworks, web analytics Patterns: Secure SDLC, OWASP Top 10 , TDD , Git-based workflows Must-have experience Proven delivery of full-stack web applications (frontend + backend + API) from design to production deployment . Hands-on with More ❯

reliable deployments. Collaborate with engineering teams to embed best practices for monitoring, security, and performance. Contribute to architectural decisions and technical design reviews. Ensure compliance with secure coding standards (OWASP, API security, web application best practices). Support automation, observability, and continuous improvement initiatives across the engineering organisation. Youll Be a Great Fit If You Have strong coding experience (Python More ❯

Agile working, mentoring and technical leadership Desirable: Azure AD, Enterprise Apps, Graph API, Azure AI Search Relational and non-relational database design, Entity Framework Postman, Selenium, Playwright Awareness of OWASP, PCI v4, licensing and IP protection Microsoft certifications Experience in travel or entertainment tech Apply today if you're ready to lead, architect and deliver robust Azure solutions at scale. More ❯

own experience to develop pragmatic solutions and resolve complex issues. Certifications such as CISSP, CEH, OSCP, or GSEC are preferred. Knowledge of security principles, practices, and frameworks, such as OWASP, NIST, and ISO. Awareness of security tools and technologies, such as SAST, DAST, IAST, SCA, WAF, IDS, IPS. Experience in conducting threat modelling and risk assessments. Interview process The interview More ❯

with integrating test automation into CI/CD pipelines (e.g., GitLab CI, Jenkins, GitHub Actions) Experience with non-functional testing , including: Performance testing (e.g., JMeter, Gatling), Security testing (e.g., OWASP ZAP, Checkmarx), Accessibility testing (e.g., Axe, WAVE, Pa11y) Understanding of shift-left testing practices and modern DevOps/Agile methodologies Experience testing in cloud-based environments , ideally Azure Strong communication More ❯

Datadog. Version control and automation with GitHub and GitHub Actions. BDD implementation with Gherkin and SpecFlow. Experience with tools like Jira, Confluence, and Artifactory. Understanding of software security standards (OWASP, PKI, X.509, TLS). Experience in regulated software development environments (e.g., medical devices). Benefits A clear plan for career growth, with training and support from your manager. Competitive salary More ❯

API, and infrastructure testing . Familiarity with cloud environments and associated security considerations. Proficient with standard tools like Burp Suite, Nmap, Nessus, Qualys, Metasploit, Kali Linux . Understanding of OWASP and modern testing methodologies. Confident communicator able to work directly with clients. Bonus Points For: Code review capability in Python, Java, or JavaScript . CHECK accreditation (CTM or CTL). More ❯

helping architect and scale new solutions across websites, middleware, and integrations. The role Developing custom software that supports real business growth Writing secure, scalable code using best practices (SOLID, OWASP, etc.) Collaborating with stakeholders to shape and deliver solutions Supporting & mentoring junior Developers Keeping things fresh: CI/CD, modern PHP, containerisation, etc. Youll need 3+ years PHP experience (Laravel More ❯

HTML, CSS, and JavaScript Work collaboratively with designers and business teams to translate ideas into functional products Implement MVC patterns , REST APIs , and ensure robust, secure code aligned with OWASP best practices Debug, test, and optimise applications for performance Research emerging tools and technologies to enhance product functionality Create and maintain clear, detailed documentation What Were Looking For Were open More ❯

Army or Defence background , ideally with knowledge of command, control, and intelligence systems . Deep understanding of architecture frameworks, design standards and methodologies. Experience with secure software development lifecycles , OWASP , GDPR , and NCSC Cloud Security Principles . Demonstrated ability to design and deliver secure, integrated solutions in sensitive or classified environments. Strong stakeholder engagement and communication skills, with the ability More ❯

in pen testing who can deliver the following: Web application testing API testing External & Internal Infrastructure testing (including build reviews) Mobile application testing (including knowledge of standards such as OWASP MASVS) Experience testing in any of the following areas is also desirable: Compiled application testing Cloud security reviews (including AWS & Azure) Kubernetes reviews Knowledge and development are part of our More ❯

Design and assess solutions using sound security architecture principles across PDS and UK police force environments, ensuring information systems are compliant with frameworks (for example, NIST, ISO27001, CIS and OWASP), applicable laws, policies and procedures. What you need to succeed in the role: Essential More ❯

best practices, including the requirements for WhiteHat/ethical hacking Extensive experience with common automated VAPT tools such as Nessus, Appscan, Burp Suite, Nipper, and Trustwave Authoritative mastery of OWASP, CVE, general security controls, and other foundational topics, such as the latest application and operating system exploits 3 to 5 years of relevant experience in Web Application penetration testing or More ❯

Networking. Solid understanding of Windows Active Directory Solid understanding of Windows/Linux experience. Proven experience in pentesting, Specifically Webapp and Infrastructure. Knowledge and/or experience of the OWASP Vulnerabilities Must have or working towards OSCP/CRT or equivalent If you are interested in applying for this opportunity and would like to find out more information, please click More ❯

technical and business teams, and supporting security and compliance initiatives within the organization. The position requires development and maintenance of security policies aligned with ISO 27001, GDPR, HIPAA, and OWASP, as well as leading risk assessments and managing the risk register. Key skills and responsibilities, Comprehensive knowledge of ISO 27001, NIST CSF, GDPR, HIPAA, SOC 2, and OWASP frameworks. Senior … Auditor, and hands-on experience with GRC tools (e.g., Vanta, Drata) are highly desirable. Responsible for developing and maintaining security policies in alignment with ISO 27001, GDPR, HIPAA, and OWASP standards. Lead risk assessments and oversee the management of the organizations risk register. Support efforts to prepare for audits and maintain certification readiness. Collaborate with engineering and operations teams to More ❯