2 of 2 Static Code Analysis Jobs in Edinburgh

seeking a highly experienced Application Security Consultant to conduct a comprehensive security review of a web-based application. This is a non-invasive, review-only assignment — no remediation or code modifications are required. You’ll work independently to assess application code and related configurations, identify any security vulnerabilities, and deliver a detailed, evidence-based security audit report . … Key Responsibilities Perform static code analysis and security audit of a web application. Identify potential vulnerabilities in logic, data handling, authentication, and access control. Assess the application against OWASP Top 10 and other secure coding standards. Review third-party dependencies for known issues. Produce a professional security report with risk ratings, findings, and recommendations. Required Skills & Experience … 4+ years in Application Security , AppSec consulting , or Secure Code Review roles. Familiarity with tools like Snyk , Checkmarx , Veracode , or Burp Suite (passive scanning) . Knowledge of OWASP , CWE , and general secure software development principles. Strong technical writing and communication skills. Preferred certifications: OSCP , CSSLP , GWAPT , CEH , or equivalent. Executive summary for non-technical stakeholders. Technical breakdown of findings More ❯

ensure seamless integration of firmware with higher-level applications. Contribute to the development and maintenance of technical documentation, including design specifications, test plans, and security architecture documents. Participate in code reviews to ensure code quality, security, and adherence to coding standards. Troubleshoot and resolve complex firmware and security-related issues. Qualifications: Bachelor's or Master's degree in … security standards and certifications relevant to embedded systems (e.g., Common Criteria, FIPS 140-2). Knowledge of hardware security modules (HSMs) and trusted execution environments (TEEs). Familiarity with static and dynamic code analysis tools for security vulnerability detection. Experience with secure coding practices and threat modeling. Contributions to open-source security or embedded projects. Location: Edinburgh More ❯