1 to 25 of 50 OWASP Jobs in England

DAST, and API security tools as part of a structured AppSec programme. Strong understanding of secure coding fundamentals and common software weaknesses, including the OWASP Top 10 and MITRE CWE Top 25. Demonstrated experience triaging, validating, and prioritising vulnerabilities, working directly with software engineers to support remediation. Ability to read ...

DAST, and API security tools as part of a structured AppSec programme. Strong understanding of secure coding fundamentals and common software weaknesses, including the OWASP Top 10 and MITRE CWE Top 25. Demonstrated experience triaging, validating, and prioritising vulnerabilities, working directly with software engineers to support remediation. Ability to read ...

Terraform) Containerisation (Docker, AKS) and serverless (Azure Functions) Monitoring and observability (Application Insights, Log Analytics) Secrets management and vulnerability scanning (Key Vault, SonarQube, OWASP) Architecture & Design Microservices and event-driven design (Service Bus, Event Grid, Kafka) Domain-Driven Design (DDD) principles Resilient and scalable system patterns (circuit breakers, retries) Integration ...

solutions and resolve complex issues. Certifications such as CISSP, CEH, OSCP, or GSEC are preferred. Knowledge of security principles, practices, and frameworks, such as OWASP, NIST, and ISO. Awareness of security tools and technologies, such as SAST, DAST, IAST, SCA, WAF, IDS, IPS. Experience in conducting threat modelling and risk ...

Secure architecture design and secure-by-design principles Risk assessment, threat modelling, and vulnerability management Security frameworks: ISO 27001, NIST 800-30/53, OWASP Cloud security architecture (AWS, Azure, GCP) Incident response, penetration testing, and remediation concepts Persuasive communication skills across technical and non-technical stakeholders Excellent analytical, documentation ...

Knowledge and experience of applying best practice for handling personal data. E.g., GDPR. Knowledge and experience of applying best practice for solution security. E.g., OWASP, NCSC cloud security principles. Expert knowledge and experience of applying best practice within one or more specialist architecture domains. Expert knowledge and experience of delivering ...

templates, Bicep, Terraform) Exposure to PowerShell or Python scripting Experience with API design principles and RESTful services Knowledge of security best practices and OWASP guidelines Previous experience in fintech, SaaS, or high-growth startups Benefits ✅ Hybrid role - 1 day in office and the rest from home Free on-site parking ...

development is required. Maintain awareness of web application security and building applications which meet high standards of security, pass penetration tests and align with OWASP recommendations. Taking an active part in the whole Software Development Lifecycle end-to-end - including conception, design, architecture, build and deployment. Producing accurate estimates ...

Dynatrace and Catchpoint. Understanding of .NET applications and experience making small code changes when required. Knowledge of Akamai or similar CDNs, perimeter security, and OWASP security guidelines. Strong networking experience across DNS, routing, load balancers, and firewalls. Skilled with enterprise level deployments across microservices and multi server environments. Experience with ...

automated testing using tools such as NUnit, Jasmine and Selenium Good knowledge of SOLID principles Desirable Skills: Containers (docker, K8s) Security best practice (OWASP top ten) OpenIDConnect/Identity server Micro service architecture MS SQL Server Azure DevOps, TeamCity Infrastructure as Code (Bicep, ARM templates, Terraform) Please apply ...

Lambda, Spring Boot, NodeJS, Python FastAPI, Oracle, PostgreSQL, and MongoDB . Work within Agile and DevSecOps environments, utilising tooling such as Atlassian, Jenkins, GitLab, OWASP and AWS services. Apply Site Reliability Engineering principles to enhance reliability, resilience, and performance. Support technical decision-making, explaining trade-offs and best practices ...

Lambda, Spring Boot, NodeJS, Python FastAPI, Oracle, PostgreSQL, and MongoDB . Work within Agile and DevSecOps environments, utilising tooling such as Atlassian, Jenkins, GitLab, OWASP and AWS services. Apply Site Reliability Engineering principles to enhance reliability, resilience, and performance. Support technical decision-making, explaining trade-offs and best practices ...

Lambda, Spring Boot, NodeJS, Python FastAPI, Oracle, PostgreSQL, and MongoDB . Work within Agile and DevSecOps environments, utilising tooling such as Atlassian, Jenkins, GitLab, OWASP and AWS services. Apply Site Reliability Engineering principles to enhance reliability, resilience, and performance. Support technical decision-making, explaining trade-offs and best practices ...

edge AI or constrained/offline deployments. MLOps experience (Sagemaker, Kubeflow, ZenML). Experience building RESTful services around AI pipelines. ISO 27001, NIST SSDF, OWASP SAMM, or GDPR compliance literacy. Experience with AWS Karpenter, Prometheus, or similar observability stacks. Soft Skills Research-driven mindset, eager to experiment and iterate. Able ...

similar. Experience building documentation dashboards, status dashboards, or admin-style interfaces. Understanding of basic secure coding practices or awareness of concepts like the OWASP Top 10. Experience working on products that interact with hardware, embedded systems, or IoT devices. Comfort using AI coding tools to speed up development while still ...

similar. Experience building documentation dashboards, status dashboards, or admin-style interfaces. Understanding of basic secure coding practices or awareness of concepts like the OWASP Top 10. Experience working on products that interact with hardware, embedded systems, or IoT devices. Comfort using AI coding tools to speed up development while still ...

Comfortable operating independently while collaborating with multiple teams. Familiarity with cloud security, microservices, and modern architectures is a plus. Experience with tools such as OWASP ZAP, Burp Suite, Acunetix, Netsparker, Checkmarx, Veracode, Fortify, or SonarQube is highly desirable. Why Apply? Influence the security posture of a leading UK Bank ...

Score remediation Vulnerability Management Tools such as Tenable , Pentera , Varonis , Secure Score Experience coordinating remediation with technical teams Frameworks & Security Models MITRE ATT&CK, OWASP Top 10 Exposure to zero-trust principles Understanding of encryption, certificate management, secrets management Scripting & Automation PowerShell (essential) Python or Bash desirable Security automation experience ...

techniques and supply-chain risks. Cloud & Frameworks: Familiarity with AWS/Azure/GCP security and industry standards (NIST AI RMF, ISO 27001, OWASP Top 10 for LLMs, MITRE ATLAS). Consulting Skills: Ability to translate complex technical risks into actionable guidance for senior stakeholders. Preferred Skills Certifications: CISSP, CCSP ...

objectives. The role will oversee the development and implementation of a Software Development Lifecycle (SDLC), including a Secure Software Development Lifecycle (SSDLC) aligned to OWASP ASVS, and balance operational support, releases, and project delivery Lead the planning and continuous improvement of the firms application landscape in house development ...

technical security concepts to technical and non-technical audiences including executives. Perform technical quality reviews and conduct technical conversations directly with clients. Confident with OWASP Top 10 and SANS Top 25 vulnerabilities and ability to effectively communicate methodologies and techniques with development teams. Utilize tools such as BurpSuite, Nessus, Nmap ...

practices . Strong understanding of Web Applications, Microservices, APIs, authentication/authorization protocols , and data architecture . Knowledge of secure software development practices , GDPR, OWASP, and NCSC cloud security principles. Experience delivering AI-based solutions, real-time data integration, or IoT solutions is advantageous. Consultancy & Leadership Skills Excellent communication skills ...

practices . Strong understanding of Web Applications, Microservices, APIs, authentication/authorization protocols , and data architecture . Knowledge of secure software development practices , GDPR, OWASP, and NCSC cloud security principles. Experience delivering AI-based solutions, real-time data integration, or IoT solutions is advantageous. Consultancy & Leadership Skills Excellent communication skills ...

Doing... Technical Leadership Define and evolve backend architecture to ensure scalability, maintainability, and performance. Set coding standards and champion secure development practices (e.g. OWASP). Influence technology choices, frameworks, and tools to support engineering excellence. Oversee improvements to CI/CD pipelines, build processes, and operational workflows. Can clearly ...

modern API-driven architectures Experience embedding security into CI/CD pipelines and cloud-native workflows Knowledge of secure development frameworks and practices (e.g. OWASP-based approaches) Experience with application security tooling such as SAST, SCA, DAST, or container security Understanding of cloud networking, identity, access management, and secure integrations ...