1 to 25 of 34 Remote OWASP Jobs in England

cycles. Advise on secrets management, IAM, and secure deployment practices. Educate and collaborate with development and operations teams on security best practices. Required Skills & Experience Strong application security knowledge (OWASP Top 10, API security). Manual pentesting experience on modern web apps, APIs, and CI/CD pipelines. Deep understanding of DevSecOps practices, secure SDLC, threat modeling, and secure design More ❯

technical knowledge of application security architecture, cloud platforms (AWS, Azure, GCP), microservices, APIs, and identity/access management. Strong familiarity with modern programming languages, frameworks, and security vulnerabilities (e.g., OWASP Top Ten, SANS 25). Proven experience driving digital transformation initiatives, including migration of legacy applications to cloud-native platforms and adoption of SaaS/PaaS solutions. Understanding of UK More ❯

technical knowledge of application security architecture, cloud platforms (AWS, Azure, GCP), microservices, APIs, and identity/access management. Strong familiarity with modern programming languages, frameworks, and security vulnerabilities (e.g., OWASP Top Ten, SANS 25). Proven experience driving digital transformation initiatives, including migration of legacy applications to cloud-native platforms and adoption of SaaS/PaaS solutions. Understanding of UK More ❯

incidents Raise security awareness through knowledge sharing and collaboration Ensure security is considered in every technical discussion and decision About You Strong knowledge of application security best practices (e.g. OWASP) Experience with at least one major cloud provider (AWS, Azure or GCP) Familiar with Infrastructure as Code (e.g. Terraform, CloudFormation) Confident working with microservices, APIs and secure coding principles Hands More ❯

Conduct secure code reviews and support remediation efforts. Threat Modelling & Architecture Review Requirements (Primarily Essential) 2+ years of experience in application security or secure software development. Strong knowledge of OWASP Top 10, secure coding principles, and threat modelling. Hands-on experience with SAST, DAST, SCA, and vulnerability management tools. Familiarity with cloud platforms (Azure or AWS), CI/CD pipelines More ❯

Excellent problem-solving skills and attention to detail Commercial experience in professional PHP development Strong understanding of object-oriented programming and SOLID principles Knowledge of secure coding practices (e.g., OWASP) Strong experience with modern PHP frameworks (preferably Laravel or Symfony) Familiarity with relational databases (MySQL) and writing performant queries Comfortable working with Git, Composer, and modern development workflows Strong verbal More ❯

with technologies such as Java, Spring Boot, React, and Node. Familiarity with infrastructure-as-code and cloud platforms like AWS is also important. A strong working knowledge of the OWASP Top Ten, common application security frameworks and best practices, and threat modelling techniques is critical. Hands-on Minimum Criteria Experience in a hands-on Cyber Security focused role, primarily in More ❯

efforts for security breaches. Provide security guidance and training to teams across the organization. Key Skills & Experience: Strong knowledge of security frameworks (ISO 27001, NIST 800-30/53, OWASP) . Experience with risk management methodologies and compliance with MOD and HMG security standards (JSP, Def Stan 05-138/139). Proficiency in security threat modeling and risk assessments. More ❯

efforts for security breaches. Provide security guidance and training to teams across the organization. Key Skills & Experience: Strong knowledge of security frameworks (ISO 27001, NIST 800-30/53, OWASP) . Experience with risk management methodologies and compliance with MOD and HMG security standards (JSP, Def Stan 05-138/139). Proficiency in security threat modeling and risk assessments. More ❯

skills and attention to detail Commercial experience in professional PHP development Good commercial level of understanding of object-oriented programming and SOLID principles Knowledge of secure coding practices (e.g., OWASP) Commercial experience with modern PHP frameworks (preferably Laravel or Symfony) Familiarity with relational databases (MySQL) and writing performant queries Comfortable working with Git, Composer, and modern development workflows Strong verbal More ❯

experience Strong understanding of information security principles, including confidentiality, integrity, and availability. Demonstrable understanding of Cybersecurity risk and controls inherent in various technologies, and related best practices. This includes OWASP Top 10 and vulnerability management. Have strong knowledge in cybersecurity frameworks and standards like ISO 27001, NIST, COBIT, and Cyber Essentials+ or equivalent. Experience with risk management methodologies, techniques, and More ❯

experience Strong understanding of information security principles, including confidentiality, integrity, and availability. Demonstrable understanding of Cybersecurity risk and controls inherent in various technologies, and related best practices. This includes OWASP Top 10 and vulnerability management. Have strong knowledge in cybersecurity frameworks and standards like ISO 27001, NIST, COBIT, and Cyber Essentials+ or equivalent. Experience with risk management methodologies, techniques, and More ❯

Keep up to date with latest vulnerabilities, exploit techniques, and pentesting tools. Essential Skills & Experience 37+ years in penetration testing, red teaming, or offensive security. Strong application security knowledge (OWASP Top 10, API security). Proven end-to-end pentest experience: internal, external, cloud, AD, web apps, APIs. Familiarity with pentest reporting formats (CVSS, MITRE ATT&CK mapping). Comfortable More ❯

Entity Framework. Experience with scalable applications, design patterns, and asynchronous programming (e.g. queuing, caching, logging). Familiarity with Windows services, DevOps, Azure, CI/CD, and security best practices (OWASP, ISO standards). Strong communication skills, with the ability to explain technical ideas to non-technical stakeholders. Organised, motivated, and able to prioritise effectively under pressure. A relevant degree would More ❯

Entity Framework. Experience with scalable applications, design patterns, and asynchronous programming (e.g. queuing, caching, logging). Familiarity with Windows services, DevOps, Azure, CI/CD, and security best practices (OWASP, ISO standards). Strong communication skills, with the ability to explain technical ideas to non-technical stakeholders. Organised, motivated, and able to prioritise effectively under pressure. A relevant degree would More ❯

the business. Actively contribute to incident response, security training, supplier reviews, and client security assurance Stay ahead of evolving threats, and help shape our strategy using frameworks such as OWASP, SASE, and Zero Trust. What We're Looking For Essential: Proven experience in cyber security engineering, including vulnerability management, SIEM, WAFs, and secure infrastructure design. Strong knowledge of TCP/ More ❯

experience interfacing with disparate systems. Excellent communicator with a self-starter attitude and comfort working autonomously. Applicable understanding of software security, common exploits and secure development practices, including the OWASP Top 10. Proven and demonstrable understanding of testing methodologies and frameworks. Commercial experience with AWS and IaC (Terraform/CDK/CloudFormation) Commercial experience with Linux, Docker, Docker Compose, Git More ❯

WAF PoCs, new features, and cost-effective solutions Maintain clear documentation of tuning procedures and configurations Experience Required: Strong background in SOC, AppSec, or Ethical Hacking Deep understanding of OWASP Top 10 and web security principles Hands-on experience with WAF platforms (e.g. Akamai, F5, AWS, GCP) Skilled in log analysis tools (e.g. Splunk, Wireshark) Excellent problem-solving and communication More ❯

designs, and ensure integration with SIEM and monitoring systems. Demonstrated proficiency in network/system security (firewalls, IDS/IPS, micro-segmentation), IAM (RBAC, ABAC, JWT), secure coding practices (OWASP, SANS), and hands-on experience with tools like Trellix, Ivanti, ClearSwift. Deep knowledge of Kubernetes and container security (RBAC, network policies, runtime protection), CI/CD pipeline hardening (Git, SonarQube More ❯

Proven commercial experience in a penetration testing role. Deep technical knowledge of networking protocols, operating systems (Windows, Linux), and common infrastructure vulnerabilities. Strong experience in web application penetration testing (OWASP Top 10). Proficiency with common penetration testing tools (e.g., Burp Suite Pro, Metasploit, Nmap, Cobalt Strike, etc.). Excellent written and verbal communication skills, with a proven ability to More ❯

Proven commercial experience in a penetration testing role. Deep technical knowledge of networking protocols, operating systems (Windows, Linux), and common infrastructure vulnerabilities. Strong experience in web application penetration testing (OWASP Top 10). Proficiency with common penetration testing tools (e.g., Burp Suite Pro, Metasploit, Nmap, Cobalt Strike, etc.). Excellent written and verbal communication skills, with a proven ability to More ❯

training and internal education efforts - Contribute to security policies and best practices development Required Skills & Qualifications - Proven experience in penetration testing, ethical hacking, or red teaming - Strong understanding of OWASP Top 10, MITRE ATT&CK, and CVSS scoring - Proficiency with tools like Burp Suite, Metasploit, Nmap, Wireshark, Kali Linux - Familiarity with Scripting languages (Python, Bash, PowerShell) - Knowledge of network protocols More ❯

perform sample-based and full reconciliations, prove data quality and completeness before/after cutover Non-functional support: Contribute to performance, reliability and basic security test activities (e.g., JMeter, OWASP awareness). Environment & test data: Coordinate environments, seed/refresh masked datasets, maintain repeatable test data sets. Readiness & cutover: Support go/no-go criteria, warranty/hypercare defect burn More ❯

perform sample-based and full reconciliations, prove data quality and completeness before/after cutover Non-functional support: Contribute to performance, reliability and basic security test activities (e.g., JMeter, OWASP awareness). Environment & test data: Coordinate environments, seed/refresh masked datasets, maintain repeatable test data sets. Readiness & cutover: Support go/no-go criteria, warranty/hypercare defect burn More ❯

training and internal education efforts Contribute to security policies and best practices development Required Skills & Qualifications Proven experience in penetration testing, ethical hacking, or red teaming Strong understanding of OWASP Top 10, MITRE ATT&CK, and CVSS scoring Proficiency with tools like Burp Suite, Metasploit, Nmap, Wireshark, Kali Linux Familiarity with Scripting languages (Python, Bash, PowerShell) Knowledge of network protocols More ❯