City of London, England, United Kingdom Hybrid / WFH Options
Areti Group | B Corp™
hands-on staff engineer or technical lead · 4+ years’ experience in either PHP/React Native/React/Golang Experience in leading multiple software projects · Cloud Infrastructure – AWS · OWASP and/or Similar webSecurity · Rest API’s, GraphQL, gRPC · Building microservices and associated APIs · Microservice/Event Driven Design - An understanding of the complexities with event-driven design More ❯
South East London, England, United Kingdom Hybrid / WFH Options
Areti Group | B Corp™
hands-on staff engineer or technical lead · 4+ years’ experience in either PHP/React Native/React/Golang Experience in leading multiple software projects · Cloud Infrastructure – AWS · OWASP and/or Similar webSecurity · Rest API’s, GraphQL, gRPC · Building microservices and associated APIs · Microservice/Event Driven Design - An understanding of the complexities with event-driven design More ❯
Ashton-under-Lyne, England, United Kingdom Hybrid / WFH Options
Areti Group | B Corp™
hands-on staff engineer or technical lead · 4+ years’ experience in either PHP/React Native/React/Golang Experience in leading multiple software projects · Cloud Infrastructure – AWS · OWASP and/or Similar webSecurity · Rest API’s, GraphQL, gRPC · Building microservices and associated APIs · Microservice/Event Driven Design - An understanding of the complexities with event-driven design More ❯
Practical experience of CMS platforms, Digital Asset Management, .NET, C#, ASP.NET, MVC EPiServer EPiServer Commerce ImageValut or any Digital Asset management EPiServer Find Experience in working in PCI, DSS, OWASP compliant organizations/projects Good understanding of current application development standards, methodologies, issues etc. Good understanding REST APIs and SOAP protocols Extensive knowledge of Infrastructure components eg Hosted platform, Networking More ❯
analysis About You Proven experience in penetration testing and red teaming (internal, external, app, cloud, etc.) Strong understanding of attacker TTPs and detection evasion Familiarity with frameworks such as OWASP , MITRE ATT&CK , and NIST Experience with C2 frameworks (e.g., Cobalt Strike, PoshC2, Sliver) Certifications such as OSCP, CRTO, OSEP, or CREST CRT preferred (but not required More ❯
attack techniques and relate these to normal and observed digital system behaviour and recommend how to defend against them. Interpret and demonstrate use of external source of vulnerabilities (e.g. OWASP, intelligence sharing initiatives, open source) Undertake security risk assessments for simple systems without direct supervision and propose basic remediation advice in the context of the employer Source and analyse securityMore ❯
/servers: CDN, Cloudflare or similar, web servers. Experience in developing secure frontend code (strong understanding of common security vulnerabilities like cross-site scripting, cross-site request forgery, other OWASP risks and best practices for testing & mitigating them) Good understanding of frontend-backend integration, e.g. familiarity with AJAX or other methods for making asynchronous backend requests. Ability to create responsive More ❯
