51 to 75 of 142 OWASP Jobs in England

designing automated testing frameworks Hands-on experience with Azure DevOps, CI/CD pipelines, and containerized test environments. Strong understanding of API testing, performance profiling, and security testing (including OWASP top 10). Excellent problem-solving skills, with the ability to analyse complex technical challenges and propose scalable solutions. Experience working in Agile teams and collaborating across global R&D More ❯

Establish frontend testing strategy using tools like Jest, React Testing Library, Cypress, etc. Partner with security teams to implement secure-by-design frontends aligned with SaaS compliance needs (e.g., OWASP, SSO, GDPR). Required Qualifications Bachelor's or Master's in Computer Science, Software Engineering, or equivalent. 10+ years in frontend development with at least 4+ years of React-based More ❯

the following technical competencies: Solid grounding in OS and network fundamentals (Linux, Windows, Mac, TCP/IP stack). Knowledge of common attack techniques and mitigations (MITRE ATT&CK, OWASP Top 10). Familiarity with scripting and automation using Python, Bash, or PowerShell. Strong understanding of Active Directory attack chains and common privilege escalation paths. Experience interpreting logs and event More ❯

containerised applications using technologies such as AWS Lambda, Spring Boot, NodeJS, Python FastAPI, Oracle, PostgreSQL and MongoDB Contributing to DevSecOps delivery pipelines, using tooling such as Atlassian, Jenkins, GitLab, OWASP and AWS services Applying Site Reliability Engineering principles to ensure solutions are resilient, reliable and cost-effective Supporting clients and end users in making technical product decisions by clearly explaining More ❯

containerised applications using technologies such as AWS Lambda, Spring Boot, NodeJS, Python FastAPI, Oracle, PostgreSQL and MongoDB Contributing to DevSecOps delivery pipelines, using tooling such as Atlassian, Jenkins, GitLab, OWASP and AWS services Applying Site Reliability Engineering principles to ensure solutions are resilient, reliable and cost-effective Supporting clients and end users in making technical product decisions by clearly explaining More ❯

self-starter Deep understanding of both common and emerging vulnerabilities including their manifestation in different architectures (web applications, thick clients, APIs, networked infrastructure etc) Familiarity with industry standard guidance OWASP Top 10, SANS Top 25, NIST/CSC, CIS, NCSC etc. Applied understanding of topics such as authentication, access control, encryption, cloud security, operating system security, network security, database security. More ❯

VPNs, and VLANs. Basic experience with SIEMs and security logs Understanding of vulnerability management practices Understanding of penetration testing, Threat Hunting, Red Teaming methodologies Familiarity with application security and OWASP Top Ten Scripting languages Experience with capture-the-flags Familiarity with audit principles and different information security compliance standards Soft Skills: Analytical Thinking: Ability to assess risks, detect anomalies, and More ❯

efforts for security breaches. Provide security guidance and training to teams across the organization. Key Skills & Experience: Strong knowledge of security frameworks (ISO 27001, NIST 800-30/53, OWASP) . Experience with risk management methodologies and compliance with MOD and HMG security standards (JSP, Def Stan 05-138/139). Proficiency in security threat modeling and risk assessments. More ❯

efforts for security breaches. Provide security guidance and training to teams across the organization. Key Skills & Experience: Strong knowledge of security frameworks (ISO 27001, NIST 800-30/53, OWASP) . Experience with risk management methodologies and compliance with MOD and HMG security standards (JSP, Def Stan 05-138/139). Proficiency in security threat modeling and risk assessments. More ❯

experience with AWS (or similar cloud platforms) and Cloudflare. Infrastructure as Code: Proficiency with Terraform or similar IaC tools. Vulnerability Knowledge: Solid understanding of common vulnerability classes and the OWASP Top 10. Coding & Scripting: Proficient in reading code (e.g., Python, Scala) and using Git for version control of code and configuration changes. Familiarity with iOS or Android security. Experience of More ❯

strong track record in software engineering with a focus on application and infrastructure security, ideally in agile or DevOps environments. You're fluent in secure development concepts - comfortable with OWASP Top 10, CWE and common secure design patterns. You've helped teams adopt secure SDLC practices, working closely with central security or architecture groups. You know how to embed tools More ❯

expose DevSecOps capabilities. Package and deploy services to OpenShift/Kubernetes clusters, ensuring scalability and high availability. DevSecOps Toolchain Integration Integrate with and extend APIs for Synopsys BlackDuck, Snyk, OWASP Dependency-Track, JFrog Artifactory, HashiCorp Vault/CyberArk, and more. Drive continuous improvement of our CI pipelines (Jenkins, TeamCity, Tekton), embedding security "shift-left" practices. Developer Enablement & Support Partner with More ❯

fundamentals in data structures, algorithm design and complexity analysis. Experience developing, deploying and maintaining API's onto AWS or Azure. Excellent understanding of software design principles. Experience in applying OWASP secure coding practices. Confident and experienced with automated testing - from unit tests to system and integration tests. Willingness to develop across multiple platforms and architectures. Genuinely passionate about changing lives More ❯

internal and external audits where needed. What we're looking for Experience in software engineering, with a strong security mindset Deep understanding of web and API vulnerabilities, including the OWASP Top 10 Proficient in coding, scripting (e.g. Python, Bash), and automating security in CI/CD Hands-on experience with security tools like SAST, DAST, and SCA Familiar with cloud More ❯

looking for Experience with cloud engineering, security tooling, and cloud workload protection Skills in DevOps, AWS, Infrastructure as Code (Terraform), and scripting languages (Python, Bash) Knowledge of security standards (OWASP, CIS, NIST) and Agile/DevOps practices Experience with CSPM, CNAPP, security incident response, and SIEM tools Ability to evaluate and recommend new security technologies Effective communication skills focused on More ❯

technologies, including firewalls, intrusion detection/prevention systems (IDS/IPS), SIEM, antivirus solutions, encryption mechanisms, and vulnerability assessment tools. Hands-on experience in security tools (e.g., SAST, DAST, OWASP ZAP). Relevant security certifications, such as Security+, IAT II/III level, or equivalent. Strong capability in risk assessment, vulnerability management, and data informed decision-making. Solid understanding of More ❯

s recognition. His OwaspHeaders.Core library has achieved remarkable success with over 1.2 million downloads, providing essential web application security features to developers across the .NET ecosystem. The library implements OWASP Secure Headers Project recommendations, enabling developers to enhance their application security with minimal effort whilst maintaining clean, maintainable code. Beyond digital community engagement, Jamie demonstrates his commitment to developing future More ❯

troubleshooting) Experience with Git and version control workflows Comfortable deploying to or managing applications on Linux and/or Windows servers Awareness of web security best practices (e.g., SSL, OWASP) Desirable Skills Experience working with ERP systems (Navision a bonus) WordPress development or customisation experience Front-end development with Bootstrap and Angular Exposure to Docker, CI/CD tools, or More ❯

troubleshooting) Experience with Git and version control workflows Comfortable deploying to or managing applications on Linux and/or Windows servers Awareness of web security best practices (e.g., SSL, OWASP) Desirable Skills Experience working with ERP systems (Navision a bonus) WordPress development or customisation experience Front-end development with Bootstrap and Angular Exposure to Docker, CI/CD tools, or More ❯

Platform (GCP) Security & Compliance Cloud and a pplication security: Cloud posture management tools (e.g. Azure Dender, GCP SCCE), WAFs (e.g. Azure WAF, Cloud Armor AWS WAF), and protection against OWASP Top 10 and emerging threats. Network & infrastructure security: Network security principles (e.g. segmentation, monitoring, intrusion detection/prevention). Any experience in Zero Trust architecture in cloud environments would be More ❯

applications in production environments. Common architectural patterns (e.g. layered, hexagonal, clean). Databases (Including concepts like indexes and transaction scopes). Performance and monitoring. Security practices (e.g. understanding of OWASP Top 10). Be comfortable safely refactoring legacy code. Be able to work alongside client-facing support and product owners to analyse business requirements. Be keen to learn new technologies More ❯

software development approaches such as automated testing, test driven development (TDD), continuous integration, pair programming, code review, observability and version control understanding of common web security risks such as OWASP Top 10, and the corresponding mitigations enjoy researching and learning new programming tools and techniques and sharing their skills with others have experience working in a collaborative environment, and an More ❯

software development approaches such as automated testing, test driven development (TDD), continuous integration, pair programming, code review, observability and version control understanding of common web security risks such as OWASP Top 10, and the corresponding mitigations enjoy researching and learning new programming tools and techniques and sharing their skills with others have experience working in a collaborative environment, and an More ❯

scanning, exploitation) Security Operations (e.g., SIEM, SOC analysis) Incident Response and Digital Forensics Cryptography and Secure Communications Cloud Security (e.g., AWS, Azure, GCP security best practices) Application Security (e.g., OWASP Top 10) Compliance and Governance (e.g., GDPR, ISO 27001) Security Tools (e.g., Wireshark, Nmap, Metasploit, Kali Linux) Person Specification: Experience delivering cybersecurity training or mentoring professionals in a security capacity More ❯

scanning, exploitation) Security Operations (e.g., SIEM, SOC analysis) Incident Response and Digital Forensics Cryptography and Secure Communications Cloud Security (e.g., AWS, Azure, GCP security best practices) Application Security (e.g., OWASP Top 10) Compliance and Governance (e.g., GDPR, ISO 27001) Security Tools (e.g., Wireshark, Nmap, Metasploit, Kali Linux) Person Specification: Experience delivering cybersecurity training or mentoring professionals in a security capacity More ❯