12 of 12 Remote/Hybrid Static Application Security Testing Jobs in England

development practices to their processes, to assess vulnerabilities, and strengthen their application security posture. The role will involve: Managing and optimising SCA, SAST, and DAST tooling to ensure effective scanning and remediation. Supporting engineering teams with triage, vulnerability management, and secure coding best practices. Ensuring adherence … someone who has the following experience and knowledgebase: - In-depth knowledge of web application security ( OWASP Top 10 ) and experience with SCA, SAST, and DAST tools. A degree in Computer Science, Information Security, or a related discipline ( STEM preferred ) or demonstrable experience. Experience in software development ...

development practices to their processes, to assess vulnerabilities, and strengthen their application security posture. The role will involve: Managing and optimising SCA, SAST, and DAST tooling to ensure effective scanning and remediation. Supporting engineering teams with triage, vulnerability management, and secure coding best practices. Ensuring adherence … someone who has the following experience and knowledgebase: - In-depth knowledge of web application security ( OWASP Top 10 ) and experience with SCA, SAST, and DAST tools. A degree in Computer Science, Information Security, or a related discipline ( STEM preferred ) or demonstrable experience. Experience in software development ...

Role Title: Application Security Specialist Duration: contract to run until 30/11/2026 Location: Knutsford, Hybrid 3 days per week onsite Rate: up to 517.78 p/d Umbrella inside IR35 Role purpose/summary We are looking for an Application Security Specialist … Conduct security reviews, threat modelling, and vulnerability assessments. Support secure coding practices and provide guidance to development teams. Operate security scanning tools (SAST/DAST/IAST). Validate remediation of vulnerabilities and track risk reductions. Contribute to secure design standards and best practices. Work with DevOps ...

Role Title: Application Security Specialist Duration: contract to run until 30/11/2026 Location: Knutsford, Hybrid 3 days per week onsite Rate: up to £517.78 p/d Umbrella inside IR35 Role purpose/summary We are looking for an Application Security Specialist … Conduct security reviews, threat modelling, and vulnerability assessments. Support secure coding practices and provide guidance to development teams. Operate security scanning tools (SAST/DAST/IAST). Validate remediation of vulnerabilities and track risk reductions. Contribute to secure design standards and best practices. Work with DevOps ...

Cloud Security Pre-Sales Consultant - Cloud, Security, AWS, Azure Salary: £60,000 - £65,000 (Depending on Experience) Location: London/Hybrid (willingness to travel on-site required) Company Overview A forward-thinking and entrepreneurial cloud security company, partnering with major organisations and continuing to grow rapidly … Cloud-native Firewalls, WAFs, VPN, ZTNA, API security fundamentals. Container & DevSecOps Security Basic exposure to Kubernetes (AKS, EKS, GKE), container scanning, SAST/DAST, IaC security. SIEM & Endpoint Security Splunk, Microsoft Sentinel, Elastic Security, CrowdStrike, Defender XDR. Certifications (Nice to Have, Not Essential) Security+, CySA+ ...

Cloud Security Pre-Sales Consultant - Cloud, Security, AWS, AzureSalary: £60,000 - £65,000 (Depending on Experience)Location: London/Hybrid (willingness to travel on-site required)Company OverviewA forward-thinking and entrepreneurial cloud security company, partnering with major organisations and continuing to grow rapidly, is offering … Zero Trust principles.Network & Infrastructure SecurityCloud-native firewalls, WAFs, VPN, ZTNA, API security fundamentals.Container & DevSecOps SecurityBasic exposure to Kubernetes (AKS, EKS, GKE), container scanning, SAST/DAST, IaC security.SIEM & Endpoint SecuritySplunk, Microsoft Sentinel, Elastic Security, CrowdStrike, Defender XDR.Certifications (Nice to Have, Not Essential)Security+, CySA+, CEH, CCSP, CISM, CISSP ...

Cloud being advantageous. Developing Infrastructure as Code (IaC) and Configuration Management (CM) using tools such as Terraform and Ansible to enhance infrastructure deployments and security configurations. Applying security best practices and compliance benchmarks to cloud infrastructure with IaC and CM tools, using AWS security services to standardise … Kubernetes, Lambda, EKS, and ECS - with experience of Kubernetes/EKS preferred. Implementing and maintaining security controls within the delivery pipeline, including SAST, vulnerability scanning, and code linting tools. Leveraging AWS services like CloudWatch, Athena, Config and CloudTrail to monitor and help secure cloud infrastructure. Supporting ongoing software development ...

feel at home here. Key Responsibilities Design, build, and maintain enterprise-scale CI/CD pipelines across multi-service environments Integrate build, test, security scanning, and deployment workflows Automate cloud infrastructure using Infrastructure as Code (Terraform preferred) Build and manage container platforms using Docker and Kubernetes (AKS/… Deep Infrastructure as Code expertise (Terraform highly preferred) Kubernetes and container orchestration experience Strong scripting skills (Python, Bash, PowerShell) Good understanding of DevSecOps practices (SAST, DAST, secrets management, code scanning) Excellent troubleshooting and systems integration skills Nice to Have Cloud/DevOps certifications (Azure DevOps Engineer, AWS DevOps ...

work done. What You'll Be Doing: Own the DevOps strategy - Design and implement scalable cloud infrastructure, CI/CD, observability, and security-by-default practices that let engineering ship fast and services accessed safely. Standardise how services are built, provisioned, administered, and managed - Provide clear ways of working … Containers and orchestration (Docker, ECS/EKS), frontend build/release familiarity (Vite, React/Vue), and API gateway patterns. Security tooling integration: SAST/DAST/SCA, dependency governance, SBOMs. Experience with GCP services (e.g., BigQuery, Maps, Vertex) and cross‐cloud identity/networking. Led AI governance ...

maintain CI/CD pipelines and automate build, deployment and environment provisioning. - Monitoring and alerting implementation (Azure Monitoring, App Insights, Log Analytics) - Plan testing and release readiness with engineering team, business and external partners - Work closely with Engineering leads and security team to ensure solutions delivered is aligned … Proven hands-on experience with BICEP and ARM - Experience building and securing CI/CD pipelines in Azure DevOps - Integration of security tooling (SAST, DSAT, dependency scanning, secret scanning) and security remediation planning and execution - Identity and access management - Experience of DevSecOps framework design - Experience of incident response ...

Azure technology estate. This is a hands-on contract opportunity suited to someone with strong Azure DevSecOps expertise who enjoys working collaboratively across engineering, security, cloud operations, and external partners to deliver secure and reliable platforms. Location: London - Hybrid (minimum 3 days per week onsite) Rate: Competitive (dependent …/CD pipelines within Azure DevOps Implement DevSecOps frameworks and best practices across the Azure environment Integrate security tooling into pipelines including SAST, DAST, dependency scanning, and secret scanning Develop and maintain Infrastructure as Code using BICEP and ARM Enable secure, automated, and repeatable deployment pipelines across Azure services ...

maintain the “one right way” of working for Azure environments: guardrails, governance, repeatability and operational readiness. You will work closely with Product development leadership, security and infrastructure stakeholders to ensure standards are adopted through tooling (Azure Policy and Azure DevOps), not documentation alone. Platform ownership, governance and control … including Azure resources) so squads can deliver without bespoke pipeline design per product Embed automated quality controls and security scanning into pipelines (e.g., SAST/SCA) and define secure secret-handling patterns aligned to Birketts expectations Implement and enforce PR/branch policies and release controls to reduce variability ...