Static Application Security Testing Jobs in England

176 to 200 of 215 Static Application Security Testing Jobs in England

Security Engineer (Cloud & Salesforce)

England, United Kingdom
Hybrid / WFH Options
FPSG Connect
opportunity to join a large-scale digital transformation programme aimed at uniting multiple internal business units under a new, secure, cloud-native digital platform. Ideal for a hands-on Security Engineer who enjoys embedding security into the development lifecycle and working with modern tooling and cloud environments. The successful Security Engineer's responsibilities will include: Analysing new … and cloud network architecture (VPNs, subnets, zones) Experience with API security and integration-related platforms such as Auth0 or API Gateways Proficiency with security tools including SAST (e.g. Snyk, Checkmarx), SCA, and DAST (e.g. OpenZAP, Qualys DAST) Ability to manage secure operations of large-scale software estates, including deployment pipelines, rollback strategies, and uptime monitoring Practical experience building … Engineering, Cybersecurity Engineer, Information Security Specialist, Salesforce, Azure, OWASP CI/CD, DSOMM, SAMM, Cloud Security Posture Management, Prisma Cloud, Azure Defender, Snyk, Checkmarx, OpenZAP, Qualys, DAST, SAST, CI/CD, Infrastructure Security, Auth0, Secure APIs, Networking Protocols, DevSecOps, Secure Development, CRM Security Next Steps Please click "Apply now" and submit your up-to-date CV More ❯
Employment Type: Permanent
Salary: GBP Annual
Posted:

Security Engineer Cloud & Salesforce

Tunbridge Wells, Kent, England, United Kingdom
Hybrid / WFH Options
FPSG Connect
Security Engineer Permanent Hybrid - 2 or 3 days p/w on-site Tunbridge Wells area FPSG have a fantastic opportunity to join a large-scale digital transformation programme aimed at uniting multiple internal business units under a new, secure, cloud-native digital platform. Ideal for a hands-on Security Engineer who enjoys embedding security into the … and cloud network architecture (VPNs, subnets, zones) Experience with API security and integration-related platforms such as Auth0 or API Gateways Proficiency with security tools including SAST (e.g. Snyk, Checkmarx), SCA, and DAST (e.g. OpenZAP, Qualys DAST) Ability to manage secure operations of large-scale software estates, including deployment pipelines, rollback strategies, and uptime monitoring Practical experience building … Engineering, Cybersecurity Engineer, Information Security Specialist, Salesforce, Azure, OWASP CI/CD, DSOMM, SAMM, Cloud Security Posture Management, Prisma Cloud, Azure Defender, Snyk, Checkmarx, OpenZAP, Qualys, DAST, SAST, CI/CD, Infrastructure Security, Auth0, Secure APIs, Networking Protocols, DevSecOps, Secure Development, CRM Security Next Steps Please click "Apply now" and submit your up-to-date CV More ❯
Employment Type: Full-Time
Salary: Salary negotiable
Posted:

Security Engineer / Cloud / DSOMM / OWASP / Salesforce

Leeds, West Yorkshire, United Kingdom
Hybrid / WFH Options
FPSG
Security Engineer/Cloud/DSOMM/OWASP/Salesforce Permanent Hybrid - 2 or 3 days p/w on-site Leeds FPSG have a fantastic opportunity to join a large-scale digital transformation programme aimed at uniting multiple internal business units under a new, secure, cloud digital platform. Ideal for a hands-on Security Engineer who enjoys … and cloud network architecture (VPNs, subnets, zones) Experience with API security and integration-related platforms such as Auth0 or API Gateways Proficiency with security tools including SAST (e.g. Snyk, Checkmarx), SCA, and DAST (e.g. OpenZAP, Qualys DAST) Ability to manage secure operations of large-scale software estates, including deployment pipelines, rollback strategies, and uptime monitoring Practical experience building … Engineering, Cybersecurity Engineer, Information Security Specialist, Salesforce, Azure, OWASP CI/CD, DSOMM, SAMM, Cloud Security Posture Management, Prisma Cloud, Azure Defender, Snyk, Checkmarx, OpenZAP, Qualys, DAST, SAST, CI/CD, Infrastructure Security, Auth0, Secure APIs, Networking Protocols, DevSecOps, Secure Development, CRM Security Next Steps Please click "Apply now" and submit your up-to-date CV More ❯
Employment Type: Permanent
Posted:

Senior Security Engineer

London, England, United Kingdom
Hybrid / WFH Options
S-RM
S-RM is a global intelligence and cyber security consultancy. Since 2005, we've helped some of the most sophisticated clients in the world solve some of their toughest challenges. We've been able to do this because of our outstanding people. We're committed to developing bright, curious, driven individuals who want to think critically, solve complex problems … WORKING IN INFOSEC AT S-RM This is an opportunity to join a company where infosec is embedded into the culture. Our client services include a world-class cyber security team which means we think critically about our own security practices at all levels. We see information security as an asset not a cost centre, and we … Engineer, you'll play a lead technical role in maintaining and evolving S-RM's information security. Key Responsibilities: Improve and implement development pipeline security features, such as SAST and DAST Manage, monitor and improve compliance, vulnerability management, threat intelligence, detection/prevention tools across a multi-cloud environment. Provide expert security design and engineering guidance on complex More ❯
Posted:

Security Engineer

Bournemouth, England, United Kingdom
Hybrid / WFH Options
FPSG
Security Engineer/Cloud/DSOMM/OWASP/Salesforce Permanent Hybrid – 2 or 3 days p/w on-site Bournemouth FPSG have a fantastic opportunity to join a large-scale digital transformation programme aimed at uniting multiple internal business units under a new, secure, cloud-native digital platform. Ideal for a hands-on Security Engineer who … and cloud network architecture (VPNs, subnets, zones) Experience with API security and integration-related platforms such as Auth0 or API Gateways Proficiency with security tools including SAST (e.g. Snyk, Checkmarx), SCA, and DAST (e.g. OpenZAP, Qualys DAST) Ability to manage secure operations of large-scale software estates, including deployment pipelines, rollback strategies, and uptime monitoring Practical experience building … Engineering, Cybersecurity Engineer, Information Security Specialist, Salesforce, Azure, OWASP CI/CD, DSOMM, SAMM, Cloud Security Posture Management, Prisma Cloud, Azure Defender, Snyk, Checkmarx, OpenZAP, Qualys, DAST, SAST, CI/CD, Infrastructure Security, Auth0, Secure APIs, Networking Protocols, DevSecOps, Secure Development, CRM Security Next Steps Please click "Apply now" and submit your up-to-date CV More ❯
Posted:

Solutions Architect

London, United Kingdom
JFrog Ltd
within enterprise accounts Proven experience in Docker, Kubernetes, CI/CD, git integrations and build tools Hands-on experience with AppSec tools (part or all) such as: SCA/SAST/SBOM Management/Container Security Ability to build software pipelines with various DevOps tools Hands-on experience with cloud infrastructures - AWS/Azure/GCP - Mandatory Experience with More ❯
Employment Type: Permanent
Salary: GBP Annual
Posted:

Solutions Architect

London, England, United Kingdom
JFrog
within enterprise accounts Proven experience in Docker, Kubernetes, CI/CD, git integrations and build tools Hands-on experience with AppSec tools (part or all) such as: SCA/SAST/SBOM Management/Container Security Ability to build software pipelines with various DevOps tools Hands-on experience with cloud infrastructures - AWS/Azure/GCP - Mandatory Experience with More ❯
Posted:

Security Engineer

Almondsbury, Gloucestershire, United Kingdom
Hybrid / WFH Options
Frontier Resourcing
My growing defence client is seeking a Security Engineer. You'll join a leading organisation that develops cutting edge products and technology. Role Purpose You'll own the security posture across our client's product portfolio-encompassing software, hardware, and services-by embedding robust security controls throughout the development lifecycle, identifying and mitigating risks, and ensuring compliance … execute penetration tests and automated vulnerability scans; validate fixes. Oversee third-party security assessments as required. Continuous Improvement Drive security tooling and automation (CI/CD integration, SAST/DAST). Stay ahead of emerging threats and security technologies; evangelise best practices across teams. Qualifications & Experience Proven experience (5+ years) in product or application security …/5/31000, NIST 800-series) and Defence Standards (JSPs, Def Stan 05-138/139). Hands-on experience with security testing tools and techniques (SAST, DAST, penetration testing). Eligible for UK SC clearance; right to work in the UK. Why Join? You'll Gain exposure to cutting-edge defence technology and intelligence insights. More ❯
Employment Type: Permanent
Salary: GBP Annual
Posted:

Security Engineer

England, United Kingdom
Hybrid / WFH Options
Cerebras
see why Glassdoor and Comparably have recognized CaptivateIQ as a best place to work! About the role: Join our Cybersecurity Team and play a pivotal role in strengthening the security of our infrastructure, applications, and services. As a Security Engineer, you will apply your technical expertise across engineering, application security, and incident response to help scale … and mature our security posture. This is a hands-on role that requires a collaborative mindset, strong problem-solving skills, and the ability to identify and respond to security challenges across attack surfaces. You'll work closely with Engineering, Product, and IT teams to embed security across the product lifecycle, triage and mitigate vulnerabilities, and proactively respond … reviews, network scans, and targeted penetration tests of applications and infrastructure using common security tooling (e.g., Burp Suite, ZAP, Amass, Nmap). Assess and mitigate static (SAST) and dynamic (DAST) vulnerabilities across services and components. Evaluate, implement, and maintain security tooling to support vulnerability management, secure development, and event detection workflows. Define and track metrics related More ❯
Employment Type: Permanent
Salary: GBP Annual
Posted:

Senior Product Security Engineer

London Area, United Kingdom
Hybrid / WFH Options
Caspian One
Role: Product Security Engineer Location: London (Hybrid – 3 Days in Office) Contract Length: 6 Months (possibility for extensions) Are you a seasoned Product/Application Security Engineer with a passion for protecting cutting-edge systems in fast-paced, high-stakes environments? Our highly reputable client operating in the fintech space is seeking a Product Security Engineer … C++, Rust, Go, Kotlin/Java. Conduct hands-on threat modelling, security assessments, code reviews, and risk mitigation for large-scale distributed systems. Integrate security scanning tools (SAST, DAST) into CI/CD pipelines to maintain continuous monitoring and threat detection. Mentor engineers on security principles and maintain QRT’s high standards through third-party/vendor … security with a proven track record of securing complex, scalable systems Experience working in smaller companies or start-ups, with a broad range of responsibilities Experienced with SAST and DAST, integrating into CI/CD pipelines Programming Languages: skills in either Python, C++, Rust, Go, Kotlin/Java Experience with cloud platforms (either AWS, Azure or Alibaba Cloud More ❯
Posted:

Senior Product Security Engineer

City of London, London, United Kingdom
Hybrid / WFH Options
Caspian One
Role: Product Security Engineer Location: London (Hybrid – 3 Days in Office) Contract Length: 6 Months (possibility for extensions) Are you a seasoned Product/Application Security Engineer with a passion for protecting cutting-edge systems in fast-paced, high-stakes environments? Our highly reputable client operating in the fintech space is seeking a Product Security Engineer … C++, Rust, Go, Kotlin/Java. Conduct hands-on threat modelling, security assessments, code reviews, and risk mitigation for large-scale distributed systems. Integrate security scanning tools (SAST, DAST) into CI/CD pipelines to maintain continuous monitoring and threat detection. Mentor engineers on security principles and maintain QRT’s high standards through third-party/vendor … security with a proven track record of securing complex, scalable systems Experience working in smaller companies or start-ups, with a broad range of responsibilities Experienced with SAST and DAST, integrating into CI/CD pipelines Programming Languages: skills in either Python, C++, Rust, Go, Kotlin/Java Experience with cloud platforms (either AWS, Azure or Alibaba Cloud More ❯
Posted:

Senior Security Engineer II - Platform Engineering

London, England, United Kingdom
Hybrid / WFH Options
Forter
About the role: As a Senior Security Engineer II in the Platform Engineering team, you’ll play a critical role in securing Forter’s high-scale, real-time decision-making platform. You’ll lead security strategy for customer-facing production APIs while balancing development velocity with robust security controls. If you're passionate about building security into the foundation of fast-moving engineering teams, this role offers the autonomy and impact you're looking for. You will also work as part of the Security Engineering team on the task of developing features and deploying products to improve the security standing of the company's cloud stack: account management, network infrastructure, identity and access … Storage, etc.) Excellent communication skills, including the ability to drive cross-team security initiatives Nice-to-Have Experience with threat modeling, security audits, penetration testing, or SAST tools Contributions to security research, blogs, talks, or open-source security projects Benefits include: Competitive salary Quarterly company bonus Private health insurance, including vision and dental coverage Restricted More ❯
Posted:

Engineering - Security Engineer

London, England, United Kingdom
tray.io
automators throughout organisations can easily automate complex processes through a powerful, flexible platform, and can connect their entire cloud stack thanks to APIs. Your Mission We are seeking a Security Engineer to join our Corporate Security organisation. This innovator will be hands-on building security into our cloud services, from design, through to implementation and release, within … applications. Work closely with developers to perform code reviews as well as pentesting for Tray applications. Build out automated/scalable “shift left” approaches to code security including SAST/DAST within code pipelines. Protect and monitor deployment services and pipelines. Build out threat detection/investigation systems and incident response processes. About You Minimum 4 years experience with … solutions for cloud services, confident at securely architecting, explaining and implementing security best practices for cloud environments. Experience deploying/integrating with CI/CD and configuring SAST/DAST tooling. Infrastructure level experience with AWS, Kubernetes and Terraform General coding knowledge (any language) Your team will fully support you to do your best work. Our team is More ❯
Posted:

Senior Product Security Engineer

London, England, United Kingdom
Qube Research & Technologies
challenges. QRT's culture of innovation continuously drives our ambition to deliver high quality returns for our investors. Your future role within QRT QRT is hiring a Senior Product Security Engineer to protect diverse tech systems across cloud, business apps, and core infrastructure. In this role, you'll drive automated security processes, influence architecture, and lead strategic security projects. Working closely with IT, cloud, and engineering teams, you'll implement security solutions for low-latency systems and multi-cloud platforms, including AWS, Azure, and Alibaba Cloud. You'll also secure hybrid infrastructures across Python, C++, and Kotlin/Java environments, ensuring robust protection that supports QRT's high-speed, data-driven operations. Support the implementation of … and operating systems environments. Perform vendor security reviews to assess third-party security practices and ensure compliance with QRT's standards. Integration of security scanning tools (SAST, DAST, etc.) into CI/CD pipelines and runtime environments to ensure continuous security monitoring and threat detection across Alibaba Cloud, AWS, Azure, and on-prem systems. Proactively identify More ❯
Posted:

DevSecOps Engineer - Finance - £59,000 per annum + Bonus - London

London, England, United Kingdom
VirtueTech Recruitment Group
Group Head of Permanent - Data, Product and Infrastructure at VirtueTech Recruitment Group DevSecOps Engineer - Finance - £59,000 per annum + Bonus - London My client are looking for a Cyber Security Analyst to join the InfoSec and Platform teams. This role is ideal for someone with 2–3 years of experience and a strong foundation in DevOps and modern security practices. You’ll play a key part in embedding security across the full software development lifecycle (SDLC), with a particular focus on our Azure-based infrastructure and applications. The position requires someone who can take ownership, work independently, and has proven expertise in both Azure and Microsoft Security solutions — these are essential. Education & Background: Bachelor’s or … infrastructure and security management. Security Monitoring & Testing: Experience managing penetration tests/red teaming, and implementing automated cloud security monitoring and compliance tools (e.g. CSPM, SAST, CIEM). Certifications & Policy Development: Proven ability to define and implement enterprise-level security policies, with desirable certifications including DSOCP, SC-900, AZ-500, CISSP, and Microsoft 365 credentials. More ❯
Posted:

DevSecOps and Site Reliability Engineering Lead

London, England, United Kingdom
Hybrid / WFH Options
NatWest Group
DevSecOps and Site Reliability Engineering Lead In this key role, you’ll improve, drive, and embed non-functional and operational characteristics such as availability, performance, efficiency, change management, monitoring, security, incident response, and capacity planning of our products and services You'll be leading team(s) of talented DevSecOps and SRE engineers, working with new and innovative technology to … people management responsibilities and support recruitment, management of talent and performance Own and create technical road map for DevSecOps and SRE with the right architecture, solutions & commercial value Own security automation across our entire platform, collaborating with security teams to ensure platform integrity Own the observability strategy, and deliver monitoring and observability patterns Proactively contribute new ideas and … also looking for: Strong experience in DevSecOps practice with knowledge of conducting security checks and mitigation across the software development lifecycle e.g. static and dynamic code analysis, SAST, DAST, IAST Hands on experience with Azure Cloud and Full Stack Observability using tools such as Azure Monitor, Log Analytics, AppInsights, Grafana and Prometheus Experience with Azure DevOps is a More ❯
Posted:

Senior Java Developer (DevSecOps) - VP

London, United Kingdom
Hybrid / WFH Options
Citigroup Inc
standards. Write and maintain unit, integration, and end-to-end tests using JUnit 5, Mockito, WireMock, and Testcontainers. Collaborate with cross-functional teams to implement DevSecOps practices, including SCA, SAST, shift-left, and secure SDLC. Required Skills and Experience: Strong proficiency in Java (Java 21 and Java 8). Experience with reactive programming (Project Reactor, Spring WebFlux). Solid understanding … of DevOps and DevSecOps principles, including SCA, SAST, and shift-left security. Hands-on experience with dependency management tools (Gradle, Maven, npm, etc.). Familiarity with relational databases (Postgres) and database change management using Flyway. Experience with distributed caching systems like Hazelcast. Proficiency in microservice architecture and deploying applications on OpenShift. Knowledge of version control systems (Git). Basic understanding … of Linux. Strong testing skills using JUnit 5, Mockito, WireMock, and Testcontainers. Preferred Skills: Experience with Go, JavaScript, or TypeScript. Familiarity with CI/CD tools like Jenkins, TeamCity, and Tekton. Knowledge of open-source contributions, especially in CycloneDX or similar projects. Why Join Us? Work on impactful projects that improve developer productivity across Citi. Contribute to open-source More ❯
Employment Type: Permanent
Salary: GBP Annual
Posted:

Senior Application Security Consultant

London, England, United Kingdom
JR United Kingdom
Social network you want to login/join with: Senior Application Security Consultant, London Client: Senitor Associates Location: London, United Kingdom Job Category: Other EU work permit required: Yes Job Views: 3 Posted: 05.05.2025 Expiry Date: 19.06.2025 Job Description: Application Security Consultant – Remote CSSLP, CISSP, OSWE, GWAPT, CREST CRT/CCT App A leading technology consultancy … is looking for an Application Security Consultant to play a key role in embedding security into modern software development practices. The role: You will work closely with engineering teams to promote secure coding, guide vulnerability remediation, and integrate Application Security … controls within the DevOps pipeline. The focus is on cloud-native development in AWS environments. Key responsibilities include: Embedding secure coding practices and supporting design/code reviews Implementing SAST, DAST, SCA, and other security checks into DevOps workflows Supporting secure API design and cloud-native architecture Serving as a key escalation point for vulnerability triage and remediation Providing More ❯
Posted:

Senior Application Security Engineer

City of London, London, United Kingdom
Lawrence Harvey
Senior Application Security Engineer Salary: up to £100,000 + bonus + benefits Location: UK – Remote This company is scaling its security function and is hiring Senior Application Security Engineers to help embed secure development practices across its engineering teams. You’ll play a hands-on role in identifying and resolving vulnerabilities, integrating security into the SDLC, helping developers create software that is secure, robust, and production-ready by design. You’ll be joining a high-impact security team at a pivotal point in the company’s growth. The environment spans legacy systems, enterprise-grade platforms, and greenfield builds – making it an ideal opportunity for individuals who thrive in varied, fast-paced … vulnerabilities. Requirements: 5+ years of hands-on experience in application security and secure software development. Strong knowledge of secure coding practices and common vulnerabilities (OWASP) Experience with SAST, DAST, and IAST tools and integrating them into CI/CD pipelines. Proficiency in writing and reviewing code (JavaScript, Java, Python) with an emphasis on secure patterns. Ability to work More ❯
Posted:

Senior Application Security Engineer

London Area, United Kingdom
Lawrence Harvey
Senior Application Security Engineer Salary: up to £100,000 + bonus + benefits Location: UK – Remote This company is scaling its security function and is hiring Senior Application Security Engineers to help embed secure development practices across its engineering teams. You’ll play a hands-on role in identifying and resolving vulnerabilities, integrating security into the SDLC, helping developers create software that is secure, robust, and production-ready by design. You’ll be joining a high-impact security team at a pivotal point in the company’s growth. The environment spans legacy systems, enterprise-grade platforms, and greenfield builds – making it an ideal opportunity for individuals who thrive in varied, fast-paced … vulnerabilities. Requirements: 5+ years of hands-on experience in application security and secure software development. Strong knowledge of secure coding practices and common vulnerabilities (OWASP) Experience with SAST, DAST, and IAST tools and integrating them into CI/CD pipelines. Proficiency in writing and reviewing code (JavaScript, Java, Python) with an emphasis on secure patterns. Ability to work More ❯
Posted:

Salesforce Security Engineer

Bournemouth, England, United Kingdom
Oliver James Associates Ltd
Salesforce Security Engineer Salary : £85,000 Locations: Leeds, Manchester, Redhill, Tunbridge Wells, Bournemouth, or Bristol (Hybrid/Flexible) We're looking for a Salesforce Security Engineer who brings strong engineering fundamentals and hands-on experience to the intersection of Salesforce development and security engineering . You'll play a critical role in enhancing the security posture … the DSOMM (DevSecOps Maturity Model) and OWASP security principles to assess and uplift Salesforce security maturity. Own and improve pipeline security including static code analysis (SAST), dynamic application security testing (DAST), dependency checks, and secure deployment patterns. Conduct threat modelling for Salesforce-based estates, identifying and mitigating risks early in the development lifecycle. … on experience with Salesforce development (particularly APEX) and a deep understanding of how engineering and security intersect. Strong grasp of secure coding practices and experience running DAST/SAST on Salesforce environments. Exposure to or working knowledge of DSOMM , OWASP, and threat modelling methodologies. Experience integrating security into CI/CD pipelines , especially in complex enterprise platforms. Ability More ❯
Posted:

Salesforce Security Engineer

Manchester, England, United Kingdom
Oliver James Associates Ltd
Salesforce Security Engineer Salary : £85,000 Locations: Leeds, Manchester, Redhill, Tunbridge Wells, Bournemouth, or Bristol (Hybrid/Flexible) We're looking for a Salesforce Security Engineer who brings strong engineering fundamentals and hands-on experience to the intersection of Salesforce development and security engineering . You'll play a critical role in enhancing the security posture … the DSOMM (DevSecOps Maturity Model) and OWASP security principles to assess and uplift Salesforce security maturity. Own and improve pipeline security including static code analysis (SAST), dynamic application security testing (DAST), dependency checks, and secure deployment patterns. Conduct threat modelling for Salesforce-based estates, identifying and mitigating risks early in the development lifecycle. … on experience with Salesforce development (particularly APEX) and a deep understanding of how engineering and security intersect. Strong grasp of secure coding practices and experience running DAST/SAST on Salesforce environments. Exposure to or working knowledge of DSOMM , OWASP, and threat modelling methodologies. Experience integrating security into CI/CD pipelines , especially in complex enterprise platforms. Ability More ❯
Posted:

Salesforce Security Engineer

Redhill, England, United Kingdom
Oliver James Associates Ltd
Salesforce Security Engineer Salary : £85,000 Locations: Leeds, Manchester, Redhill, Tunbridge Wells, Bournemouth, or Bristol (Hybrid/Flexible) We're looking for a Salesforce Security Engineer who brings strong engineering fundamentals and hands-on experience to the intersection of Salesforce development and security engineering . You'll play a critical role in enhancing the security posture … the DSOMM (DevSecOps Maturity Model) and OWASP security principles to assess and uplift Salesforce security maturity. Own and improve pipeline security including static code analysis (SAST), dynamic application security testing (DAST), dependency checks, and secure deployment patterns. Conduct threat modelling for Salesforce-based estates, identifying and mitigating risks early in the development lifecycle. … on experience with Salesforce development (particularly APEX) and a deep understanding of how engineering and security intersect. Strong grasp of secure coding practices and experience running DAST/SAST on Salesforce environments. Exposure to or working knowledge of DSOMM , OWASP, and threat modelling methodologies. Experience integrating security into CI/CD pipelines , especially in complex enterprise platforms. Ability More ❯
Posted:

Salesforce Security Engineer

Tunbridge Wells, England, United Kingdom
Oliver James Associates Ltd
Salesforce Security Engineer Salary : £85,000 Locations: Leeds, Manchester, Redhill, Tunbridge Wells, Bournemouth, or Bristol (Hybrid/Flexible) We're looking for a Salesforce Security Engineer who brings strong engineering fundamentals and hands-on experience to the intersection of Salesforce development and security engineering . You'll play a critical role in enhancing the security posture … the DSOMM (DevSecOps Maturity Model) and OWASP security principles to assess and uplift Salesforce security maturity. Own and improve pipeline security including static code analysis (SAST), dynamic application security testing (DAST), dependency checks, and secure deployment patterns. Conduct threat modelling for Salesforce-based estates, identifying and mitigating risks early in the development lifecycle. … on experience with Salesforce development (particularly APEX) and a deep understanding of how engineering and security intersect. Strong grasp of secure coding practices and experience running DAST/SAST on Salesforce environments. Exposure to or working knowledge of DSOMM , OWASP, and threat modelling methodologies. Experience integrating security into CI/CD pipelines , especially in complex enterprise platforms. Ability More ❯
Posted:

Salesforce Security Engineer

Leeds, England, United Kingdom
Oliver James Associates Ltd
Salesforce Security Engineer Salary : £85,000 Locations: Leeds, Manchester, Redhill, Tunbridge Wells, Bournemouth, or Bristol (Hybrid/Flexible) We're looking for a Salesforce Security Engineer who brings strong engineering fundamentals and hands-on experience to the intersection of Salesforce development and security engineering . You'll play a critical role in enhancing the security posture … the DSOMM (DevSecOps Maturity Model) and OWASP security principles to assess and uplift Salesforce security maturity. Own and improve pipeline security including static code analysis (SAST), dynamic application security testing (DAST), dependency checks, and secure deployment patterns. Conduct threat modelling for Salesforce-based estates, identifying and mitigating risks early in the development lifecycle. … on experience with Salesforce development (particularly APEX) and a deep understanding of how engineering and security intersect. Strong grasp of secure coding practices and experience running DAST/SAST on Salesforce environments. Exposure to or working knowledge of DSOMM , OWASP, and threat modelling methodologies. Experience integrating security into CI/CD pipelines , especially in complex enterprise platforms. Ability More ❯
Posted:
Static Application Security Testing
England
10th Percentile
£64,125
25th Percentile
£70,000
Median
£78,810
75th Percentile
£96,563
90th Percentile
£107,500