51 to 75 of 216 Static Application Security Testing Jobs in England

Social network you want to login/join with: Senior Application Security Engineer, London col-narrow-left Client: Copper.co Location: London, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Reference: 75101a751ac0 Job Views: 15 Posted: 22.06.2025 Expiry Date: 06.08.2025 col-wide Job Description: Copper is a digital asset technology company dedicated to … trade and settle directly from the safety of their MPC-secured wallets. By reducing settlement time for transfers to a few milliseconds (without blockchain network dependency) and offering enhanced security measures, ClearLoop is rapidly reshaping the way asset managers trade and manage capital. In addition to industry-leading security certifications, Copper has one of the strongest insurance coverages … systemic solutions, removing the possibility of vulnerabilities before they can manifest. Domain Knowledge: Strong understanding of the S-SDLC. Intimate knowledge of security-specific tooling domains (e.g. SCA, SAST, DAST, MAST) and their effective integration within the S-SDLC. Awareness of microservice architecture and associated common deployment patterns a must. Security Industry Knowledge: Deep familiarity with security More ❯

have been building the bank of the future from the ground up, offering you the chance to join us and make a significant impact. Job summary As a Product Security Lead in the Cybersecurity & Technology Controls (CTC) team for the International Consumer Bank, you will work proactively with your technology and business colleagues to identify and quantify security issues within their business and empower them to take decisive risk decisions at speed and scale. You're a security expert with a strong mix of technical and communication skills and are passionate about enabling safe and secure innovation. You will work with some of the best and brightest cybersecurity and technology engineers to solve complex problems which … operations and cloud-native monitoring systems. Ability to read logs, understand detection rules, and propose effective threat mitigations. Knowledge of security best practices and DevSecOps methodologies. Familiarity with SAST (Static Application Security Testing), DAST (Dynamic Application Security Testing), and MAST (Mobile Application Security Testing) systems is desirable. Understanding of More ❯

are passionate about fostering a secure environment and contributing to the wider security community. What you will do Design, implement, and manage the integration of security tooling (SAST, DAST, SCA, Secrets Scanning) into our CI/CD pipelines Develop and maintain automation scripts and platforms to streamline security processes and workflows Own and operate the end-to … seamlessly into our Software Development Lifecycle (SDLC). You'll be hands-on in building, integrating, and optimizing security automation pipelines, incorporating tools for static analysis (SAST), dynamic analysis (DAST), software composition analysis (SCA), and secrets detection directly into our CI/CD processes. You will champion and manage our vulnerability management program, ensuring vulnerabilities are identified … strong passion for cybersecurity and have transitioned or are keen to focus your career on security automation and vulnerability management You have understanding on security tools like SAST, DAST, SCA, and secrets scanning solutions within a CI/CD environment (here at MoonPay we use Github) You understand the principles of vulnerability management, including prioritization frameworks (e.g., CVSS More ❯

Press space or enter keys to toggle section visibility Location London Job Type Full Time Posted Date 16-Jun-2025 Ref # 62659 We are seeking a Principal Security Engineer to lead and drive security engineering efforts across our cloud and application environments. This strategic, hands-on role requires expertise in cloud security, secure development practices … and the implementation of advanced security controls. You will serve as a leader within the Consumer Security Engineering team, driving security initiatives across cloud platforms, microservice architectures, digital products, application security, and enterprise security. You will define and build comprehensive security strategies in collaboration with developers, DevSecOps engineers, ensuring that security is seamlessly … as a plus. Strong background in DevSecOps, with experience in integrating security into CI/CD pipelines using tools like Jenkins, GitLab, or similar. Experience implementing and managing SAST/DAST tools and processes to secure application development. Deep understanding of application security, including secure coding practices, OWASP Top 10, and API security standards. Knowledge More ❯

ago Be among the first 25 applicants Direct message the job poster from RiverSafe Recruitment Manager @ RiverSafe: Helping to grow a company #cybersecurity #devops #appsec The Role The Principal Application Security Consultant is a senior-level role responsible for leading and improving application security strategies, conducting security assessments and providing expert guidance on secure development … practices. This role involves working closely with development teams, security engineers and business stakeholders to integrate security into the software development lifecycle (SDLC), mitigate risks and ensure compliance with security standards. Skills Strong knowledge of application security vulnerabilities (OWASP Top 10, CWE, SANS 25). Hands-on remediation support and vulnerability management expertise. Hands-on … Azure, GCP) and container security (Docker, Kubernetes). Ability to conduct maturity assessments and gap analysis. Familiarity with RASP technology as well as traditional security tools like SAST or DAST. Excellent communication skills to engage with developers, executives and clients. Experience in consulting and working with multiple clients on application security projects. Certifications: CISSP, OSCP, GWAPT More ❯

and backend layers Contribute to the design of test frameworks and CI/CD pipelines Collaborate with engineers, product managers, and UX to define and validate features Perform exploratory testing and champion quality throughout the SDLC Support secure deployment and testing practices in containerised environments Tech You’ll … Work With: Automation tools: Playwright, Cypress, JUnit, Jasmine Languages: JavaScript/TypeScript, Java or Kotlin DevOps & Infra: Docker, Kubernetes, GitLab CI, Bitbucket Testing tools: Postman, browser dev tools, SAST/DAST integrations Environments: Unix and Windows What You Bring: Hands-on experience building test automation from scratch Strong debugging and analytical skills Comfortable reviewing code and contributing to testable More ❯

and backend layers Contribute to the design of test frameworks and CI/CD pipelines Collaborate with engineers, product managers, and UX to define and validate features Perform exploratory testing and champion quality throughout the SDLC Support secure deployment and testing practices in containerised environments Tech You’ll … Work With: Automation tools: Playwright, Cypress, JUnit, Jasmine Languages: JavaScript/TypeScript, Java or Kotlin DevOps & Infra: Docker, Kubernetes, GitLab CI, Bitbucket Testing tools: Postman, browser dev tools, SAST/DAST integrations Environments: Unix and Windows What You Bring: Hands-on experience building test automation from scratch Strong debugging and analytical skills Comfortable reviewing code and contributing to testable More ❯

team, you'll design and build user-centric tooling that empowers development teams worldwide. You'll be responsible for architecting and coding complex integrations across our DevSecOps toolchain, driving security and efficiency into every stage of the software delivery lifecycle. Key Responsibilities Plugin Development & SupportArchitect, implement, and maintain Gradle, Maven, npm, and PyPI plugins for SBOM collection and SCA … scanning. Collaborate with security engineers to evolve plugin feature sets and ensure robust error handling and observability. Microservices & APIs Design, develop, and support RESTful microservices in Java 17 (and occasionally Go) to expose DevSecOps capabilities. Package and deploy services to OpenShift/Kubernetes clusters, ensuring scalability and high availability. DevSecOps Toolchain Integration Integrate with and extend APIs for Synopsys … including build tool/plugin authoring. Strong API design skills with experience in Java 17; familiarity with Go is a plus. DevSecOps Concepts Deep understanding of "Shift Left," SCA, SAST, SBOM, and secure SDLC principles. Production experience with Docker and Kubernetes/OpenShift. Comfort scripting in Bash on Linux-based environments. Proven ability to gather requirements, document solutions, and deliver More ❯

Senior Security Engineer, Application Security Blockchain.com is the world's leading software platform for digital assets, powering the largest production blockchain platform globally. We are driven by a passion to code, create, and ultimately build an open, accessible, and fair financial future—one line of code at a time. As we scale our platform to serve millions … of people each day, we seek a Senior Application Security Engineer to join our dedicated security team. At Blockchain.com, security is more than a set of policies—it's a core mindset. As we continue to innovate in the crypto space, you will tackle some of the most complex problems around securing a distributed financial platform. … working in highly regulated environments, with previous involvement in cryptocurrency-related projects being a strong plus. Strong knowledge of OWASP standards, Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Software Composition Analysis (SCA) tools. Familiarity with integrating these tools into CI/CD pipelines is highly desirable. Experience with security More ❯

it Simple. We aim to delight our customers by making the experience simpler, more enjoyable, and more intelligent—treating customers fairly and giving them more control of their money. Application Security Specialist As an Application Security Specialist, you will be responsible for ensuring the security of our Jaja software applications throughout their lifecycle. You will … work closely with our development teams to identify and mitigate security risks, implement best practices, and establish robust security measures to protect our applications from potential threats. Key Accountabilities Security Assessment: Conduct comprehensive security assessments of new and existing applications to identify vulnerabilities, security weaknesses, and potential risks. Threat Modeling: Collaborate with development teams to … code to identify security flaws, coding errors, and vulnerabilities, providing guidance and recommendations for remediation. Security Testing: Plan and execute security testing activities, including SAST/DAST/IAST, penetration testing, fuzz testing, and vulnerability scanning to evaluate the effectiveness of security controls and identify weaknesses. Security Compliance: Ensure that applications More ❯

Senior Application Security Architect, Woking Client: Opus Recruitment Solutions Location: Woking, United Kingdom Job Category: Other EU work permit required: Yes Job Views: 3 Posted: 26.06.2025 Expiry Date: 10.08.2025 Job Description: Opus Recruitment Solutions is seeking multiple experienced Application Security Architects to join our client's growing AppSec team. As part of the ongoing development of … their cyber security capabilities, these specialists will help shape the strategic direction of the client's application security posture, working closely with developers, product managers, and security stakeholders to embed security throughout the SDLC. Main Responsibilities: Define and enforce secure architecture standards across web, mobile, and cloud-native applications. Provide security guidance during product … Top 10, SANS CWE Top 25, and secure coding best practices. Familiarity with threat modeling methodologies such as STRIDE and architectural risk analysis. Hands-on experience with tools like SAST/DAST/IAST, Snyk, SonarQube, Burp Suite, Veracode, or similar. Strong understanding of cloud platforms and modern development architectures. Relevant certifications such as CSSLP, OSWE, GWAPT, CISSP, or equivalent More ❯

places! This is where you come in. The Opportunity As IAG Loyalty evolves into a Platform as a Service business, we’re looking for a talented and passionate Senior Application Security Engineer to join our security engineering team. You’ll have a background in software engineering and a deep interest in application and API security. You … our CI/CD pipelines, facilitate threat modelling sessions, and review security-sensitive design decisions around authentication, cryptography, and logging. You’ll also ensure that tools such as SAST, DAST, and SCA are effective and efficient, and that testing programmes — including pen testing, vulnerability scanning, and bug bounty — are delivering value. You’ll triage vulnerabilities, support engineering … vulnerabilities, including the OWASP Top 10 Proficient in coding, scripting (e.g. Python, Bash), and automating security in CI/CD Hands-on experience with security tools like SAST, DAST, and SCA Familiar with cloud environments (especially AWS), containers, and microservices Comfortable reviewing technical designs, performing threat modelling, and advising on secure architecture Strong communicator who collaborates well with More ❯

the European market. We design, develop, and deliver immersive live casino games tailored to your brand and its audience. Job Summary We are looking for a passionate and pragmatic Application Security Engineer to help us secure our software development lifecycle, perform code reviews with a security focus, and ensure that our applications remain safe and resilient in … collaborate closely with developers, DevOps, and product teams to build and maintain secure-by-design systems. Responsibilities: Review architecture, design, and code across services and platforms to identify potential security weaknesses. Integrate security best practices into the SDLC, including secure coding standards, static/dynamic analysis, and threat modeling. Perform manual and automated code reviews to catch … like Java, Python, C++ etc.. Familiarity with CI/CD pipelines and how to embed security into build and deployment processes. Experience with application security tools (SAST, DAST, SCA, IAST, etc.). Good understanding of cloud infrastructure and securing applications in production (AWS/GCP/Azure, containers, Kubernetes, etc.). Solid communication skills and the ability More ❯

Policy Expert - Senior Security Engineer Are you ready to transform the insurance industry? Policy Expert is a forward-thinking business that loves to get things done. Leveraging proprietary technology and smart data, we offer reliable products and a wow customer experience. Having achieved rapid growth since being founded in 2011, we've won over 1.5 million customers in Home … by Review Centre since 2013. Hear from our team about what it's like working at Policy Expert • About the DevSecOps team: At PolicyExpert, the DevSecOps team focuses on application, cloud, and cybersecurity to ensure security is integrated throughout the software development lifecycle. Our goal is to empower tech teams to build and deploy secure applications and platforms … in our applications and APIs. Who are you: Proven experience delivering web application and API security improvements across an organisation. Proficiency with DevSecOps and SDLC tooling, including SAST, DAST, SCA, ASPM and CSPM. Hands-on experience with IAM solutions such as Auth0, or AWS Cognito Strong background in threat modelling and vulnerability management. Strong background in AWS, cloud More ❯

We are looking for a hands-on Information Security Professional with extensive practical experience in information security best practices and application in an enterprise cloud SaaS environment. The ideal candidate will have a strong background in AWS, experience with ISO 27001, SOC 2, and the ability to communicate the importance of information security across all business … in cloud software-as-a-service (SaaS), leveraging cutting-edge technology to deliver exceptional solutions hosted on Amazon AWS. We are committed to maintaining the highest standards of information security to protect our clients and uphold our reputation in the industry. We are seeking a dedicated and experienced Information Security Professional to join our team and lead our … Collaborate closely with Engineering and Product teams to integrate security into the development lifecycle using techniques such as STRIDE threat modeling and security testing (SCA and SAST) in CI/CD pipelines. Promote secure-by-design principles and best practices within the company culture. Risk Management: Facilitate risk workshops and document information security risks and treatments More ❯

Join to apply for the Principal Security Engineer role at Capco . Capco is a global technology and business consultancy focused on the financial services sector. We are committed to diversity and inclusion, fostering an environment where everyone can be themselves and contribute uniquely. Why Join Capco? Work on engaging projects with leading banks, transforming the financial industry, supported … embedding security best practices within engineering teams. Responsibilities Develop and implement security strategies for infrastructure, networks, and cloud environments. Lead security initiatives across the SDLC, including SAST, DAST, SCA, and container scanning using tools like CheckmarxOne, Prisma Cloud. Collaborate with teams to embed security-by-design principles. Design endpoint and cloud security solutions. Ensure cloud … in secure development practices. Test and monitor security tools for emerging threats. Skills & Expertise Knowledge of application security and tools like CheckmarxOne, Prisma Cloud. Experience with SAST, DAST, SCA, container scanning, and integrating these into pipelines. Expertise in endpoint, cloud security, and network protection. Proficiency with AWS, Azure, or GCP. Understanding of data security principles. More ❯

Up to c. £225k Comp Package | Hybrid Working - 3 Days in Office] We’re partnering with a leading pensions investment firm undergoing a major cloud-native technology transformation, embedding security into every layer of software delivery. This is a rare opportunity to join a highly technical security engineering team with full leadership backing, directly shaping secure-by-design … systems that safeguard billions in assets and over a million pension holders. If you’re passionate about automation, developer enablement, and driving security culture within engineering-led teams, this role offers real influence and impact at scale... Key Responsibilities Integrate security controls across … the full software development lifecycle - from threat modelling and design to secure coding and CI/CD pipeline enforcement Build and automate security tooling into developer workflows, including SAST, DAST, secrets management, dependency scanning and policy-as-code guardrails Create reusable infrastructure-as-code modules and templates to enable consistent security patterns across cloud-native deployments (AWS focus More ❯

Up to c. £225k Comp Package | Hybrid Working - 3 Days in Office] We’re partnering with a leading pensions investment firm undergoing a major cloud-native technology transformation, embedding security into every layer of software delivery. This is a rare opportunity to join a highly technical security engineering team with full leadership backing, directly shaping secure-by-design … systems that safeguard billions in assets and over a million pension holders. If you’re passionate about automation, developer enablement, and driving security culture within engineering-led teams, this role offers real influence and impact at scale... Key Responsibilities Integrate security controls across … the full software development lifecycle - from threat modelling and design to secure coding and CI/CD pipeline enforcement Build and automate security tooling into developer workflows, including SAST, DAST, secrets management, dependency scanning and policy-as-code guardrails Create reusable infrastructure-as-code modules and templates to enable consistent security patterns across cloud-native deployments (AWS focus More ❯

and backend layers Contribute to the design of test frameworks and CI/CD pipelines Collaborate with engineers, product managers, and UX to define and validate features Perform exploratory testing and champion quality throughout the SDLC Support secure deployment and testing practices in containerised environments Tech You’ll … Work With: Automation tools: Playwright, Cypress, JUnit, Jasmine Languages: JavaScript/TypeScript, Java or Kotlin DevOps & Infra: Docker, Kubernetes, GitLab CI, Bitbucket Testing tools: Postman, browser dev tools, SAST/DAST integrations Environments: Unix and Windows What You Bring: Hands-on experience building test automation from scratch Strong debugging and analytical skills Comfortable reviewing code and contributing to testable More ❯

Application Security Architect position in Crawley, West Sussex, with Opus Recruitment Solutions. Job Details: Location: Crawley, West Sussex, United Kingdom Category: Other Posted: 26.06.2025 Expiry Date: 10.08.2025 Job Description: Opus is seeking multiple experienced Application Security Architects to join our client's expanding AppSec team. The role involves shaping the strategic direction of application security, collaborating with developers, product managers, and security stakeholders to embed security throughout the SDLC. Main Responsibilities: Define and enforce secure architecture standards across web, mobile, and cloud-native applications. Provide security guidance during product development, including threat modeling, secure coding, design reviews, and architecture assessments. Lead the implementation of DevSecOps practices, integrating security into CI … Deep knowledge of OWASP Top 10, SANS CWE Top 25, and secure coding best practices. Familiarity with threat modeling methodologies such as STRIDE. Hands-on experience with tools like SAST, DAST, IAST, Snyk, SonarQube, Burp Suite, Veracode, or similar. Strong understanding of cloud platforms and modern development architectures. Relevant certifications such as CSSLP, OSWE, GWAPT, CISSP, or equivalent are advantageous. More ❯

Social network you want to login/join with: Senior Application Security Architect, Nottingham Client: Opus Recruitment Solutions Location: Nottingham, United Kingdom Job Category: Other - EU work permit required: Yes Job Views: 3 Posted: 26.06.2025 Expiry Date: 10.08.2025 Job Description: Opus is seeking multiple experienced Application Security Architects to join our client's expanding AppSec team. … As the client continues developing their cyber team, they seek AppSec specialists to shape their application security strategy, collaborating with developers, product managers, and security stakeholders to embed security throughout the SDLC. Main Responsibilities: Define and enforce secure architecture standards across web, mobile, and cloud-native applications. Provide security guidance during product development, including threat … knowledge of OWASP Top 10, SANS CWE Top 25, and secure coding best practices. Familiarity with threat modeling methodologies like STRIDE and architectural risk analysis. Hands-on experience with SAST/DAST/IAST tools such as Snyk, SonarQube, Burp Suite, Veracode, or similar. Strong understanding of cloud platforms and modern development architectures. Relevant certifications such as CSSLP, OSWE, GWAPT More ❯

Social network you want to login/join with: Senior Application Security Architect, Preston, Lancashire Client: Opus Recruitment Solutions Location: Preston, Lancashire, United Kingdom Job Category: Other EU work permit required: Yes Job Views: 3 Posted: 26.06.2025 Expiry Date: 10.08.2025 Job Description: Opus is looking for multiple experienced Application Security Architects to join our client's … growing AppSec team. As our client continues developing and improving their cyber team, they seek AppSec specialists to shape the strategic direction of their application security posture, collaborating with developers, product managers, and security stakeholders to embed security throughout the SDLC. Main Responsibilities: Define and enforce secure architecture standards across web, mobile, and cloud-native applications. … Deep knowledge of OWASP Top 10, SANS CWE Top 25, and secure coding practices. Familiarity with threat modeling methodologies such as STRIDE and risk analysis. Experience with tools like SAST/DAST/IAST, Snyk, SonarQube, Burp Suite, Veracode, or similar. Strong understanding of cloud platforms and modern development architectures. Relevant certifications such as CSSLP, OSWE, GWAPT, CISSP are advantageous. More ❯

Social network you want to login/join with: Senior Application Security Architect, Basildon Client: Opus Recruitment Solutions Location: Basildon, United Kingdom Job Category: Other - EU work permit required: Yes Job Views: 3 Posted: 26.06.2025 Expiry Date: 10.08.2025 Job Description: Opus is seeking multiple experienced Application Security Architects to join our client's expanding AppSec team. … As our client enhances their cyber team, they seek specialists to shape their application security strategy, collaborating with developers, product managers, and security stakeholders to embed security throughout the SDLC. Main Responsibilities: Define and enforce secure architecture standards across web, mobile, and cloud-native applications. Provide security guidance during product development, including threat modeling, secure … OWASP Top 10, SANS CWE Top 25, and secure coding practices. Familiarity with threat modeling methodologies like STRIDE and architectural risk analysis. Hands-on experience with tools such as SAST/DAST/IAST, Snyk, SonarQube, Burp Suite, Veracode, or similar. Strong understanding of cloud platforms and modern architectures. Relevant certifications like CSSLP, OSWE, GWAPT, CISSP, or equivalent are advantageous. More ❯

Social network you want to login/join with: Opus are looking for multiple experienced Application Security Architects to join our clients growing AppSec team. As our client continues the development and improvement of their overall cyber team, they’re looking for AppSec specialists to shape the strategic direction of our clients application security posture, collaborating … with developers, product managers, and security stakeholders to ensure that security is embedded throughout the SDLC. Main Responsibilities: Define and enforce secure architecture standards and frameworks across web, mobile, and cloud-native applications. Provide security guidance throughout product development, including threat modeling, secure coding, design reviews, and architecture assessments. Lead the implementation of DevSecOps practices, integrating security … SANS CWE Top 25, and secure coding best practices. Familiarity with threat modelling methodologies such as STRIDE and architectural risk analysis. Hands-on experience with tools such as SAST/DAST/IAST, Snyk, SonarQube, Burp Suite, Veracode, or similar. Strong understanding of cloud platforms) and modern development architectures Relevant certifications such as CSSLP, OSWE, GWAPT, CISSP , or equivalent are More ❯

Social network you want to login/join with: Opus are looking for multiple experienced Application Security Architects to join our clients growing AppSec team. As our client continues the development and improvement of their overall cyber team, they’re looking for AppSec specialists to shape the strategic direction of our clients application security posture, collaborating … with developers, product managers, and security stakeholders to ensure that security is embedded throughout the SDLC. Main Responsibilities: Define and enforce secure architecture standards and frameworks across web, mobile, and cloud-native applications. Provide security guidance throughout product development, including threat modeling, secure coding, design reviews, and architecture assessments. Lead the implementation of DevSecOps practices, integrating security … SANS CWE Top 25, and secure coding best practices. Familiarity with threat modelling methodologies such as STRIDE and architectural risk analysis. Hands-on experience with tools such as SAST/DAST/IAST, Snyk, SonarQube, Burp Suite, Veracode, or similar. Strong understanding of cloud platforms) and modern development architectures Relevant certifications such as CSSLP, OSWE, GWAPT, CISSP , or equivalent are More ❯