7 of 7 Remote/Hybrid Dynamic Application Security Testing Jobs in London

Contract Role AppSec Engineer/Application Security Engineer London/Manchester/Glasgow/Hybrid 12 months initial Inside IR35 Role Overview: Job Title: AppSec Engineer/Application Security Engineer Location: Hybrid 2 days onsite per week (London/Manchester/Glasgow) Contract Type: Contract Duration … IR35) Sector: Banking Key Skills & Experience AppSec Engineer, experience with: The software security landscape: CVEs, CWEs, common software vulnerability types SAST, SCA, and DAST, including the strengths and weaknesses of each At least one programming language (e.g. Java, Go) At least one major cloud provider (e.g. AWS, GCP, Azure ...

Contract Role – AppSec Engineer/Application Security Engineer – London/Manchester/Glasgow/Hybrid – 12 months initial – Inside IR35 Role Overview: Job Title: AppSec Engineer/Application Security Engineer Location: Hybrid – 2 days onsite per week (London/Manchester/Glasgow) Contract Type: Contract Duration … IR35) Sector: Banking Key Skills & Experience AppSec Engineer, experience with: The software security landscape: CVEs, CWEs, common software vulnerability types SAST, SCA, and DAST, including the strengths and weaknesses of each At least one programming language (e.g. Java, Go) At least one major cloud provider (e.g. AWS, GCP, Azure ...

proactive, hands-on Security Consultant looking to make a real impact in a major technology transformation? Here's your chance to join a leading UK Bank on an exciting 6-month contract, helping modernise their tech stack while maintaining trust and security at every step. About the Role … someone with a blend of technical expertise and delivery mindset: Hands-on application security experience: secure coding, threat modelling, SAST/DAST tooling. Strong knowledge of SDLC and CI/CD integration, with experience securing software throughout its lifecycle. Pragmatic, delivery-focused, and able to take ownership ...

Senior Product Security Engineer** (Contract) Duration: 8 Months (Possibility for extension) Location: London/Hybrid (2 days per week on site) Rate: A highly competitive Umbrella Day Rate is available for suitable candidates Role Overview As a Senior Product Security Engineer, you will be an essential partner … assessments, and regulatory compliance. Technical Proficiency: Experience working with CI/CD teams to implement security technologies in the pipeline, including SAST, DAST, and SCA tools. Collaborative Spirit: A track record of partnering with cross-functional teams to deliver impactful security initiatives. Candidates will need to show ...

appoint a Senior Azure Cloud Engineer. This is a hands-on senior role where youll take ownership of Azure infrastructure, DevOps practices, and cloud security, working closely with architects and development teams in an agile environment. The platform is API-driven and operates at scale, so reliability, performance … Proven Infrastructure-as-Code expertise (Terraform, Bicep/ARM) Experience with Azure DevOps, GitHub, and CI/CD pipelines Familiarity with DevSecOps, SAST/DAST, and cloud monitoring Confident communicator with a pragmatic, delivery-focused mindset This is an opportunity to join a business where cloud engineering is central ...

Contract Role – Senior Golang/Java Security Engineer – London/Manchester/Glasgow/Hybrid – 12 months initial – Inside IR35 Role Overview: Job Title: Senior Golang/Java Security Engineer Location: Hybrid – 2 days onsite per week (London/Manchester/Glasgow) Contract Type: Contract Duration: 12 months … Security Engineer experience with: Golang/Go or Java The software security landscape: CVEs, CWEs, common software vulnerability types SAST, SCA, and DAST, including the strengths and weaknesses of each At least one major cloud provider (e.g. AWS, GCP, Azure) REST API design HTTP Authentication Linux ...

assess evidence such as pipeline logs, approvals, artefact integrity/signing, access controls, and configuration baselines. Validate security posture via SAST/DAST scans, dependency and licence reviews, container/image policies, and supply-chain controls. Evaluate logging, monitoring, and observability practices. Map findings to compliance frameworks (e.g. ...