13 of 13 OWASP Jobs in London

DAST, and API security tools as part of a structured AppSec programme. Strong understanding of secure coding fundamentals and common software weaknesses, including the OWASP Top 10 and MITRE CWE Top 25. Demonstrated experience triaging, validating, and prioritising vulnerabilities, working directly with software engineers to support remediation. Ability to read ...

DAST, and API security tools as part of a structured AppSec programme. Strong understanding of secure coding fundamentals and common software weaknesses, including the OWASP Top 10 and MITRE CWE Top 25. Demonstrated experience triaging, validating, and prioritising vulnerabilities, working directly with software engineers to support remediation. Ability to read ...

Terraform) Containerisation (Docker, AKS) and serverless (Azure Functions) Monitoring and observability (Application Insights, Log Analytics) Secrets management and vulnerability scanning (Key Vault, SonarQube, OWASP) Architecture & Design Microservices and event-driven design (Service Bus, Event Grid, Kafka) Domain-Driven Design (DDD) principles Resilient and scalable system patterns (circuit breakers, retries) Integration ...

Comfortable operating independently while collaborating with multiple teams. Familiarity with cloud security, microservices, and modern architectures is a plus. Experience with tools such as OWASP ZAP, Burp Suite, Acunetix, Netsparker, Checkmarx, Veracode, Fortify, or SonarQube is highly desirable. Why Apply? Influence the security posture of a leading UK Bank ...

Score remediation Vulnerability Management Tools such as Tenable , Pentera , Varonis , Secure Score Experience coordinating remediation with technical teams Frameworks & Security Models MITRE ATT&CK, OWASP Top 10 Exposure to zero-trust principles Understanding of encryption, certificate management, secrets management Scripting & Automation PowerShell (essential) Python or Bash desirable Security automation experience ...

techniques and supply-chain risks. Cloud & Frameworks: Familiarity with AWS/Azure/GCP security and industry standards (NIST AI RMF, ISO 27001, OWASP Top 10 for LLMs, MITRE ATLAS). Consulting Skills: Ability to translate complex technical risks into actionable guidance for senior stakeholders. Preferred Skills Certifications: CISSP, CCSP ...

Zero Trust and micro-segmentation. Demonstrate a strong understanding of IAM including RBAC, ABAC, PAM, provisioning, compliance and SSO. Apply threat-modelling approaches including OWASP, PASTA, STRIDE, MITRE ATT&CK, threat intelligence and threat hunting. Desirable Experience Design and assure secure network architectures and enterprise security solutions. Designing or assuring ...

Science, Cybersecurity or related subject (or UK Master's as alternative) 3-5 years commercial penetration testing experience Strong understanding of offensive security techniques, OWASP Top 10, MITRE ATT&CK Deep knowledge of operating systems, networking protocols, and system architecture Experience with penetration testing tools (Burp Suite, Metasploit, custom scripts ...

finance systems, CRM and people related software) are well integrated to eliminate data silos. * Oversee application governance, lifecycle management, and secure development aligned with OWASP ASVS. * Provide strategic guidance on architecture, integrations, and data integrity, aligned with firm-wide enterprise architecture. * Stay abreast of emerging tech trends, such as artificial ...

major cloud providers including Azure, AWS, and Google Cloud. Demonstrates proficiency in industry security standards like ISO/IEC 27001, NIST 800-53, and OWASP principles. Expert in executing cloud security solutions, particularly for identity management, networking, and encryption. Possesses solid knowledge of system logging, monitoring, SIEM technologies, threat detection ...

credibility. Key Responsibilities • Own and improve the firm’s applications landscape (custom and COTS)• Define and implement SDLC and Secure SDLC (aligned to OWASP ASVS)• Lead application governance, lifecycle management, and integrations• Improve engagement and outcomes with Partners and fee earners• Oversee releases, change, testing, and prioritisation across ...

guidance to mitigate risks and improve the organization's security posture. Compliance and Standards: Ensure testing aligns with industry regulations and security standards (e.g., OWASP, PCI-DSS). Continuous Research: Stay updated on emerging threats, tools, and techniques to enhance testing methodologies. Skills and Experience Required: Must have graduated/ ...

Cyber Security Engineer** AWS security skills are a must have for this role – EC2 incidence related. Being able to show your thought process behind this is also critical. ** Salary: £80,000–£90,000 per year ...