126 to 150 of 211 OWASP Jobs in London

testing, and fixing complex vulnerabilities A proven background in credit cards, payments, or financial transaction systems Understanding of modern application architectures (APIs, microservices, cloud platforms – likely Azure) Familiarity with OWASP Top 10, SAST/DAST, and a variety of pen testing techniques A desire to build and lead a team, while remaining technical and practical day to day Right to More ❯

Cybersecurity Consultant - CISSP, OWASP, Azure Up to £495 per day (Inside IR35) London/Hybrid (3 days per week in London) 12 months initially My client is a London-based firm who urgently require a Cybersecurity Consultant with proficiency in Azure, with CISSP and ideally OWASP (for Application Security) certification to play a key role in a small project team … as analysis and reporting. Key Requirements: Proven commercial expertise as a Cyber/Info Security Consultant Previous experience within a large, complex enterprise-scale organisation Information Security certifications (CISSP, OWASP) Demonstrable experience of working in Application Security Expertise within Azure (Cloud platform) Ability to communicate highly technical problems/solutions to non-technical audiences across multiple geographical regions/sites … days per week to the London office Nice to have: Bachelor's Degree in Computer Science/Engineering or related field Expertise in Application Security with expert knowledge of OWASP Top Ten Immediate Availability What you need to do now: If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV More ❯

googling, stack overflow, etc). Flexible working hours, willing to take part in a 24x7 support organization. Positive service-oriented personality. Proven technology skills. Proficient with Mac, Windows, Linux. OWASP top 10 knowledge. Web application security knowledge. Mobile application security knowledge. Nice to haves Your very own bug bounty profile. CEH, CPT, CEPT, CPEN, OSWE, EWPT or EWPTX certificates are More ❯

in defining roadmaps, technical architecture, and deliverables. Experience in balancing risk management with company objectives and opportunities. Awareness and experience with“well-architected”security frameworks such as CSA-CCM, OWASP SAMM, or similar cloud, infrastructure, or application security frameworks. Existing experience building and operating security for distributed systems at scale. You’ve previously helped recruit and shape brilliant engineering teams. More ❯

security gateways, SSO, CASB, DLP, IDS, IPS, NAC. Knowledge of the financial services industry and asset management (preferred). Strong understanding of application security and related technologies. Familiarity with OWASP Top 10, SANS Top 20, ISO27001/2, and security best practices. Our promise to you: Competitive salary, discretionary bonus, and comprehensive benefits including holiday allowance, pension, healthcare, life assurance More ❯

team, contributing to an improved Bank security posture. Analytical skills to interpret data and provide insights into threats facing the bank. Awareness of common Cyber Incidents and Security breaches (OWASP). Knowledge or experience in SOC2, ISO 27001, PCI DSS, and GDPR. Previous experience working within an organisation's Cyber Incident Response function. Hands-on experience with Information Security tools. More ❯

suit your work/life balance. Qualifications 8+ years of experience in IoT security, preferably in the medical device or the pharmaceutical industry. Proficiency in security frameworks (e.g., NIST, OWASP, MITRE ATT&CK, PASTA, STRIDE) and standards such as FDA cybersecurity guidance. Experience assessing security risks using industry standard methods (penetration test results, threat modeling, security testing) and determining residual More ❯

and as part of a team Ability to travel to meet business needs Preferred competencies: Relevant cyber security or other qualifications, certifications such as CSX-P, CDPSE, SSCP, CAP, OWASP, PCI DSS Security Cleared with potential to gain enhanced clearances Experience implementing privacy solutions based on the requirements of the EU GDPR and UK Data Protection Act 2018 Good awareness More ❯

including AWS Lambda, Spring Boot, NodeJS, Python FastAPI, Oracle, PostgreSQL and MongoDB. Build solutions as part of a DevSecOps and Agile ecosystem supported by tooling including Atlassian, Jenkins, GitLab, OWASP and AWS componentry. Ensure your solution works in a reliable and resilient way using Site Reliability Engineering methods to increase availability while reducing costs and callouts. Help the client and More ❯

Network Security : Cisco, Palo Alto, NAC DLP tools: Microsoft Purview, Tessian Strong scripting abilities (PowerShell, Python, Perl) Familiarity with vulnerability management , penetration testing, and security frameworks (NIST, ISO 27001, OWASP, GDPR) Proficient in managing compliance and infrastructure hardening against CIS benchmarks Qualifications: Degree in Computer Science, Information Security or related field Certifications such as CISSP, CEH, OSCP, SANS, or ISACA More ❯

protocols. Experience with security tools (SIEM, IDS/IPS, vulnerability scanners). Familiarity with cloud platforms (AWS, Azure, GCP) and security frameworks. Knowledge of secure coding practices and vulnerabilities (OWASP Top Ten). Preferred Skills: Experience with securing AI models, data pipelines, or platforms. Knowledge of adversarial machine learning and AI attack vectors. Certifications such as CISSP, CEH, OSCP. Proficiency More ❯

security services (e.g., AWS IAM, VPC, KMS, GuardDuty, Security Hub, Inspector). Hands-on experience with cloud-native security tools, frameworks, and standards (e.g., CIS AWS Foundations Benchmark, NIST, OWASP). Experience with secure SDLC practices and DevSecOps methodologies. Technical Skills : Strong knowledge of threat modeling methodologies (e.g., STRIDE, PASTA, OCTAVE). Familiarity with cloud-native security tools for monitoring More ❯

security services (e.g., AWS IAM, VPC, KMS, GuardDuty, Security Hub, Inspector). Hands-on experience with cloud-native security tools, frameworks, and standards (e.g., CIS AWS Foundations Benchmark, NIST, OWASP). Experience with secure SDLC practices and DevSecOps methodologies. Technical Skills : Strong knowledge of threat modeling methodologies (e.g., STRIDE, PASTA, OCTAVE). Familiarity with cloud-native security tools for monitoring More ❯

and provide detailed documentation of findings, including how these can be exploited and remediation steps. Skills Excellent problem-solving and communication skills to engage with team members. Understanding of OWASP Top 10 vulnerabilities and secure web application development. Experience with penetration testing tools such as Burp Suite, OWASP ZAP and Nikto. Experience with vulnerability reporting, including risk assessment and remediation More ❯

Git. Experience working within an Agile environment, in particular Scrum, and applying supporting practices. In addition, any experience in the following would be beneficial: Knowledge and experience working to OWASP ASVS or equivalent application security standards. Experience of recent .NET versions. Experience in developing containerized applications with Docker and using orchestration such as Kubernetes. Experience in NoSQL databases such as More ❯

applications in production environments. Common architectural patterns (e.g. layered, hexagonal, clean). Databases (Including concepts like indexes and transaction scopes). Performance and monitoring. Security practices (e.g. understanding of OWASP Top 10). Be comfortable safely refactoring legacy code. Be able to work alongside client-facing support and product owners to analyse business requirements. Be keen to learn new technologies More ❯

performance analysis and tuning using memory and thread dump analysis. Work with databases including Oracle, PL/SQL, and MongoDB. Understand and implement secure coding practices in line with OWASP guidelines. Collaborate in a Kubernetes-based environment. Integrate with identity and access management platforms (e.g., ForgeRock). Handle Kafka-based data streaming and understand Kafka architecture. Utilize enterprise-level Elastic More ❯

compliance teams Skills You’ll Need: 2–5+ years in penetration testing (network, web, cloud, etc.) Mastery of tools like Burp Suite, Metasploit, Cobalt Strike, Nmap Deep knowledge of OWASP Top 10, MITRE ATT&CK, and exploitation techniques Strong communication skills (you’ll explain risks to both tech & non-tech stakeholders) Certifications like OSCP, eCPPT, CREST CPSA/CRT, or More ❯

Previous consultancy or client-facing experience. Eligibility for or possession of UK Security Clearance (preferred but not required). Solid understanding of common attack techniques and vulnerability classes (e.g., OWASP Top 10, MITRE ATT&CK). Strong familiarity with tools such as Burp Suite, Nmap, Metasploit, etc. Excellent communication and reporting skills. Required Qualifications: Demonstrable experience in penetration testing (minimum More ❯

forward and see them implemented. Experience; Good understanding of the configuration of Power Pages An understanding of security best practices around Power Pages, with knowledge of items such as OWASP Hands on experience with Dataverse and Dataverse for Teams as part of implementing Power Platform solutions. Hands on experience in the setup of Continuous Integration (CI) and Continuous Delivery (CD More ❯

backend code to identify security flaws, misconfigurations, or vulnerabilities. Threat Modelling: Lead and contribute to threat modeling sessions - analyse how our products handle data, map potential attack vectors (especially OWASP Top 10), and design mitigation strategies. Secure Development Practices: Help the development team adopt secure coding practices, identify systematic security issues, and uplift the overall engineering team's security awareness. … improvement. Mandatory Experience: Solid experience as a developerhaving utilised (JavaScript/Python) Ability to read and understand code quickly, including unfamiliar codebases Familiarity with modern security tools (e.g., Snyk, OWASP ZAP, Burp Suite) Strong understanding of common web vulnerabilities (OWASP Top 10) Experience with threat modeling and secure design principles Comfortable translating technical findings into prioritised improvements for the engineering More ❯

testing, and fixing complex vulnerabilities A proven background in credit cards, payments, or financial transaction systems Understanding of modern application architectures (APIs, microservices, cloud platforms – likely Azure) Familiarity with OWASP Top 10, SAST/DAST, and a variety of pen testing techniques A desire to build and lead a team, while remaining technical and practical day to day Right to More ❯

years in cybersecurity, with at least 1 year in penetration testing, cloud security, or red teaming A strong understanding of offensive security methodology and vulnerability frameworks such as the OWASP Testing Guide, TIBER EU, MITRE ATT&CK, PTES, or others An ability to analyze root causes and deliver technological recommendations to our clients Excellent oral and written communication skills Experience More ❯

with our Legal and Privacy as well as the wider Technology team. Internally-facing, you will help train and upskill your fellow Two Circlers on topics such security awareness, OWASP Top 10 and Security by Design, as well as understanding and feeding into their processes and workflows, to keep good security practice on the agenda. Externally, this role will also More ❯

ago London, England, United Kingdom £40,000.00-£50,000.00 1 month ago London, England, United Kingdom 1 week ago London, England, United Kingdom 2 weeks ago Cybersecurity Consultant - CISSP, OWASP, Azure Operational Information Security Officer London, England, United Kingdom 2 weeks ago London, England, United Kingdom 3 weeks ago Business Information Security Officer, Europe London, England, United Kingdom 22 hours More ❯