51 to 75 of 217 OWASP Jobs in London

including but not limited to the following core areas: Build verification Alert and Monitoring Backup and Restore Resilience and Recovery Logging, Audit and House Keeping Release Management Work Instructions OWASP "top ten" security tests Experience with CI/CD pipelines, Jenkins, and test automation frameworks. Knowledge of cloud platforms (AWS/Azure), infrastructure monitoring, and IT service management. Familiarity with More ❯

not limited to the following core areas: Build verification Alert and Monitoring Backup and Restore Resilience and Recovery Logging, Audit and House Keeping Release Management Config Management Work Instructions OWASP "top ten" security tests Experience with CI/CD pipelines, Jenkins, and test automation frameworks. Knowledge of cloud platforms (AWS/Azure), infrastructure monitoring, and IT service management. Familiarity with More ❯

and business stakeholders is essential. Good experience working with security issues in software architecture, software development, e.g static and/or dynamic code analysis and tools, software dependency check, OWASP Top10 testing, application threat modelling etc. Good experience working in an Agile software development environment, with classic applications as well as microservices, using modern code processing and continuous integration and More ❯

vulnerability scanning to evaluate the effectiveness of security controls and identify weaknesses. Security Compliance: Ensure that applications comply with relevant security standards, regulations, and industry best practices, such as OWASP Top 10, OWASP ASVS, MAVS, PCI DSS, and GDPR. Security Architecture: Assist in designing and implementing secure application architectures, including authentication mechanisms, access controls, encryption, and secure communication protocols. Incident More ❯

and developer engagement Application Security Engineer - Requirements: 3–5+ years of experience in application security or secure software development Strong understanding of common vulnerabilities and how to prevent them (OWASP Top 10) Experience with CI/CD pipelines and integrating AppSec tooling Familiarity with modern programming languages (JavaScript, Java, Python) Excellent communication skills and a collaborative mindset when working with More ❯

your background might be better suited to. 8+ years of experience in IoT security, preferably in the medical device or the pharmaceutical industry. Proficiency in security frameworks (e.g., NIST, OWASP, MITRE ATT&CK, PASTA, STRIDE) and standards such as FDA cybersecurity guidance Experience assessing security risks using industry standard methods (penetration test results, threat modeling, security testing) and determining residual More ❯

and self-starter Deep understanding of common as well as emerging vulnerabilities and how they manifest in different types of applications (web applications, thick clients, APIs, etc) Familiarity with OWASP Top 10, SANS Top 25, NIST/CSC, CIS etc. Applied understanding of topics such as authentication, access control, encryption, cloud security, operating system security, network security, database security. Familiarity More ❯

Management, Cosmos DB, and SQL and Cloud networking architecture: VNets, application gateways, private and service endpoints, and firewalls. Secure Software Development: Deep experience implementing effective secure coding practices (e.g., OWASP Top 10, SAST, DAST, SonarCloud). You can seamlessly integrate security into the SDLC with a shift-left approach. Cloud Security Tools: Practical experience with Azure Sentinel, Defender, and tools More ❯

distributed teams across multiple regions and time zones. Ability to do research autonomously to always be ahead of any security threat. SSDLC practices in DevOps, CI/CD environment. OWASP Top 10, SANS CWE, OpenSAMM, BSIMM, etc. Penetration testing, vulnerability scanning. Design security monitoring tools. Designing pipelines that make use of SCA, SAST, DAST, IAST and RASP solutions. Qualifications: SANS More ❯

skills including strong verbal and written skills. What We’d Love: Experience of Darktrace, native AWS and Microsoft Security functions. Understanding of Security standards and frameworks, e.g.: NIST, CIS, OWASP, ISO 27001. Awareness of pentesting, threat hunting and red teaming in operational environments. Networking principles including TCP/IP, WAN's, LAN's, and commonly used Internet protocols. Security incident More ❯

EKS, AKS, OpenShift), CI/CD pipelines, and infrastructure as code (Terraform) Security integration experience across the DevSecOps lifecycle, including: SAST, DAST, SCA, and IAST tools (e.g., Checkmarx, Veracode, OWASP ZAP) Secrets management tools like HashiCorp Vault Vulnerability management solutions such as Prisma Cloud Testing frameworks like Selenium Familiarity with JIRA, Confluence, and GitLab/Jenkins-based CI/CD More ❯

product and design process Own key areas of the product in terms of design and development Demonstrate knowledge of software and security best practices (i.e., object-oriented design patterns, OWASP Top 10, SOLID design principles) Deliver solutions that scale Perform other duties as assigned Qualifications: 5-8+ years of software development experience with excellent C# and TypeScript/JavaScript More ❯

tools such as Jest, Cypress or similar. Proficient with source control tools like Git for collaborative development and versioning. Knowledge of secure coding practices and familiarity with standards like OWASP Top Ten and SANS CWE, with a commitment to adapting to evolving security threats through audits and ongoing education. Team-oriented with exceptional collaboration and communication skills, both verbal and More ❯

tasks simultaneously. Experience in data analysis. Write & execute restful API testing using tools such as Postman, Soap UI. Can implement & maintain soak, stress and system tests. Knows top 10 OWASP software vulnerabilities and how to exploit them. Ensures all code is reviewed before changes are checked into master. ISTQB certified. Can push, pull source code into the appropriate repo such More ❯

Networking, Security, Monitoring) Infrastructure as Code (Terraform) Scripting: Python, Bash, PowerShell OS & Tooling: Linux, Docker, Kubernetes, GitLab CI/CD testing & automation (GitLab, JMeter, PyTest) Domain Expertise: Security Products : OWASP, encryption (AES, RSA), PKI, SIEM & Directory Tech : Active Directory, GPOs, IAM, SSO, OAuth2, SAML #J-18808-Ljbffr More ❯

AWS or Azure). Assist with containerisation (Docker/Kubernetes). Support implementation of authentication systems (OAuth 2.0, Auth0, AWS Cognito). Gain exposure to security best practices (e.g., OWASP). Work on RESTful API design and consumption. Collaborate on version control practices using Git, documentation, and code reviews. Desired Skills: Passion for software development and continuous learning. Some frontend More ❯

AWS or Azure). Assist with containerisation (Docker/Kubernetes). Support implementation of authentication systems (OAuth 2.0, Auth0, AWS Cognito). Gain exposure to security best practices (e.g., OWASP). Work on RESTful API design and consumption. Collaborate on version control practices using Git, documentation, and code reviews. Desired Skills: Passion for software development and continuous learning. Some frontend More ❯

AWS or Azure). Assist with containerisation (Docker/Kubernetes). Support implementation of authentication systems (OAuth 2.0, Auth0, AWS Cognito). Gain exposure to security best practices (e.g., OWASP). Work on RESTful API design and consumption. Collaborate on version control practices using Git, documentation, and code reviews. Desired Skills: Passion for software development and continuous learning. Some frontend More ❯

dashboards. End-to-End Investigations & Network Protocols : Extensive experience with end-to-end investigations, handling security incidents, and deep knowledge of security network protocols, along with familiarity with the OWASP Top 10 vulnerabilities. EDR Expertise : Hands-on experience managing EDR tools, including end-to-end operations from deployment and configuration to analysis and response. Scripting & Automation : Knowledge of scripting languages More ❯

EKS, AKS, OpenShift), CI/CD pipelines, and infrastructure as code (Terraform) Security integration experience across the DevSecOps lifecycle, including: SAST, DAST, SCA, and IAST tools (e.g., Checkmarx, Veracode, OWASP ZAP) Secrets management tools like HashiCorp Vault Vulnerability management solutions such as Prisma Cloud Testing frameworks like Selenium Familiarity with JIRA, Confluence, and GitLab/Jenkins-based CI/CD More ❯

and implement security tools for secure code analysis and runtime protection. To be considered for this role, you should have: Proven experience in application security architecture. Deep knowledge of OWASP Top 10, SANS CWE Top 25, and secure coding best practices. Familiarity with threat modelling methodologies such as STRIDE and architectural risk analysis. Hands-on experience with tools such as More ❯

into effective security controls 🧠 Key Skills & Experience: 5+ years in security architecture or consulting in regulated environments Deep knowledge of secure SDLC, DevSecOps, cloud (Azure/AWS), and frameworks (OWASP, MITRE) Hands-on experience with vulnerability tools, threat modelling, and compliance (GDPR, HIPAA, PCI) Strong communication and stakeholder engagement skills Technical knowledge across .NET, Java, scripting (Python, PowerShell), APIs, and More ❯

into effective security controls 🧠 Key Skills & Experience: 5+ years in security architecture or consulting in regulated environments Deep knowledge of secure SDLC, DevSecOps, cloud (Azure/AWS), and frameworks (OWASP, MITRE) Hands-on experience with vulnerability tools, threat modelling, and compliance (GDPR, HIPAA, PCI) Strong communication and stakeholder engagement skills Technical knowledge across .NET, Java, scripting (Python, PowerShell), APIs, and More ❯

into application design Lead security architecture reviews and provide expert technical guidance on complex security challenges Keep up-to-date with the latest security threat assessment frameworks such as OWASP, MITRE ATT&CK Assess security posture against industry regulations and compliance requirements Identify and mitigate security risks associated with new technologies and initiatives Perform security assessments to identify vulnerabilities Communicate More ❯

Experience working with ISO 27001, Cyber Essentials, and preferably NIST CSF, SOC 2, or SWIFT frameworks. Strong understanding of security in the context of software development and application security (OWASP, SDLC, DevSecOps). Hands-on, pragmatic approach with the ability to operate in a lean, fast-paced environment. Excellent communication skills, with the ability to engage both technical and non More ❯