26 to 50 of 85 Secure Coding Jobs in London

up to £100,000 + bonus + benefits Location: UK – Remote This company is scaling its security function and is hiring Senior Application Security Engineers to help embed secure development practices across its engineering teams. You’ll play a hands-on role in identifying and resolving vulnerabilities, integrating security into the SDLC, helping developers create software that is … secure, robust, and production-ready by design. You’ll be joining a high-impact security team at a pivotal point in the company’s growth. The environment spans legacy systems, enterprise-grade platforms, and greenfield builds – making it an ideal opportunity for individuals who thrive in varied, fast-paced environments and enjoys taking ownership of deep technical security … demonstrate risk and impact of discovered vulnerabilities. Requirements: 5+ years of hands-on experience in application security and secure software development. Strong knowledge of secure coding practices and common vulnerabilities (OWASP) Experience with SAST, DAST, and IAST tools and integrating them into CI/CD pipelines. Proficiency in writing and reviewing code (JavaScript, Java, Python More ❯

up to £100,000 + bonus + benefits Location: UK – Remote This company is scaling its security function and is hiring Senior Application Security Engineers to help embed secure development practices across its engineering teams. You’ll play a hands-on role in identifying and resolving vulnerabilities, integrating security into the SDLC, helping developers create software that is … secure, robust, and production-ready by design. You’ll be joining a high-impact security team at a pivotal point in the company’s growth. The environment spans legacy systems, enterprise-grade platforms, and greenfield builds – making it an ideal opportunity for individuals who thrive in varied, fast-paced environments and enjoys taking ownership of deep technical security … demonstrate risk and impact of discovered vulnerabilities. Requirements: 5+ years of hands-on experience in application security and secure software development. Strong knowledge of secure coding practices and common vulnerabilities (OWASP) Experience with SAST, DAST, and IAST tools and integrating them into CI/CD pipelines. Proficiency in writing and reviewing code (JavaScript, Java, Python More ❯

team with an experienced Security Architect. Our client is looking for an Architect strong in Application Security, DevSecOps, and IAM. This role will focus on designing and implementing secure architectures within AWS cloud environments, ensuring best practices are followed to protect applications, data, and infrastructure. The ideal candidate will collaborate with development, DevOps, and security teams to embed … security into the software development lifecycle while leveraging cloud-native security tools. Main responsibilities: Design and implement secure architectures for … applications and cloud-native services within AWS. Develop and enforce DevSecOps principles by integrating security into CI/CD pipelines. Lead efforts in application security, including secure coding practices, threat modelling, and vulnerability assessments. Architect and manage IAM policies, roles, and permissions across AWS resources. Guide development teams on security best practices related to AWS security services More ❯

team with an experienced Security Architect. Our client is looking for an Architect strong in Application Security, DevSecOps, and IAM. This role will focus on designing and implementing secure architectures within AWS cloud environments, ensuring best practices are followed to protect applications, data, and infrastructure. The ideal candidate will collaborate with development, DevOps, and security teams to embed … security into the software development lifecycle while leveraging cloud-native security tools. Main responsibilities: Design and implement secure architectures for … applications and cloud-native services within AWS. Develop and enforce DevSecOps principles by integrating security into CI/CD pipelines. Lead efforts in application security, including secure coding practices, threat modelling, and vulnerability assessments. Architect and manage IAM policies, roles, and permissions across AWS resources. Guide development teams on security best practices related to AWS security services More ❯

robust identity and access management (IAM), network security, and encryption, in compliance with industry standards. Integrate Application Security: Drive the integration of application security practices, including secure coding and vulnerability management, throughout the software development lifecycle for all the projects. Drive Security Tool Implementation: Lead the evaluation, selection, and implementation of enterprise security tools and technologies that … Jenkins, GitLab, or similar. Experience implementing and managing SAST/DAST tools and processes to secure application development. Deep understanding of application security, including secure coding practices, OWASP Top 10, and API security standards. Knowledge of Customer Identity and Access Management (CIAM) solutions and API security frameworks. Knowledge of one or more programming languages with … monitoring tools (e.g., SIEM, SOAR). The other stuff we are looking for We'd also love you to bring; Deep understanding of application security, including secure coding practices, OWASP Top 10, and API security standards. Knowledge of Customer Identity and Access Management (CIAM) solutions and API security frameworks. Knowledge of one or more programming languages with More ❯

develop reliable software across our TypeScript monorepo (SST, Node.js, Vite/React). You'll focus on clean architecture, robust testing, and efficient tooling-helping us ship stable, secure code at speed while enabling future growth. Deliver cross-functional impact: Work closely with clinicians, designers, and product managers to build intuitive user experiences that improve patient care. You … product focussed engineering roles, and is fluent in TypeScript Has experience working in a cross functional platform team Has a strong understanding on how to develop scalable, reliable, secure and accessible applications Sees the value and pace that comprehensive automated testing unlocks, and is excited to build a robust product at speed Wants to grow with the company More ❯

Python, Ruby, Go, Swift, Java, .Net, C++ or similar object oriented language experience. - Extensive experience and expertise in any combination of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security experience. - Experience using Large Language Models (LLM) in security engineering. PREFERRED QUALIFICATIONS - Master's or PhD in More ❯

the automated security tooling into CI/CD pipelines (SAST, DAST, dependency checking, IaC etc), and make necessary recommendations. Collaborate with developers to remediate identified vulnerabilities and ensure secure code practices. Provide expert input on cloud security (AWS, Azure, or GCP) and DevSecOps tooling. Assist in maintaining security assurance across the SDLC in line with MoJ and NCSC … assessments. Security testing tools (e.g., Burp Suite, OWASP ZAP, Nikto, Nmap, Metasploit, etc.). DevSecOps principles and tools (e.g., Veracode, SonarQube, GitHub Advanced Security, IaC scanning, etc.). Secure Cloud Infrastructure, specifically AWS and Azure. Scripting and automation using Python and Bash. Certifications: OSCP or CREST/TIGER Scheme. Strong communication skills and the ability to explain security … e.g., as a CHECK Team Member/Leader). Knowledge of UK public sector security and data protection standards (e.g., NCSC, Cyber Essentials Plus). Threat modelling and secure design practices. Cyber Security Engineer - London (Hybrid) - £700 per day inside IR35 - 4 months+ Damia Group Limited acts as an employment agency for permanent recruitment and employment business for More ❯

protect our systems and client data. Key Responsibilities: Perform security assessments and vulnerability scanning for web applications, APIs, and infrastructure. Collaborate with development teams to implement secure coding practices and address vulnerabilities. Review and advise on secure architecture and design for new and existing applications. Stay up to date with the latest security threats and … practices. Requirements: Proven experience in application security, penetration testing, and secure software development practices. Strong understanding of security vulnerabilities (OWASP Top 10, etc.) and secure coding techniques. Experience with security tools (e.g., static/dynamic analysis tools, vulnerability scanners). Familiarity with common web technologies (e.g., Java, Python, JavaScript, SQL). Knowledge of security frameworks More ❯

our products handle data, map potential attack vectors (especially OWASP Top 10), and design mitigation strategies. Secure Development Practices: Help the development team adopt secure coding practices, identify systematic security issues, and uplift the overall engineering team's security awareness. Security Tooling Integration: Use tools like Snyk (for third-party dependency scanning) to monitor for … vulnerabilities. Translate scan results into actionable tickets in Jira. Collaboration & Enablement: Work closely with engineering teams to triage issues, build secure-by-design features, and guide developers in resolving security concerns. Security Champion: Act as an internal advocate for security, promoting a culture of shared responsibility and continuous improvement. Mandatory Experience: Solid experience as a developerhaving utilised (JavaScript … including unfamiliar codebases Familiarity with modern security tools (e.g., Snyk, OWASP ZAP, Burp Suite) Strong understanding of common web vulnerabilities (OWASP Top 10) Experience with threat modeling and secure design principles Comfortable translating technical findings into prioritised improvements for the engineering team Behaviours An open and genuine communicator Able to take responsibility for your actions Always learning and More ❯

and participate in technical debt reduction. Write clean, scalable, and maintainable code with proper documentation. Participate in code reviews and mentor junior developers where applicable. Ensure secure coding practices and adherence to software development standards. Investigate and resolve production issues as part of ongoing product support. Skills 5+ years of professional experience in software development. Proficient in More ❯

of industry technology trends and innovations and actively contribute to the organization's technology communities to foster a culture of technical excellence and growth. Adherence to secure coding practices to mitigate vulnerabilities, protect sensitive data, and ensure secure software solutions. Implementation of effective unit testing practices to ensure proper code design, readability, and reliability. Vice More ❯

and identity federation. Expertise with single sign on, OAuth2, OIDC, PKI, PSD2 SCA knowledge and possession based authentication. ForgeRock developer experience with PingGateway, PingAM, PingIDM and PingDS, including JavaScript coding of PingGateway scripted routes, and PingAM authentication tree nodes. Strong hands-on coding across either JavaScript or Java, and you must be comfortable in designing extensible IAM APIs … of industry technology trends and innovations and actively contribute to the organization's technology communities to foster a culture of technical excellence and growth. Adherence to secure coding practices to mitigate vulnerabilities, protect sensitive data, and ensure secure software solutions. Implementation of effective unit testing practices to ensure proper code design, readability, and reliability. Vice More ❯

Jenkins, ArgoCD, Artifact Repository) Knowledge of software engineering including testing frameworks, and secure code delivery (ie SCA, SAST, DAST Networks/Security/Middleware & Apps Scripting/Coding (Bash, Python) End to End Observability solutions (logging, monitoring, alerting) Knowledge of SRE principles and practices More ❯

Jenkins, ArgoCD, Artifact Repository) Knowledge of software engineering including testing frameworks, and secure code delivery (ie SCA, SAST, DAST Networks/Security/Middleware & Apps Scripting/Coding (Bash, Python) End to End Observability solutions (logging, monitoring, alerting) Knowledge of SRE principles and practices More ❯

Jenkins, ArgoCD, Artifact Repository) Knowledge of software engineering including testing frameworks, and secure code delivery (ie SCA, SAST, DAST Networks/Security/Middleware & Apps Scripting/Coding (Bash, Python) End to End Observability solutions (logging, monitoring, alerting) Knowledge of SRE principles and practices More ❯

for ambitious, knowledgeable, and experienced Security Engineers to join our team, to grow with the rest of the company, and ensure we continue to do so in a secure and safe way. You will be a key partner in defining what Security is at Octopus Energy Group. We will be shaping this team to provide a world class … and help improve incident processes Work with the wider Platform and application teams to ensure that our infrastructure, systems, and applications are secure Develop secure coding practices and provide guidance to development teams on application security best practices Keep up to date with the latest security trends and technologies related to application security, and evaluate … security across our entire organisation. What you'll have: Excellent security and technology background Strong understanding of web application security concepts, including OWASP Top 10 vulnerabilities, secure coding practices, and application security testing tools Experience with security tools and technologies, such as web application firewalls (WAFs), and static and dynamic application security testing (SAST/DAST) tools More ❯

and services, discovering and addressing security issues, building security automation, articulating the security posture of a service, and decisively taking action to mitigate emerging threats throughout a full secure development life-cycle (SDLC). This role will provide career growth opportunities as you gain new security skills in the course of your work. Security engineers at AWS have … deliver on multiple complex objectives which may include project and software development work. Key Job Responsibilities Your responsibilities will include: Security reviews for new products, technologies, and services Secure design, architecture, and implementation Secure development life-cycle (SDLC) practices including threat modeling and security testing Influence decision-makers and stakeholders to achieve a consistently high security … Experience programming in Python, Ruby, Go, Swift, Java, .Net, C++ or similar object oriented language PREFERRED QUALIFICATIONS - Experience with any combination of the following: threat modeling, secure coding, identity management and authentication, software development, cryptography, system administration and network security - Experience with programming languages such as Python, Java, C++ - Experience applying threat modeling or other risk identification More ❯

support applications at scale, ideally in microservices environments. Strong understanding of web technologies and experience with web scraping or automation. Knowledge of information security principles and secure coding practices. Excellent communication and documentation skills. Comfortable working independently and able to hit the ground running. Experience working in global, distributed teams. More ❯

support applications at scale, ideally in microservices environments. Strong understanding of web technologies and experience with web scraping or automation. Knowledge of information security principles and secure coding practices. Excellent communication and documentation skills. Comfortable working independently and able to hit the ground running. Experience working in global, distributed teams. TPBN1_UKTJ More ❯

support applications at scale, ideally in microservices environments. Strong understanding of web technologies and experience with web scraping or automation. Knowledge of information security principles and secure coding practices. Excellent communication and documentation skills. Comfortable working independently and able to hit the ground running. Experience working in global, distributed teams. More ❯

DV Cleared Full Stack Developer – £700/day – Outside IR35 – 6 Months Location: Hybrid – 2 days/week on-site in London (secure government site) Clearance: Active DV Clearance required Rate: £700/day IR35 Status: Outside IR35 Duration: 6 Months (extension likely) Tech Stack: Frontend: React, Angular, TypeScript Backend: Node.js, Java What You’ll Be Doing: Designing … building, and maintaining scalable full stack applications Collaborating with cross-functional agile teams Supporting secure code integration and deployment Operating in a highly secure, DV-cleared setting Required: Active DV clearance Proven experience across the full software lifecycle Comfortable in hybrid working (2 days onsite in London) Start: ASAP (subject to clearance confirmation) Contract Length More ❯

DV Cleared Full Stack Developer – £700/day – Outside IR35 – 6 Months Location: Hybrid – 2 days/week on-site in London (secure government site) Clearance: Active DV Clearance required Rate: £700/day IR35 Status: Outside IR35 Duration: 6 Months (extension likely) Tech Stack: Frontend: React, Angular, TypeScript Backend: Node.js, Java What You’ll Be Doing: Designing … building, and maintaining scalable full stack applications Collaborating with cross-functional agile teams Supporting secure code integration and deployment Operating in a highly secure, DV-cleared setting Required: Active DV clearance Proven experience across the full software lifecycle Comfortable in hybrid working (2 days onsite in London) Start: ASAP (subject to clearance confirmation) Contract Length More ❯

DV Cleared Full Stack Developer – £700/day – Outside IR35 – 6 Months Location: Hybrid – 2 days/week on-site in London (secure government site) Clearance: Active DV Clearance required Rate: £700/day IR35 Status: Outside IR35 Duration: 6 Months (extension likely) Tech Stack: Frontend: React, Angular, TypeScript Backend: Node.js, Java What You’ll Be Doing: Designing … building, and maintaining scalable full stack applications Collaborating with cross-functional agile teams Supporting secure code integration and deployment Operating in a highly secure, DV-cleared setting Required: Active DV clearance Proven experience across the full software lifecycle Comfortable in hybrid working (2 days onsite in London) Start: ASAP (subject to clearance confirmation) Contract Length More ❯

test, and maintain modern, high‐performance React applications (covering ES6+, Redux, React Router, Next.js, React Query, or similar). Develop mobile‐first, responsive UIs with clean, scalable, and secure code. Work across the stack, integrating with REST APIs and backend services. Estimate effort, scope technical designs, and communicate clearly with stakeholders. Mentor and share knowledge with team members More ❯