secure configurations. Experience implementing security controls in cloud-native environments (e.g., AWS or Azure) including IAM, network policies, and container security. Proven track record of using tools such as Snyk, Trivy, Checkov, OPA/Gatekeeper/OWASP ZAP, or similar to enforce pipeline and platform security. Familiarity with compliance requirements (e.g., NIST, ISO 27001, CIS Benchmarks) and their implementation via More ❯
London, South East, England, United Kingdom Hybrid / WFH Options
Become
Bash, Python) and automation mindset Excellent communication and collaboration skills Desirable Attributes Exposure to service mesh technologies (e.g., Istio, Linkerd) Experience with secrets management and security tooling (e.g., Vault, Snyk) Familiarity with compliance frameworks (e.g., ISO 27001, PCI-DSS) Prior consulting experience or experience in client-facing roles Engagement Model Outside IR35 12-month initial contract with potential for extension More ❯
secure configurations. Experience implementing security controls in cloud-native environments (e.g., AWS or Azure) including IAM, network policies, and container security. Proven track record of using tools such as Snyk, Trivy, Checkov, OPA/Gatekeeper/OWASP ZAP, or similar to enforce pipeline and platform security. You will have the ability to lead and mentor teams on secure coding, threat More ❯
Security: Knowledge of open-source security best practices. You have experience dealing with open-source dependencies and package management security (e.g., handling vulnerability advisories, using tools like Dependabot or Snyk). Bonus if you have contributed to or maintained open-source projects, especially security-related ones. Bug Bounty & Vulnerability Management: Exposure to running or participating in a bug bounty program More ❯
HTTP/3, AMQP, streaming protocols etc), cloud network design (VPNs, subnets, regions/zones etc), and integration related technologies (Auth0, APIM) Expertise with SAST & SCA systems such as Snyk, Checkmarx Experience with DAST systems such as OpenZAP, Qualys DAST (preferred) ideally with HTTP APIs Ability to manage large scale software estates from a operational perspective (build, release, monitoring, rollbacks More ❯
HTTP/3, AMQP, streaming protocols etc), cloud network design (VPNs, subnets, regions/zones etc), and integration related technologies (Auth0, APIM) Expertise with SAST & SCA systems such as Snyk, Checkmarx Experience with DAST systems such as OpenZAP, Qualys DAST (preferred) ideally with HTTP APIs Ability to manage large scale software estates from a operational perspective (build, release, monitoring, rollbacks More ❯
on us to establish trust, through sharing their security maturity and visualising the risks posed by their supply chain ecosystem. And we're already trusted by customers like ASOS, Snyk, BAE Systems and the NHS. We are putting together an amazing and talented team from a diverse set of backgrounds and skillsets to drive us towards our vision. Risk Ledger More ❯
