1 to 25 of 33 Remote Static Application Security Testing Jobs in London

Role: Cyber Security Engineer Salary/Rate: up to £700 per day (inside IR35) Location: Hybrid LondonContract Duration: until October 2025 We are currently looking for a Cyber Security Engineer for our government client. This Cyber Security Engineer role is hybrid, based between 2-3 days per week on site in central London and the remainder of … the week working remotely. The contract for the Cyber Security Engineer position is until October 2025 with potential to extend, operating inside IR35. Security Clearance: Security Check ("SC Clearance") This role is inside IR35 - Due to the service of the role, it will now be based on an Umbrella solution. Essential skills/experience required: Certifications: OSCP … desirable Role/Responsibilities: Perform penetration testing and vulnerability assessments of web applications, APIs, and cloud infrastructure. Evaluate the automated security tooling into CI/CD pipelines (SAST, DAST, dependency checking, IaC etc), and make necessary recommendations. Collaborate with developers to remediate identified vulnerabilities and ensure secure code practices. Provide expert input on cloud security (AWS, Azure More ❯

Join to apply for the Cyber Security Engineer role at Circle Group 1 week ago Be among the first 25 applicants Join to apply for the Cyber Security Engineer role at Circle Group Cyber Security Engineer Salary/Rate: up to £700 per day (inside IR35) Location: Hybrid London Contract Duration: until October 2025 We are currently … looking for a Cyber Security Engineer for our government client. This Cyber Security Engineer role is hybrid, based between 2-3 days per week on site in central London and the remainder of the week working remotely. Role: Cyber Security Engineer Salary/Rate: up to £700 per day (inside IR35) Location: Hybrid London Contract Duration: until … desirable Role/Responsibilities Perform penetration testing and vulnerability assessments of web applications, APIs, and cloud infrastructure. Evaluate the automated security tooling into CI/CD pipelines (SAST, DAST, dependency checking, IaC etc), and make necessary recommendations. Collaborate with developers to remediate identified vulnerabilities and ensure secure code practices. Provide expert input on cloud security (AWS, Azure More ❯

Position Overview Fast growing FinTech seeking a technically proficient Principal Application Security Architect to join our innovative FinTech organisation. This role is critical in shaping the security posture of complex, cloud-native applications that power fast-growing financial services and digital payments platforms. As an Application Security Architect, you will work closely with software engineers … teams. Security Testing & Automation Oversee the deployment and tuning of automated application security testing tools including Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Software Composition Analysis (SCA). Collaborate with development teams to integrate security testing seamlessly into CI/CD pipelines … security or secure software engineering, preferably within FinTech or highly regulated industries. Hands-on experience with a range of application security testing tools including SAST, DAST, and SCA, and integrating these into automated build and deployment pipelines. Practical expertise with threat modeling methodologies such as STRIDE, PASTA, or Attack Trees. Strong knowledge of secure coding More ❯

Senior Security Engineer We are seeking an experienced Senior Security Engineer to join our dynamic Security Team. In this key role, you will be a key contributor to Funding Circle's cloud and application security posture. You will leverage your deep expertise in AWS security, secure software development lifecycle (SSDLC) practices, and CI/… CD security to implement and champion robust security solutions. You will act as a subject matter expert and mentor, collaborating closely with engineering and product teams to embed security seamlessly into our cloud infrastructure and development processes, ensuring the protection of our platform and customer data in a fast-paced FinTech environment. Who are we? We’re … Deep, demonstrable expertise in designing, implementing, securing, and managing a wide range of AWS security services . Proven, hands-on experience architecting, building, and integrating security tooling (SAST, DAST, SCA, secrets management, IAST) and automated security controls within CI/CD pipelines (e.g., GitLab CI, Jenkins, GitHub Actions). Strong track record of defining, implementing, measuring, and More ❯

Social network you want to login/join with: Senior Security Engineer We are seeking an experienced Senior Security Engineer to join our dynamic Security Team. In this key role, you will be a key contributor to Funding Circle's cloud and application security posture. You will leverage your deep expertise in AWS security, secure software development lifecycle (SSDLC) practices, and CI/CD security to implement and champion robust security solutions. You will act as a subject matter expert and mentor, collaborating closely with engineering and product teams to embed security seamlessly into our cloud infrastructure and development processes, ensuring the protection of our platform and customer data in … with a focus on AWS cloud security and application security. Deep expertise in designing, implementing, securing, and managing AWS security services. Experience integrating security tooling (SAST, DAST, SCA, secrets management, IAST) within CI/CD pipelines (e.g., GitLab CI, Jenkins, GitHub Actions). Proven experience supporting secure software development lifecycle (SSDLC) practices and secure coding standards. More ❯

challenges. We are dedicated to consistently updating our job descriptions to ensure we continue to lead in banking innovation. How you will contribute and key responsibilities: As a Senior Security Engineer, you will be instrumental in designing and implementing security measures for our mobile applications, services, and websites to meet the highest security standards. Your expertise will … help us continuously analyse and improve our security systems, ensuring that our products and services are not only secure by design but also comply with internal and external regulatory requirements. Other responsibilities include: Security Analysis and Improvement: Continuously analyse our security systems for potential improvements, ensuring that our defences remain at the forefront of cybersecurity practices Vulnerability … Event driven streaming technologies, Logging and monitoring, networks, firewalls, load balancers, DNS, CDNs, Working knowledge of agile DevSecOps environments, and CI/CD (Git, Concourse, Terraform), Working knowledge of SAST, DAST, RASP, and IAST tools and building security into existing SDLC processes, Knowledge of cloud Security Architecture of public clouds (such as AWS or GCP), Security certification More ❯

challenges. We are dedicated to consistently updating our job descriptions to ensure we continue to lead in banking innovation. How you will contribute and key responsibilities: As a Senior Security Engineer, you will be instrumental in designing and implementing security measures for our mobile applications, services, and websites to meet the highest security standards. Your expertise will … help us continuously analyse and improve our security systems, ensuring that our products and services are not only secure by design but also comply with internal and external regulatory requirements. Other responsibilities include: Security Analysis and Improvement: Continuously analyse our security systems for potential improvements, ensuring that our defences remain at the forefront of cybersecurity practices. Vulnerability … Event driven streaming technologies, Logging and monitoring, networks, firewalls, load balancers, DNS, CDNs, Working knowledge of agile DevSecOps environments, and CI/CD (Git, Concourse, Terraform), Working knowledge of SAST, DAST, RASP, and IAST tools and building security into existing SDLC processes, Knowledge of cloud Security Architecture of public clouds (such as AWS or GCP), Security certification More ❯

re located within a commutable distance of our offices so that we're able to interact and collaborate in person. About the role: We are looking for an experienced Security Engineer to join our growing Security Engineering team, working closely with the GRC & compliance team and the various Engine Technology teams to make sure security is at … the heart of all our technical processes. Your place within the team will depend on your individual strengths and interests. This role will cover a wide array of security areas across our multi-tenant SaaS cloud environments and internal infrastructure and will require a skilled individual to spearhead efforts in fortifying both infrastructure and application platforms, against potential … into the software development lifecycle Experience performing secure code reviews and security approvals including the use of static and dynamic application security testing (SAST/DAST) tools. Experience in Cryptography management & enhancements Experience configuring and utilising cloud-native security logging, monitoring, and detection services Relevant security certifications such as ISC2 CC, CISSP More ❯

least one object oriented language, e.g. Java, Go or Python Developing of RESTful API services & understanding of API Gateways (e.g. APIGEE) Building applications utilising container technologies e.g. Docker Managing application deployed to Kubernetes clusters, Istio & Helm Cloud: GCP, GKE, IaC (Terraform) Build Tools & DevOps principles: Git, Maven, Jenkins CI/CD, Nexus, SonarQube It would be … great if you also had... Experience in Spring Boot and Hibernate Experience of building microservice architecture and event driven systems Experience in Test automation: BDD, mocking, contract testing, Sast Exposure to web technologies, data tooling & infrastructure/networking About working for us Our focus is to ensure we're inclusive every day, building an organisation that reflects modern society More ❯

Sr. Application Security Engineer/Director - Generative AI (Remote) About the Role: The S&P Ratings Security team focuses on protecting our clients and users from all aspects of modern-day security threats. The mission of our team is to safeguard systems and data by developing innovative solutions for the biggest security challenges. We are … looking for a Senior security engineer responsible for development and implementation of security architecture and engineering best practices across S&P Ratings technology platforms. This role will provide Security engineering and Security Architecture consultation to build and enhance security in S&P Ratings Applications and Services including GenAI applications. Responsibilities and Impact: This is a … security reference architectures and standards Experience with automation tools associated with DevOps and CI/CD pipelines, and with security integration into CI/CD Familiarity with SAST/DAST/SCA tools like Fortify, Whitesource Database, datalake knowledge – Postgres, Oracle, Databricks, Snowflake Familiarity with Secure SDLC frameworks such as NIST SSDF, OpenSAMM, BSIMM Security Forensic analysis More ❯

remote and the rate will be Inside IR35 . Key Responsibilities: Design, deliver, and support secure and scalable AWS infrastructure using services like EC2, S3, ECS, and FARGATE Integrate SAST (Static Application Security Testing) and DAST (Dynamic Application Security Testing) tools into CI/CD pipelines to enforce secure development practices Automate infrastructure More ❯

remote and the rate will be Inside IR35 . Key Responsibilities: Design, deliver, and support secure and scalable AWS infrastructure using services like EC2, S3, ECS, and FARGATE Integrate SAST (Static Application Security Testing) and DAST (Dynamic Application Security Testing) tools into CI/CD pipelines to enforce secure development practices Automate infrastructure More ❯

Join to apply for the Associate Application Security Engineer role at Veeva Consumer Products 4 days ago Be among the first 25 applicants Join to apply for the Associate Application Security Engineer role at Veeva Consumer Products Get AI-powered advice on this job and more exclusive features. Veeva Systems is a mission-driven organization and … Security Engineer that wants to work with Veeva’s product teams to secure their applications. This role has a broad scope, ranging from assisting with managing our SAST/SCA environment to developing Dev Sec Ops automation services, and system integrations using APIs, Webhooks, or other custom integrations of Veeva’s infrastructure. Development of automated processes of security … our multiple platforms. You will be working as a security expert supporting our product development teams on code quality issues and findings. What You'll Do Support Checkmarx SAST & SCA platform, tuning and supporting product development Assist application product teams with scan automation via pipeline build such as Jenkins or CI/CD Automation of security tools More ❯

Social network you want to login/join with: Senior Application Security Engineer, London col-narrow-left Client: Copper.co Location: London, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Reference: 75101a751ac0 Job Views: 15 Posted: 22.06.2025 Expiry Date: 06.08.2025 col-wide Job Description: Copper is a digital asset technology company dedicated to … trade and settle directly from the safety of their MPC-secured wallets. By reducing settlement time for transfers to a few milliseconds (without blockchain network dependency) and offering enhanced security measures, ClearLoop is rapidly reshaping the way asset managers trade and manage capital. In addition to industry-leading security certifications, Copper has one of the strongest insurance coverages … systemic solutions, removing the possibility of vulnerabilities before they can manifest. Domain Knowledge: Strong understanding of the S-SDLC. Intimate knowledge of security-specific tooling domains (e.g. SCA, SAST, DAST, MAST) and their effective integration within the S-SDLC. Awareness of microservice architecture and associated common deployment patterns a must. Security Industry Knowledge: Deep familiarity with security More ❯

Senior Application Security Engineer page is loaded Senior Application Security Engineer Apply locations London, UK time type Full time posted on Posted 2 Days Ago job requisition id JR100290 Who we are ???? We’re the people behind the global loyalty currency, Avios, and home to three ambitious, growing businesses;IAG Loyalty, British Airways Holidays andThe Wine … our CI/CD pipelines, facilitate threat modelling sessions, and review security-sensitive design decisions around authentication, cryptography, and logging. You’ll also ensure that tools such as SAST, DAST, and SCA are effective and efficient, and that testing programmes — including pen testing, vulnerability scanning, and bug bounty — are delivering value. You’ll triage vulnerabilities, support engineering … vulnerabilities, including the OWASP Top 10 Proficient in coding, scripting (e.g. Python, Bash), and automating security in CI/CD Hands-on experience with security tools like SAST, DAST, and SCA Familiar with cloud environments (especially AWS), containers, and microservices Comfortable reviewing technical designs, performing threat modelling, and advising on secure architecture Strong communicator who collaborates well with More ❯

Up to c. £225k Comp Package | Hybrid Working - 3 Days in Office] We’re partnering with a leading pensions investment firm undergoing a major cloud-native technology transformation, embedding security into every layer of software delivery. This is a rare opportunity to join a highly technical security engineering team with full leadership backing, directly shaping secure-by-design … systems that safeguard billions in assets and over a million pension holders. If you’re passionate about automation, developer enablement, and driving security culture within engineering-led teams, this role offers real influence and impact at scale... Key Responsibilities Integrate security controls across … the full software development lifecycle - from threat modelling and design to secure coding and CI/CD pipeline enforcement Build and automate security tooling into developer workflows, including SAST, DAST, secrets management, dependency scanning and policy-as-code guardrails Create reusable infrastructure-as-code modules and templates to enable consistent security patterns across cloud-native deployments (AWS focus More ❯

Up to c. £225k Comp Package | Hybrid Working - 3 Days in Office] We’re partnering with a leading pensions investment firm undergoing a major cloud-native technology transformation, embedding security into every layer of software delivery. This is a rare opportunity to join a highly technical security engineering team with full leadership backing, directly shaping secure-by-design … systems that safeguard billions in assets and over a million pension holders. If you’re passionate about automation, developer enablement, and driving security culture within engineering-led teams, this role offers real influence and impact at scale... Key Responsibilities Integrate security controls across … the full software development lifecycle - from threat modelling and design to secure coding and CI/CD pipeline enforcement Build and automate security tooling into developer workflows, including SAST, DAST, secrets management, dependency scanning and policy-as-code guardrails Create reusable infrastructure-as-code modules and templates to enable consistent security patterns across cloud-native deployments (AWS focus More ❯

continuously evolving our recruitment processes to ensure fairness and are open to accommodating any needs you might have. If, due to a disability, you need adjustments to complete the application, please let us know by sending an email with your name, the role to which you would like to apply, and the type of support you need to complete … the application to adjustments@depop.com. For any other non-disability related questions, please reach out to our Talent Partners. The Role In 2025 we are investing in improving security capabilities to our Engineering & Data group. We are looking for a security engineer to guide our engineering practices, improve security in our software delivery lifecycle, and work … rotation for security incidents Requirements Experience with developing APIs and Frontend applications Experience architecting secure systems at scale Experience integrating security testing into the SDLC i.e. SAST, DAST, SCA Experience with vulnerability scanning and software patching at scale Experience working with at least one major cloud provider (AWS specifically is advantageous) Strong networking foundations Experience with infrastructure More ❯

internal businesses into a single, streamlined digital offering. The mission? To empower people to be the best version of themselves-with health and wellbeing at the core. As a Security Engineer , you'll be a key player in this journey-applying modern security practices across a newly developed Digital Platform that underpins the transformation. You'll work across … agile engineering teams to ensure security is embedded into every layer of the technology stack, from design through to deployment and monitoring. What You'll Be Doing: Security by Design: Collaborate with engineering teams to assess new features and services, identify potential vulnerabilities, and design secure solutions from the ground up. Code & Tooling Contribution: Play a hands-on … DSOMM, SAMM, and Cloud Security Posture Management tools (e.g. Azure Defender, Prisma Cloud). Security Tooling Expertise: Strong hands-on experience with security scanning tools, including SAST and SCA (e.g. Snyk, Checkmarx) and DAST tools (e.g. OpenZAP, Qualys DAST). Technical Breadth: Solid understanding of networking protocols (TCP/IP, HTTP/3, AMQP, etc.), cloud network More ❯

Rate: £625.00 p/d Location: Remote Based (Adhoc London - Travel Expensed) Start Date: ASAP The Role: In this role, you will work closely with the client's Cyber Security team to ensure the security of products being released into production environments across containers, hosts, and APIs. You will identify, remediate, and mitigate risks and vulnerabilities, integrating security … CD pipeline. Proactively identify, assess, and remediate vulnerabilities in applications and infrastructure (containers, hosts, APIs). Implement and manage static and dynamic application security testing (SAST/DAST) tools and workflows. Support secure cloud deployments within AWS, ensuring compliance with internal standards and regulations. Skills & Experience: Strong experience in a DevSecOps or security-focused DevOps … role. In-depth knowledge and hands-on experience with SAST, DAST, and API security testing. Solid understanding of AWS and security configurations. Experience in securing containerized environments. Strong knowledge of vulnerability management tools and methodologies. Experience implementing automated deployments. #J-18808-Ljbffr More ❯

Senior Application Security Engineer Department: Engineering Employment Type: Permanent - Full Time Location: London Reporting To: Sami Eltamawy Compensation: GBP 80,000 - GBP 90,000/year Description London, hybrid Freetrade's mission is to become the default place to invest. Investing has been too complicated and expensive for too long, keeping millions from making the most of their … like mutual funds, bonds, and family investment tools. We're also exploring how we can leverage AI to deliver an even better experience for our customers. As a Senior Security Engineer , you'll lead the charge in building and scaling our Application Security (AppSec) program from the ground up. Your mission will be to embed security … box, grey-box, and white-box testing to detect and eliminate vulnerabilities. Test all user-facing surfaces (web, Android, iOS) and backend APIs for security weaknesses. Manage SAST and DAST Findings: Drive effective triage and resolution of security test results, improving signal-to-noise ratios. Perform Threat Modelling: Use frameworks like STRIDE to proactively uncover potential threats More ❯

Social network you want to login/join with: Lead Application Security Engineer, west london col-narrow-left Client: WeDo Location: west london, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 5 Posted: 26.06.2025 Expiry Date: 10.08.2025 col-wide Job Description: Title: Lead Application Security Engineer Location: Fully Remote … with credit – offering digital credit cards and financial services built on cloud-native architecture and driven by data. They are looking to hire a highly technical, hands-on Lead Application Security Engineer to take full ownership of the application security landscape – not from a policy or governance standpoint, but through deep, practical expertise in identifying and … vulnerabilities A proven background in credit cards, payments, or financial transaction systems Understanding of modern application architectures (APIs, microservices, cloud platforms – likely Azure) Familiarity with OWASP Top 10, SAST/DAST, and a variety of pen testing techniques A desire to build and lead a team, while remaining technical and practical day to day Right to work in More ❯

Social network you want to login/join with: Lead Application Security Engineer, south west london col-narrow-left Client: WeDo Location: south west london, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 5 Posted: 26.06.2025 Expiry Date: 10.08.2025 col-wide Job Description: Title: Lead Application Security Engineer Location … with credit – offering digital credit cards and financial services built on cloud-native architecture and driven by data. They are looking to hire a highly technical, hands-on Lead Application Security Engineer to take full ownership of the application security landscape – not from a policy or governance standpoint, but through deep, practical expertise in identifying and … vulnerabilities A proven background in credit cards, payments, or financial transaction systems Understanding of modern application architectures (APIs, microservices, cloud platforms – likely Azure) Familiarity with OWASP Top 10, SAST/DAST, and a variety of pen testing techniques A desire to build and lead a team, while remaining technical and practical day to day Right to work in More ❯

Job Title: Senior Security Engineer Manager: CISO Department: Cyber Security Division: Enterprise Information Technology Services Location: London, Hybrid Main Purpose: The MDU is undertaking an exciting digital transformation programme and to support this the Cyber Security Team is looking to appoint a Senior Security Engineer. Working closely with delivery teams covering strategic and non-strategic change … this role will provide subject matter expertise to keep the MDU, its data and, its member safe from cyber security threats. The Senior Security Engineer will be responsible for the delivery of security technologies in a range of projects and will therefore: Have a strong cyber security engineering or professional services background with experience of delivering … technical skills with experience and accreditations covering multiple security domains. Cyber security subject matter expert with relevant certifications such as CISSP, CISM, CSSP, or equivalent. Proficiency in SAST, DAST and SCA with hands on experience integrating such tools into development pipelines. Extensive experience of consulting on projects, building in security requirements and ensuring services go-live with More ❯

S-RM is a global intelligence and cyber security consultancy. Since 2005, we've helped some of the most sophisticated clients in the world solve some of their toughest challenges. We've been able to do this because of our outstanding people. We're committed to developing bright, curious, driven individuals who want to think critically, solve complex problems … WORKING IN INFOSEC AT S-RM This is an opportunity to join a company where infosec is embedded into the culture. Our client services include a world-class cyber security team which means we think critically about our own security practices at all levels. We see information security as an asset not a cost centre, and we … Engineer, you'll play a lead technical role in maintaining and evolving S-RM's information security. Key Responsibilities: Improve and implement development pipeline security features, such as SAST and DAST Manage, monitor and improve compliance, vulnerability management, threat intelligence, detection/prevention tools across a multi-cloud environment. Provide expert security design and engineering guidance on complex More ❯