StaticCodeAnalysis Engineer - £145k p/a , 5 days on-site We are working with a Creandum backed stealth start-up who are looking for a StaticCodeAnalysis Engineer Creandum have backed the companies of tomorrow before it's obvious. They invest … vision a reality. The role is paying between £110-145k p/a + Stocks and requires 5 days on-site in London. StaticCodeAnalysis Engineer - £145k p/a , 5 days on-site more »
identification and analysis. You will be responsible for finding new and novel ways to identify and resolve security vulnerabilities in our products. This includes static and dynamic codeanalysis, security scanning, investigation of security reports from InfoSec, our bug bounty program, or other trusted partners, and direct … team.Core ResponsibilitiesPerform deep architecture and security reviews on highly complex products to identify vulnerabilitiesLead engineering teams in feature design, threat modeling, and security-critical code and architectureDevelop and implement automation to eliminate entire classes of weaknesses across the organizationDrive decision-making by determining the tradeoffs between security and product … experience and a deep passion for information securityExperience with a modern high-level programming language (e.g. Java, Golang, Javascript, Python, etc.)Demonstrated experience evaluating code for vulnerabilities and weaknessesExperience with complex architectures and codebases (e.g. SOA or micro-services)Experience utilizing/with CodeQL or other staticcodemore »
to work on some super exciting projects, then please apply! Main responsibilities: Integrate security tools and processes into the DevOps pipeline to ensure secure code deployment and infrastructure management. Design and implement automated security testing, including staticcodeanalysis, dynamic application security testing, and vulnerability scanning. … practices. Monitor security metrics and logs to detect and respond to security incidents. Lead and participate in security incident response activities, including root cause analysis and remediation efforts. To be considered for this role, you should have: Must have hands on experience in DevSecOps Engineering. Strong knowledge of security … such as SAST, DAST, vulnerability scanners, SIEM, and WAF. Proficiency with CI/CD tools like Jenkins, GitLab, CircleCI, or similar, and infrastructure-as-code tools like Terraform, CloudFormation, or Ansible. Hands-on experience with cloud platforms, AWS, Azure, or GCP, and securing cloud-based environments. Solid understanding of more »
Start-up La Fosse is currently working with a cutting-edge artificial intelligence and cyber security start-up company specialising in AI for binary analysis, who are looking to hire a talented Senior Machine Learning Engineer into their high performing team. If you’re looking for an opportunity where … you will develop AI that fundamentally understands computer software at the binary level, then this is for you! You will combine static and dynamic program analysis with state-of-the-art AI models, to assist their customers in binary reverse engineering, vulnerability detection, exploit generation, software supply chain … of-the-art machine learning techniques into the product pipeline. You will contribute to the development of their foundational large language model (LLM) binary code embeddings and research new methods using graph-based models for segment classification. Key Responsibilities: Implement state-of-the-art ML techniques and integrate them more »
to operate at an elite level on the DORA metrics. We practice continuous delivery of our systems to Openshift and AWS. We care about code quality and good engineering practices and we tackle technical debt when needed to ensure our projects are always easy to work on and change … risk engine that underpins the LGIM Solutions team funds Work with the Quantitative Analyst and Portfolio Management team to deliver robust and easily accessible analysis of all Solutions Portfolios under management Model the risks of using different asset strategies in fixed income and, where appropriate other, asset classes, to … and clearly to a wide audience Experience and knowledge of designing and building similar systems and overcoming the challenges faced Anunderstanding of build automation; staticcodeanalysis tools, security testing tools, CI systems A broad knowledge of how systems work and scale in the cloud: how to more »
