6 of 6 Static Application Security Testing Jobs in Oxfordshire

to see. This job is with the software supply chain company - securing and powering how software gets delivered everywhere. What you'll do: Embed security across the platform, from source to prod. Architect security controls across distributed, cloud-native systems. Lead threat modeling and security reviews (and … get people to enjoy them) Pen-test services and infra (ethically, please). Extend security automation and monitoring with tools like CircleCI, GitHub Actions, DataDog, AWS Security Hub, etc. Harden everything from container runtimes to APIs to artifact pipelines. Write secure code, review other people’s code, and … a software engineer. Python for sure and a bit of TypeScript never hurt anyone. Deep application security knowledge Hands-on experience with SAST, DAST, RASP, and securing cloud (preferably AWS). Strong grasp of container security, API security, IaC, and CI/CD. You’ve done More ❯

About Us Sophos is a global leader and innovator of advanced security solutions for defeating cyberattacks. The company acquired Secureworks in February 2025, bringing together two pioneers that have redefined the cybersecurity industry with their innovative, native AI-optimized services, technologies and products. Sophos is now the largest pure … with internal product and engineering teams to identify potential issues in product designs. Assist in the adoption of shared cybersecurity services such as SCA, SAST and DAST. Participate in the development and adoption of new standards and policies. You will be able to impart education to key stakeholders from both … and other cybersecurity frameworks. Knowledge of cryptographic techniques and implementations. Familiarity with security tooling which is used to support a SSDLC (SCA/SAST/DAST/container scanning) A strong desire to stay current and understand emerging technologies and risks. Strong project management skills to drive and oversee More ❯

to become part of our growing Cyber Engineering Services. A successful candidate for the Cyber Engineer role will possess a solid foundation as a security engineer, responsible for ensuring the security of complex global environments and designing security solutions at scale. This includes extensive expertise in application … secure technical solutions to protect against cyber threats and potential cyber-attacks. The role will be focused on detection engineering within the strategic Element security tooling. Core Responsibilities Assist in the design and implementation of technical solutions and security toolsets to address security vulnerabilities, mitigate cyber threats … with various security technologies such as NDR/content filtering/FW/IPS/IDS/DDOS, EDR/MDR, DAST/SAST, Identity Access Management, SIEM & SOAR, log management. Preferable experience in Azure, AWS, Defender, Darktrace. Experience and technical knowledge in multiple areas of cyber defence operations. More ❯

AWS cloud engineering. Expert in AWS core services (EC2, VPC, IAM, S3, ALB/ELB, CloudFront, ECR/ECS, Elastic Beanstalk, Control Tower) and security tooling (GuardDuty, IAM Identity Center, CloudWatch). Strong Kubernetes (EKS/OpenShift) administration, Helm packaging and service-mesh know-how. Proficient in IaC … Terraform, Terraform Cloud, CloudFormation), containerisation (Docker, Docker Compose) and Linux systems. Solid CI/CD engineering with GitHub Actions and Argo CD. Experience integrating SAST and DAST best practices. Scripting in Bash and Python or Go for automation. Demonstrated success delivering cloud cost-optimisation and high-security solutions for … your CV and call for more information. This role is a hybrid role with 2 days a week onsite and the role also requires security clearance, so please only apply if you are eligible for security clearance or have current security clearance. More ❯

AWS cloud engineering. Expert in AWS core services (EC2, VPC, IAM, S3, ALB/ELB, CloudFront, ECR/ECS, Elastic Beanstalk, Control Tower) and security tooling (GuardDuty, IAM Identity Center, CloudWatch). Strong Kubernetes (EKS/OpenShift) administration, Helm packaging and service-mesh know-how. Proficient in IaC … Terraform, Terraform Cloud, CloudFormation), containerisation (Docker, Docker Compose) and Linux systems. Solid CI/CD engineering with GitHub Actions and Argo CD. Experience integrating SAST and DAST best practices. Scripting in Bash and Python or Go for automation. Demonstrated success delivering cloud cost-optimisation and high-security solutions for … your CV and call for more information. This role is a hybrid role with 2 days a week onsite and the role also requires security clearance, so please only apply if you are eligible for security clearance or have current security clearance. More ❯

AWS cloud engineering. Expert in AWS core services (EC2, VPC, IAM, S3, ALB/ELB, CloudFront, ECR/ECS, Elastic Beanstalk, Control Tower) and security tooling (GuardDuty, IAM Identity Center, CloudWatch). Strong Kubernetes (EKS/OpenShift) administration, Helm packaging and service-mesh know-how. Proficient in IaC … Terraform, Terraform Cloud, CloudFormation), containerisation (Docker, Docker Compose) and Linux systems. Solid CI/CD engineering with GitHub Actions and Argo CD. Experience integrating SAST and DAST best practices. Scripting in Bash and Python or Go for automation. Demonstrated success delivering cloud cost-optimisation and high-security solutions for … your CV and call for more information. This role is a hybrid role with 2 days a week onsite and the role also requires security clearance, so please only apply if you are eligible for security clearance or have current security clearance. More ❯