11 of 11 OWASP Jobs in Scotland

more languages (Rust, Python, Go, Nodejs, etc.) Minimum 1 year experience with public/private cloud environments (Openshift, Rancher, K8s, AWS, GCP, Azure, etc.) Experience in running assessments using OWASP MASVS and ASVS. Working knowledge on exploiting and fixing application vulnerabilities. Strong background in threat modeling. In-depth knowledge of common web application vulnerabilities (i.e. OWASP Top 10). Familiarity More ❯

application security Experience working with large-scale multi-cloud, multi-account architecture CISSP, CISM, AWS Solutions Architect Professional, Azure Solutions Architect, or equivalent certification, is preferred Thorough understanding of OWASP Top 10 and Secure Development Expertise in automating security tools and integrations, including simple scripting Experience with application security tools (SAST, DAST, IAST and SCA) Strong technical knowledge of development More ❯

firewalls, IPS, DDoS, WAF, DLP, DNS, NAC, NSPM, and architectures like SASE and Zero Trust. Application Security: Experience with SAST, DAST, RAST, IAST tools, integrating security into SDLC processes, OWASP, API security design, robust threat modelling, and containerization security. Data Security: Skilled in implementing information protection tools, key and secrets management, data loss prevention, and protective marking and classification capabilities. More ❯

with public/private cloud environments ( Openshift, Rancher, K8s, AWS, GCP, Azure, etc. ) In-depth knowledge of security principles, compliance regulations, and change management. Experience in running assessments using OWASP MASVS and ASVS. Working knowledge on exploiting and fixing application vulnerabilities. Proven expertise in architectural threat modeling and conducting secure design reviews. In-depth knowledge of common web application vulnerabilities … i.e. OWASP Top 10 or SANS top 25). Familiarity with automated dynamic scanners, fuzzers, and proxy tools. An analytical mind for problem solving, abstract thought, and offensive security tactics. Highly effective communication skills, in both verbal and written forms, to effectively convey technical and non-technical concepts to a wide variety of audiences Exposure to advanced AI and Large More ❯

SQL and familiarity with relational & NoSQL databases. Experience designing and consuming REST APIs. Hands‐on with cloud services (AWS) and Docker containers. Solid grasp of secure‐coding best practices (OWASP Top 10). Mindset & Behaviours Collaborative: thrive in cross‐functional teams and build strong relationships with peers. Communicative: speak up in discussions, share ideas and listen actively. Leadership mindset: take More ❯

code reviews and promoting best practice in relation to coding standards. Creating solutions that are scalable and improve performance, are based on secure coding guidelines which prevent common vulnerabilities (OWASP) and are HIPAA and HiTrust compliant. Understanding and planning for evolutionary paths. Managing risk identification and risk mitigation strategies associated with the architecture. You Will Bring An in-depth understanding More ❯

testing, and fixing complex vulnerabilities A proven background in credit cards, payments, or financial transaction systems Understanding of modern application architectures (APIs, microservices, cloud platforms – likely Azure) Familiarity with OWASP Top 10, SAST/DAST, and a variety of pen testing techniques A desire to build and lead a team, while remaining technical and practical day to day Right to More ❯

testing, and fixing complex vulnerabilities A proven background in credit cards, payments, or financial transaction systems Understanding of modern application architectures (APIs, microservices, cloud platforms – likely Azure) Familiarity with OWASP Top 10, SAST/DAST, and a variety of pen testing techniques A desire to build and lead a team, while remaining technical and practical day to day Right to More ❯

testing, and fixing complex vulnerabilities A proven background in credit cards, payments, or financial transaction systems Understanding of modern application architectures (APIs, microservices, cloud platforms – likely Azure) Familiarity with OWASP Top 10, SAST/DAST, and a variety of pen testing techniques A desire to build and lead a team, while remaining technical and practical day to day Right to More ❯

release processes Tech environment: Must-have: Test & Reporting: qTest, Jira, Xray, Allure, Confluence CI/CD & Build: Jenkins, GitLab CI/CD pipelines, Git, Gradle Tooling: NeoLoad, JMeter, BlazeMeter, OWASP ZAP, SonarQube, Burp Suite, Nmap, Lighthouse Automation: Selenium, Playwright, Serenity BDD, Cucumber, Postman, REST Assured Nice to have: AI/ML QA tools: TestGPT, Testim All our roles are UK More ❯

with proven experience leading teams. Secondary Expertise: Knowledge and experience in network security, including firewalls, micro-segmentation, DDoS protection, WAF, and NAC. Familiarity with open-source frameworks such as OWASP, CVSS, etc. Experience with security products like Qualys, AlgoSec, Fortinet, Guardicore, Akamai, and Forescout. Salary: Up to £80,000 Basic Salary + 10% bonus + 4k car 13% pension Location More ❯