16 of 16 OWASP Jobs in the South West

on both front-end and back-end, requiring a broad, generalist knowledge. Ensuring web application security by building applications that meet high standards, pass penetration tests, and align with OWASP recommendations. Producing accurate estimates for project deliverables. Supporting developed applications, including issue investigation and resolution. Contributing to continuous improvement roadmaps for applications. Defining and executing test requirements, including writing scripts More ❯

the following technical competencies: Solid grounding in OS and network fundamentals (Linux, Windows, Mac, TCP/IP stack). Knowledge of common attack techniques and mitigations (MITRE ATT&CK, OWASP Top 10). Familiarity with scripting and automation using Python, Bash, or PowerShell. Strong understanding of Active Directory attack chains and common privilege escalation paths. Experience interpreting logs and event More ❯

solving skills and attention to detail. 3+ years of professional PHP development experience. Solid understanding of object-oriented programming and SOLID principles. Solid knowledge of secure coding practices (e.g. OWASP). Experience with modern PHP frameworks (preferably Laravel or Symfony). Familiarity with relational databases (MySQL) and writing performant queries. Comfortable working with Git, Composer and modern development workflows. Strong More ❯

efforts for security breaches. Provide security guidance and training to teams across the organization. Key Skills & Experience: Strong knowledge of security frameworks (ISO 27001, NIST 800-30/53, OWASP) . Experience with risk management methodologies and compliance with MOD and HMG security standards (JSP, Def Stan 05-138/139). Proficiency in security threat modeling and risk assessments. More ❯

efforts for security breaches. Provide security guidance and training to teams across the organization. Key Skills & Experience: Strong knowledge of security frameworks (ISO 27001, NIST 800-30/53, OWASP) . Experience with risk management methodologies and compliance with MOD and HMG security standards (JSP, Def Stan 05-138/139). Proficiency in security threat modeling and risk assessments. More ❯

knowledge of all aspects of development is required. Maintain awareness of web application security and building applications which meet high standards of security, pass penetration tests and align with OWASP recommendations. Taking an active part in the whole Software Development Lifecycle end-to-end - including conception, design, architecture, build and deployment. Producing accurate estimates for project deliverables and change requests. More ❯

scanning, exploitation) Security Operations (e.g., SIEM, SOC analysis) Incident Response and Digital Forensics Cryptography and Secure Communications Cloud Security (e.g., AWS, Azure, GCP security best practices) Application Security (e.g., OWASP Top 10) Compliance and Governance (e.g., GDPR, ISO 27001) Security Tools (e.g., Wireshark, Nmap, Metasploit, Kali Linux) Person Specification: Experience delivering cybersecurity training or mentoring professionals in a security capacity More ❯

scanning, exploitation) Security Operations (e.g., SIEM, SOC analysis) Incident Response and Digital Forensics Cryptography and Secure Communications Cloud Security (e.g., AWS, Azure, GCP security best practices) Application Security (e.g., OWASP Top 10) Compliance and Governance (e.g., GDPR, ISO 27001) Security Tools (e.g., Wireshark, Nmap, Metasploit, Kali Linux) Person Specification: Experience delivering cybersecurity training or mentoring professionals in a security capacity More ❯

fundamentals in data structures, algorithm design and complexity analysis. Experience developing, deploying and maintaining API's onto AWS or Azure. Excellent understanding of software design principles. Experience in applying OWASP secure coding practices. Confident and experienced with automated testing - from unit tests to system and integration tests. Willingness to develop across multiple platforms and architectures. Genuinely passionate about changing lives More ❯

Issue 1) is essential Proficiency in threat modelling methodologies and tools (e.g., STRIDE, DREAD, Attack Trees) Familiarity with other standards such as ISO/IEC 27001, ISO 27005, OWASP, and MOD ISN 23/09 Ability to identify, assess and mitigate risks across software and hardware product ecosystems Strong written and verbal communication skills, including the ability to convey risk More ❯

InfoSec area, and help establish improvements in response processes and standardization. Qualifications and Skills Good understanding of information security frameworks, standards, and best practices (ISO27001, NIST CSF, Cyber Essentials, OWASP). Knowledge of data protection legislation and regulatory requirements (e.g., GDPR, FCA SYSC, PCI DSS). Experience with security analysis tools and technologies (e.g., SIEM, VAS, IDS/IPS, Firewalls More ❯

especially in InfoSec, and help improve response processes and standardization. Key Qualifications and Skills: Good understanding of information security frameworks, standards, and best practices (ISO27001, NIST CSF, Cyber Essentials, OWASP). Knowledge of data protection legislation and regulatory requirements (GDPR, FCA SYSC, PCI DSS). Experience with security analysis tools and technologies (SIEM, VAS, IDS/IPS, Firewalls, IAM, NAC More ❯

An understanding of MOD ISN 23/09 Secure by Design Knowledge of security frameworks, such as ISO/IEC 27001, NIST 800-30, NIST 800-53 or OWASP Working with risk management frameworks and methodologies (e.g., ISO 27001/2, ISO27005/31000, NIST 800-30, NIST 800-53) Please reach out to Lewis Dunn @ ARM if you are More ❯

An understanding of MOD ISN 23/09 Secure by Design Knowledge of security frameworks, such as ISO/IEC 27001, NIST 800-30, NIST 800-53 or OWASP Working with risk management frameworks and methodologies (e.g., ISO 27001/2, ISO27005/31000, NIST 800-30, NIST 800-53) Please reach out to Lewis if you are interested or More ❯

contribute to the security engineering of our Salesforce platform especially in the context of APEX code , API design, and secure development lifecycle. Apply the DSOMM (DevSecOps Maturity Model) and OWASP security principles to assess and uplift Salesforce security maturity. Own and improve pipeline security including static code analysis (SAST), dynamic application security testing (DAST), dependency checks, and secure deployment patterns. … understanding of how engineering and security intersect. Strong grasp of secure coding practices and experience running DAST/SAST on Salesforce environments. Exposure to or working knowledge of DSOMM , OWASP, and threat modelling methodologies. Experience integrating security into CI/CD pipelines , especially in complex enterprise platforms. Ability to approach platform security from an engineering-first mindset , not just compliance. More ❯

Job Title: Software Developer Salary: £50-55K The Business: Founded by a team of financial experts and ex-MAT professionals, IMP Software has a deep understanding of the challenges facing multi-academy trusts. Our mission is to empower multi More ❯