3 of 3 Static Application Security Testing Jobs in the Thames Valley

company and we're committed to helping the UK reach Net Zero by 2050. About the role This role will support the delivery of security engineering across both internal and external infrastructure and services. Key responsibilities include: Implement security best practices across the application and infrastructure lifecycle … Define and maintain security testing processes for in-scope applications and services Manage identified vulnerabilities through to remediation, in collaboration with relevant teams Provide expert advice and guidance on secure software and infrastructure development to engineering teams About you and your experience • 5 years' experience working within a … Kanban, and a DevOps mindset • Experience managing Endpoint Detection services such as SentinelOne, zScaler, or Crowdstrike • Experience in conducting security checks, such as SAST, DAST, and SCA with Snyk, OWASP ZAP, Burp Suite tools, vulnerability analysis in applications, and penetration testing skills. Familiarity with OWASP Testing Guide More ❯

About Us Sophos is a global leader and innovator of advanced security solutions for defeating cyberattacks. The company acquired Secureworks in February 2025, bringing together two pioneers that have redefined the cybersecurity industry with their innovative, native AI-optimized services, technologies and products. Sophos is now the largest pure … with internal product and engineering teams to identify potential issues in product designs. Assist in the adoption of shared cybersecurity services such as SCA, SAST and DAST. Participate in the development and adoption of new standards and policies. You will be able to impart education to key stakeholders from both … and other cybersecurity frameworks. Knowledge of cryptographic techniques and implementations. Familiarity with security tooling which is used to support a SSDLC (SCA/SAST/DAST/container scanning) A strong desire to stay current and understand emerging technologies and risks. Strong project management skills to drive and oversee More ❯

You will need to login before you can apply for a job. DevSecOps Security Engineer - Tesco Mobile Sector: Technology Role: Professional Contract Type: Permanent Hours: Full Time About the role: As one of our DevSecOps Security Engineers, you will be helping the team manage and deploy solutions on … platforms in a secure and optimised manner. This will include all aspects of security, maintaining an evolving programme of work to address prioritised concerns, helping to identify threats and risks, and working to implement solutions and mitigations. You will also work with the rest of the squad to incorporate … projects. Significant experience with cloud providers AWS and Azure. Experience of CI/CD pipelines and adding security tooling to these. Experience using SAST and other techniques to improve code security. Experience using AWS Security Hub, Azure Security Center, etc. to improve cloud security position. Willingness More ❯