6 of 6 Remote/Hybrid Dynamic Application Security Testing Jobs in the UK

Description The Security Engineering Team Lead owns and evolves MO's application security capability, embedding security into engineering practices, platforms, and delivery pipelines while leading a small team of specialists. Reporting to the Cyber Security Technical Manager, the role drives secure-by-design principles across … professionals, with the ability to build capability within a team. Hands-on experience implementing and operating application security tooling, such as SAST, DAST, SCA, and secrets management. Experience integrating security controls into CI/CD pipelines (e.g. GitHub, AWS DevOps), including automated testing and policy enforcement. ...

Description The Security Engineering Team Lead owns and evolves MO's application security capability, embedding security into engineering practices, platforms, and delivery pipelines while leading a small team of specialists. Reporting to the Cyber Security Technical Manager, the role drives secure-by-design principles across … professionals, with the ability to build capability within a team. Hands-on experience implementing and operating application security tooling, such as SAST, DAST, SCA, and secrets management. Experience integrating security controls into CI/CD pipelines (e.g. GitHub, AWS DevOps), including automated testing and policy enforcement. ...

Description: Security Assurance Coordinator - Active SC Clearance Hybrid Working: 1 day on site in Bristol, Bath or London - Non negotiable 9 Month Contract £600-£650 per a day inside IR35 Talent Consulting are seeking a SC Cleared Client facing Security Consultant to drive the Security Assurance activities … SMPs, SyOPs, vulnerability and patch management plans, privacy notices, and terms of use. c. Support DAR entries, IT health checks (ITHC) or SAST/DAST testing where applicable, remediation action plans, and MODCERT reporting using Vigilant. 2) Wider MOD Assurance a. Support JSP 453 compliance, including PEF and TRRA ...

Azure DevSecOps Consultant – Information Security Location: Ipswich, Suffolk Onsite/Hybrid (UK – 3 days per week in office). Candidates must live a commutable distance from Ipswich. We are partnered with a major enterprise undergoing significant cloud-security transformation, and we're seeking an experienced Azure DevSecOps Consultant … Implementing automated cloud control validation aligned to internal and industry frameworks. Leading the adoption of Policy as Code principles. Integrating security tooling (SAST, DAST, SCA, secret scanning) into the DevOps toolchain. Creating documentation, SOPs, and guidance to support secure development and cloud practices. Translating complex technical risks into clear ...

Permanent Senior Security Engineer - London My client an insurance organisation in London has a requirement for a permanent Security Engineer, to join their IT department. Key Skills: Proven experience in a similar role within a mid/large sized organisation, preferably in a regulated industry such as Financial … covering multiple security domains. Cyber security subject matter expert with relevant certifications such as CISSP, CISM, CSSP, or equivalent. Proficiency in SAST, DAST and SCA with hands on experience integrating such tools into development pipelines. Extensive experience of consulting on projects, building in security requirements and ensuring ...

current AI tooling helps and where it falls short. Apply engineering practices that hold up in production: TDD, secrets management and rotation, SAST/DAST, structured logging, metrics, tracing, and automated CI/CD (GitHub Actions, Jenkins). Own what you build end-to-end, including the infrastructure and operations … tools (Claude Code, Cursor, GitHub Copilot) with demonstrable workflows, sub-agents, skills, and innovative approaches. Strong Python or TypeScript, with OOP, SOLID, 12-factor application development, and microservice architecture. You've built Next.js applications, FastAPI services, and similar. End-to-end implementation experience with vector databases, retrieval pipelines ...