26 to 46 of 46 Dynamic Application Security Testing Jobs in the UK

About the Role We are seeking multiple Security Consultants (Contract positions) to support a variety of transformation and security initiatives across different platforms including Private Cloud, Economic Crime Prevention (ECP), Payments, and Innovation Programs . You will join a high-performing Security Consultancy and Design team , working with product and engineering teams to embed security-by … design principles across cloud, DevSecOps, and enterprise technology landscapes. General Responsibilities (Applicable to All Roles) Perform threat modelling , risk assessments, and design reviews across infrastructure and applications. Provide security guidance and governance during project design and delivery phases. Define and document security requirements, controls, and testing approaches in line with enterprise and regulatory standards. Collaborate with engineering … Skills Required: Strong experience in assessing and designing Private Cloud environments (VMware, Containers, etc.) Hands-on experience with DevSecOps tools and processes – Kubernetes (K8s), Harness, Terraform, GitHub, SAST/DAST, and SDLC integration Proven capability in embedding security within engineering pipelines 2. Security Consultant – Economic Crime Prevention (ECP) Platform (Start Date: 17th November) Key Skills Required: Experience in More ❯

About the Role We are seeking multiple Security Consultants (Contract positions) to support a variety of transformation and security initiatives across different platforms including Private Cloud, Economic Crime Prevention (ECP), Payments, and Innovation Programs . You will join a high-performing Security Consultancy and Design team , working with product and engineering teams to embed security-by … design principles across cloud, DevSecOps, and enterprise technology landscapes. General Responsibilities (Applicable to All Roles) Perform threat modelling , risk assessments, and design reviews across infrastructure and applications. Provide security guidance and governance during project design and delivery phases. Define and document security requirements, controls, and testing approaches in line with enterprise and regulatory standards. Collaborate with engineering … Skills Required: Strong experience in assessing and designing Private Cloud environments (VMware, Containers, etc.) Hands-on experience with DevSecOps tools and processes – Kubernetes (K8s), Harness, Terraform, GitHub, SAST/DAST, and SDLC integration Proven capability in embedding security within engineering pipelines 2. Security Consultant – Economic Crime Prevention (ECP) Platform (Start Date: 17th November) Key Skills Required: Experience in More ❯

global, market-leading insurance organisation that's shaping the future of digital health and technology. This is your opportunity to be part of an innovative, forward-thinking environment where security, engineering excellence, and customer impact are at the heart of everything we do! What you'll do: Provide hands-on technical expertise in secure software development within a product … secure CI/CD pipelines and modern security practices. Ensure risk management, security, and quality are embedded in software delivery. Implement and manage security tooling (SAST, DAST) to support development and testing. Adhere to best practices in architecture, design, coding standards, and SDLC. Managing risk and security in our software estate through implementation of technology tooling … Demonstrate expert understanding of modern security practices and standards. What you'll bring: Technical leadership with strong decision-making and prioritisation skills. Expertise in secure systems design and infrastructure. Experience securing CI/CD pipelines and using security tools. Expertise in key technologies such as .NET/C#, Azure PaaS, Javascript, and Salesforce APEX, and in frameworks such More ❯

designing, developing, and maintaining large-scale, secure, and high-performing solutions. This role involves mentoring and coaching junior team members, translating stakeholder requirements into actionable user stories, and embedding security throughout the software development life cycle. The position calls for strong technical expertise, collaborative mindset, and an ability to deliver innovative solutions that align with business objectives. Experience Requirements … Software Development & Principles Programming Languages: Proficiency in one or more of: Java, Spring Boot, Python, JavaScript, TypeScript, ReactJS SOLID Principles: Familiarity with object-oriented and clean coding practices Testing & BDD Unit Testing Frameworks: Experience with Cypress, Cucumber, Behave, Selenium, or similar tools Domain-Specific Languages: Knowledge of BDD approaches (e.g., Cucumber, Gherkin) for test automation Containerisation & Microservices Container … build, configure, and secure cloud environments effectively Security & CI/CD Security Integration: Familiarity with embedding security checks at every phase of the SDLC (e.g., SAST, DAST) Automation Pipelines: Experience with Continuous Integration (CI), Continuous Delivery (CD), and continuous testing tools (e.g., Jenkins, GitHub Actions) Agile & Mentorship Agile Delivery: Background in Scrum or Kanban, assisting Product More ❯

designing, developing, and maintaining large-scale, secure, and high-performing solutions. This role involves mentoring and coaching junior team members, translating stakeholder requirements into actionable user stories, and embedding security throughout the software development life cycle. The position calls for strong technical expertise, collaborative mindset, and an ability to deliver innovative solutions that align with business objectives. Experience Requirements … Software Development & Principles Programming Languages: Proficiency in one or more of: Java, Spring Boot, Python, JavaScript, TypeScript, ReactJS SOLID Principles: Familiarity with object-oriented and clean coding practices Testing & BDD Unit Testing Frameworks: Experience with Cypress, Cucumber, Behave, Selenium, or similar tools Domain-Specific Languages: Knowledge of BDD approaches (e.g., Cucumber, Gherkin) for test automation Containerisation & Microservices Container … build, configure, and secure cloud environments effectively Security & CI/CD Security Integration: Familiarity with embedding security checks at every phase of the SDLC (e.g., SAST, DAST) Automation Pipelines: Experience with Continuous Integration (CI), Continuous Delivery (CD), and continuous testing tools (e.g., Jenkins, GitHub Actions) Agile & Mentorship Agile Delivery: Background in Scrum or Kanban, assisting Product More ❯

designing, developing, and maintaining large-scale, secure, and high-performing solutions. This role involves mentoring and coaching junior team members, translating stakeholder requirements into actionable user stories, and embedding security throughout the software development life cycle. The position calls for strong technical expertise, collaborative mindset, and an ability to deliver innovative solutions that align with business objectives. Experience Requirements … Software Development & Principles Programming Languages: Proficiency in one or more of: Java, Spring Boot, Python, JavaScript, TypeScript, ReactJS SOLID Principles: Familiarity with object-oriented and clean coding practices Testing & BDD Unit Testing Frameworks: Experience with Cypress, Cucumber, Behave, Selenium, or similar tools Domain-Specific Languages: Knowledge of BDD approaches (e.g., Cucumber, Gherkin) for test automation Containerisation & Microservices Container … build, configure, and secure cloud environments effectively Security & CI/CD Security Integration: Familiarity with embedding security checks at every phase of the SDLC (e.g., SAST, DAST) Automation Pipelines: Experience with Continuous Integration (CI), Continuous Delivery (CD), and continuous testing tools (e.g., Jenkins, GitHub Actions) Agile & Mentorship Agile Delivery: Background in Scrum or Kanban, assisting Product More ❯

designing, developing, and maintaining large-scale, secure, and high-performing solutions. This role involves mentoring and coaching junior team members, translating stakeholder requirements into actionable user stories, and embedding security throughout the software development life cycle. The position calls for strong technical expertise, collaborative mindset, and an ability to deliver innovative solutions that align with business objectives. Experience Requirements … Software Development & Principles Programming Languages: Proficiency in one or more of: Java, Spring Boot, Python, JavaScript, TypeScript, ReactJS SOLID Principles: Familiarity with object-oriented and clean coding practices Testing & BDD Unit Testing Frameworks: Experience with Cypress, Cucumber, Behave, Selenium, or similar tools Domain-Specific Languages: Knowledge of BDD approaches (e.g., Cucumber, Gherkin) for test automation Containerisation & Microservices Container … build, configure, and secure cloud environments effectively Security & CI/CD Security Integration: Familiarity with embedding security checks at every phase of the SDLC (e.g., SAST, DAST) Automation Pipelines: Experience with Continuous Integration (CI), Continuous Delivery (CD), and continuous testing tools (e.g., Jenkins, GitHub Actions) Agile & Mentorship Agile Delivery: Background in Scrum or Kanban, assisting Product More ❯

designing, developing, and maintaining large-scale, secure, and high-performing solutions. This role involves mentoring and coaching junior team members, translating stakeholder requirements into actionable user stories, and embedding security throughout the software development life cycle. The position calls for strong technical expertise, collaborative mindset, and an ability to deliver innovative solutions that align with business objectives. Experience Requirements … Software Development & Principles Programming Languages: Proficiency in one or more of: Java, Spring Boot, Python, JavaScript, TypeScript, ReactJS SOLID Principles: Familiarity with object-oriented and clean coding practices Testing & BDD Unit Testing Frameworks: Experience with Cypress, Cucumber, Behave, Selenium, or similar tools Domain-Specific Languages: Knowledge of BDD approaches (e.g., Cucumber, Gherkin) for test automation Containerisation & Microservices Container … build, configure, and secure cloud environments effectively Security & CI/CD Security Integration: Familiarity with embedding security checks at every phase of the SDLC (e.g., SAST, DAST) Automation Pipelines: Experience with Continuous Integration (CI), Continuous Delivery (CD), and continuous testing tools (e.g., Jenkins, GitHub Actions) Agile & Mentorship Agile Delivery: Background in Scrum or Kanban, assisting Product More ❯

designing, developing, and maintaining large-scale, secure, and high-performing solutions. This role involves mentoring and coaching junior team members, translating stakeholder requirements into actionable user stories, and embedding security throughout the software development life cycle. The position calls for strong technical expertise, collaborative mindset, and an ability to deliver innovative solutions that align with business objectives. Experience Requirements … Software Development & Principles Programming Languages: Proficiency in one or more of: Java, Spring Boot, Python, JavaScript, TypeScript, ReactJS SOLID Principles: Familiarity with object-oriented and clean coding practices Testing & BDD Unit Testing Frameworks: Experience with Cypress, Cucumber, Behave, Selenium, or similar tools Domain-Specific Languages: Knowledge of BDD approaches (e.g., Cucumber, Gherkin) for test automation Containerisation & Microservices Container … build, configure, and secure cloud environments effectively Security & CI/CD Security Integration: Familiarity with embedding security checks at every phase of the SDLC (e.g., SAST, DAST) Automation Pipelines: Experience with Continuous Integration (CI), Continuous Delivery (CD), and continuous testing tools (e.g., Jenkins, GitHub Actions) Agile & Mentorship Agile Delivery: Background in Scrum or Kanban, assisting Product More ❯

designing, developing, and maintaining large-scale, secure, and high-performing solutions. This role involves mentoring and coaching junior team members, translating stakeholder requirements into actionable user stories, and embedding security throughout the software development life cycle. The position calls for strong technical expertise, collaborative mindset, and an ability to deliver innovative solutions that align with business objectives. Experience Requirements … Software Development & Principles Programming Languages: Proficiency in one or more of: Java, Spring Boot, Python, JavaScript, TypeScript, ReactJS SOLID Principles: Familiarity with object-oriented and clean coding practices Testing & BDD Unit Testing Frameworks: Experience with Cypress, Cucumber, Behave, Selenium, or similar tools Domain-Specific Languages: Knowledge of BDD approaches (e.g., Cucumber, Gherkin) for test automation Containerisation & Microservices Container … build, configure, and secure cloud environments effectively Security & CI/CD Security Integration: Familiarity with embedding security checks at every phase of the SDLC (e.g., SAST, DAST) Automation Pipelines: Experience with Continuous Integration (CI), Continuous Delivery (CD), and continuous testing tools (e.g., Jenkins, GitHub Actions) Agile & Mentorship Agile Delivery: Background in Scrum or Kanban, assisting Product More ❯

Birmingham) Employment Type: Contract Visa: No for Student or PSW visa (no sponsorship available), Only UK citizen/ILR/dependent visa We’re looking for a DevSecOps/Security Consultant to enhance our secure delivery practices across a VMware-based platform. The ideal candidate will bring a strong understanding of DevSecOps principles, enabling secure CI/CD pipelines … and embedding cyber controls throughout the development lifecycle. Key Responsibilities: Conduct security reviews of the existing platform and pipelines. Define and deliver a DevSecOps roadmap with the engineering and architecture teams. Implement best practices for secrets management and code scanning capabilities. Collaborate with developers and stakeholders to ensure security is built-in, not bolted on. Provide guidance and … background in DevOps or development, with solid security appreciation. Knowledge of VMware platforms, CI/CD tooling, and automation pipelines. Experience with application security, SAST/DAST tools, and secrets management. Excellent communication and stakeholder management skills. Hands-on technical expertise preferred but not mandatory. More ❯

and clients on truly impactful projects. What you'll do: Embed security across the SDLC, promoting secure coding (OWASP) Automate security in CI/CD workflows (SAST, DAST, IAST, SCA, IaC) Perform appsec testing, code reviews, and vulnerability remediation Drive secure DevOps culture through training, playbooks, and developer champions Strengthen cloud & container security (AWS, Azure, GCP … OWASP ZAP Strong coding skills (Java, Python, JavaScript, Go, .NET) Familiar with CI/CD (Jenkins, GitHub Actions, Azure DevOps) and IaC (Terraform) Knowledge of OWASP Top 10, API security, and compliance (ISO 27001, SOC 2) Eligibility for SC clearance is mandatory (UK nationals only) Robert Walters Operations Limited is an employment business and employment agency and welcomes applications More ❯

range: £75,000–£84,000 + benefits Tech: AWS (EC2, Lambda, RDS, Route53, ELBs, EKS), Terraform, Kubernetes, Docker, CI/CD (Jenkins, GitHub Actions, CodePipeline), Python/Bash, Ansible, Security frameworks (CIS, OWASP), ** Sponsorship and offshore remote are not available for this position** Immersum continue to support one of the leading media businesses in the UK. They own and … responsibilities include: Designing and maintaining secure, scalable AWS infrastructure with Terraform, Kubernetes and Docker. Embedding security into CI/CD pipelines (Jenkins, GitHub Actions, CodePipeline) through SAST/DAST and dependency scanning. Collaborating with developers and product teams to promote DevSecOps practices, threat modelling and secure coding. Conducting security assessments, monitoring for vulnerabilities and leading remediation efforts. Operating … Infrastructure as Code: Terraform, Ansible Containers & Orchestration: Kubernetes, Docker CI/CD: Jenkins, GitHub Actions, AWS CodePipeline Monitoring: Prometheus, Grafana, ELK, CloudWatch Security: CIS, OWASP frameworks, SAST/DAST tools, dependency scanning Web & Systems: LAMP stack (Varnish, Nginx, Apache), MySQL/Postgres, MongoDB Networking & Security: SSL/TLS, TCP/IP, Firewalls, WAFs, DNS, Load Balancers If you More ❯

range: £75,000–£84,000 + benefits Tech: AWS (EC2, Lambda, RDS, Route53, ELBs, EKS), Terraform, Kubernetes, Docker, CI/CD (Jenkins, GitHub Actions, CodePipeline), Python/Bash, Ansible, Security frameworks (CIS, OWASP), ** Sponsorship and offshore remote are not available for this position** Immersum continue to support one of the leading media businesses in the UK. They own and … responsibilities include: Designing and maintaining secure, scalable AWS infrastructure with Terraform, Kubernetes and Docker. Embedding security into CI/CD pipelines (Jenkins, GitHub Actions, CodePipeline) through SAST/DAST and dependency scanning. Collaborating with developers and product teams to promote DevSecOps practices, threat modelling and secure coding. Conducting security assessments, monitoring for vulnerabilities and leading remediation efforts. Operating … Infrastructure as Code: Terraform, Ansible Containers & Orchestration: Kubernetes, Docker CI/CD: Jenkins, GitHub Actions, AWS CodePipeline Monitoring: Prometheus, Grafana, ELK, CloudWatch Security: CIS, OWASP frameworks, SAST/DAST tools, dependency scanning Web & Systems: LAMP stack (Varnish, Nginx, Apache), MySQL/Postgres, MongoDB Networking & Security: SSL/TLS, TCP/IP, Firewalls, WAFs, DNS, Load Balancers If you More ❯

R&D Senior Software Engineer Are you looking for more in life than just building another web app? Does upending cyber security resonate with you? We're a rapidly expanding cybersecurity startup revolutionizing vulnerability management for organizations of all sizes. For our customers, vulnerability management has always been a game of catch-up, with limited asset coverage and manual … processes. Nucleus Security's primary mission is to create a fast, scalable platform that not only addresses these challenges but also makes vulnerability management simple, fun, and effortless. Currently, we're looking for a passionate Senior Python Software Engineer to join our growing team of engineers. About Nucleus Security Nucleus Security is transforming how security and … with big data analytical systems such as BigQuery, Redshift, Snowflake, Databricks, SingleStore, etc. Experience working with vulnerability scanning technologies on any part of the tech stack (e.g., SCA, SAST, DAST, IAST, VM Scanning, Container, etc.) Experience maintaining applications on Linux platforms in cloud environments. Why You Should Be Excited Nucleus is a truly unique solution that's defining a market More ❯

an experienced Lead DevSecOps Engineer to play a key role in delivering secure, automated solutions for critical defence sector programmes. This is a fully on-site role supporting high-security defence projects, requiring candidates to be eligible and willing to undergo DV (Developed Vetting) clearance. As a Lead DevSecOps Engineer, you will drive the technical implementation of secure CI …/CD pipelines, Infrastructure as Code (IaC), and automated testing frameworks. Working closely with the DevSecOps Tech Lead, engineering teams, and customer stakeholders, you will help shape and maintain secure delivery processes, champion DevOps best practices, and lead a team of engineers through agile delivery. Key Responsibilities: Design … implement and support DevSecOps pipelines and tooling. Develop automation scripts (Ansible) and Infrastructure as Code using Terraform. Integrate and advise on security tools including SCA/IAST/DAST platforms such as Black Duck, Coverity, Snyk, and JFrog. Implement and manage automated testing (Selenium, Robot Framework) and test management systems. Guide the secure management of secrets using tools More ❯

CI/CD pipelines using Azure DevOps. Write and manage Infrastructure as Code using Terraform and Ansible. Integrate and advise on the use of security tools (SCA/DAST/IAST), such as Black Duck, Coverity, Snyk, and JFrog. Implement automated testing frameworks (e.g., Selenium, Robot Framework). Support the configuration of secure secrets management using Azure DevOps … and HashiCorp Vault. Work across both Linux and Windows environments. Support technical design decisions and ensure DevSecOps practices align with business and security objectives. Collaborate closely with scrum teams, DevSecOps leads, and other technical stakeholders. Contribute to re-usable IaC and automation artifacts and help other teams adopt best practices. Key Skills & Experience: Experience with DevOps tooling and automation … in secure environments. Proficient with CI/CD pipelines, Git, Terraform, Ansible, and security integration tools. Background in software development with strong problem-solving skills. Knowledge of agile delivery and secure software engineering practices. Strong communication and teamwork abilities. Please note: This role is in support of sensitive defence projects. UK nationality and eligibility for DV clearance are mandatory. More ❯

who also value the opportunity to bring their own ideas, tools and tech to the table. On offer Salary - Up to £80k £6k - Car allowance 15% Company Bonus 10% Security Clearance Bonus Benefits pack - includes - private medical, life assurance 10% pension and more Excellent career progression and skill up ops Plus … more What do I need? Experience with CI/CD pipelines - ideally Azure DevOps - AWs and GCP also considered IaC tools - Terraform, Ansible or similar SCA/IAST/DAST experience with tools like - Black Duck, JFrog, Snyk, Coverity or similar Experience with secure secrets management with tools such as Azure DevOps, Hashicorp Vault or similar Test management experience is … highly desirable - Selenium, Azure Test Plans, robot Framework or similar Please note this role is subject high level Security Clearance checks. Candidates must be willing and eligible to apply O.K. I'm in what's next? Apply with your latest CV below More ❯

have: Live in Edinburgh or are within commutable distance Solid experience in DevOps and Platform Engineering Git and version control workflows Security engineering tools and practices: SAST/DAST tools (Checkmarx, Veracode, SonarQube) Container security (Aqua, Snyk, Anchore) Programming and scripting languages (Python, Go, YAML, JSON etc.) A background in financial services or similar regulated industries. Familiarity with … compliance frameworks, and security requirements (e.g., ISO 27001, SOC 2, SOX, PCI DSS, FedRAMP, FFIEC, NYDFS, and SEC compliance requirements) A track record in consulting, solutions architecture, or technical coaching. Interest in technical sales and supporting go-to-market strategies. Excellent written and verbal communication skills, with the ability to translate complex technical topics to both technical and non … technical stakeholders. AWS/Azure/GCP certifications, CISSP, CISM, or other security certifications are a plus Generous equity plan. Remote-first working environment with travel to our Oslo office and customer sites across Europe (London, Zurich, and more). Opportunity to work on innovative solutions with a passionate and driven team. If you are excited by the idea More ❯

Security Platform Engineer Up to £100,000 + benefits Hybrid - London (1 day per week in office) We are supporting a leading brand looking for a hands-on DevOps Engineer with a security mindset. This is not a pure AppSec role, it is about building and owning CI/CD with GitHub Actions and embedding security tooling … to help engineering teams ship safely at pace. What you will be working on: Designing and optimising CI/CD with GitHub Actions and Azure DevOps Embedding SAST, SCA, DAST and secret scanning (tools such as Semgrep, Snyk, GHAS, Burp) into pipelines Automating with Python and creating reusable workflows and guardrails Collaborating with product and platform squads to deliver secure … bonus and 18% pension Flexible hybrid working with London office attendance only one day per week Work with a modern engineering organisation at scale Opportunity to shape how security is embedded into DevOps If this sound like you, click apply or reach out to matthew@infosecpeople.co.uk Please note: Unfortunately, we are unable to provide any form of sponsorship for More ❯

Security Platform Engineer Up to £100,000 + benefits Hybrid - London (1 day per week in office) We are supporting a leading brand looking for a hands-on DevOps Engineer with a security mindset. This is not a pure AppSec role, it is about building and owning CI/CD with GitHub Actions and embedding security tooling … to help engineering teams ship safely at pace. What you will be working on: Designing and optimising CI/CD with GitHub Actions and Azure DevOps Embedding SAST, SCA, DAST and secret scanning (tools such as Semgrep, Snyk, GHAS, Burp) into pipelines Automating with Python and creating reusable workflows and guardrails Collaborating with product and platform squads to deliver secure … bonus and 18% pension Flexible hybrid working with London office attendance only one day per week Work with a modern engineering organisation at scale Opportunity to shape how security is embedded into DevOps If this sound like you, click apply or reach out to matthew@infosecpeople.co.uk Please note: Unfortunately, we are unable to provide any form of sponsorship for More ❯