1 to 25 of 46 Remote OWASP Jobs in the UK

across engineering and product teams Requirements: 3+ years experience in DevOps, security engineering, or cloud infrastructure Strong scripting skills (Python, Bash, or PowerShell) Familiarity with tools like Snyk, SonarQube, OWASP ZAP, or Aqua Experience with Kubernetes, Docker, and infrastructure-as-code (Terraform, Helm) Understanding of security frameworks (ISO 27001, NIST, CIS Benchmarks) Bonus Points Certifications: AWS Security Specialty, CISSP, or More ❯

practices, tooling, and compliance frameworks The ideal Application Security Architect will have: Proven experience in application and cloud security architecture (AWS, Azure, or GCP) Strong understanding of threat modelling, OWASP Top 10, secure coding, and DevSecOps principles Hands-on experience with CI/CD integration, security automation, and infrastructure as code Familiarity with compliance and governance frameworks (ISO 27001, NIST More ❯

ofmodern software development approaches such as automated testing, test driven development, continuous integration, pair programming, code review and version control have understanding of common web security risks such as OWASP Top 10, and the corresponding mitigations enjoy researching and learning new programming tools and techniques and sharing their skills with others have experience working in a collaborative environment, and an More ❯

in mentoring and adapting coaching style to diverse learning needs Confident communicator who can align technical solutions with business priorities Knowledge of secure coding practices and common vulnerabilities (e.g., OWASP Top 10) Familiarity with performance profiling and optimisation It would be a bonus if you also had: Commercial experience with serverless technologies (e.g., AWS Lambda, DynamoDB, API Gateway) Exposure to More ❯

and Azure DevOps (CI/CD) Familiarity with scripting languages like PowerShell, YAML, JSON Hands-on with application security tools and DevSecOps processes Understanding of frameworks and standards like OWASP, NIST SSDF, ISO27001, NCSC Experience with threat modelling, risk assessments, and secure design reviews Confident owning security strategy and tooling across complex product landscapes A strong communicator - able to engage More ❯

and Azure DevOps (CI/CD) Familiarity with scripting languages like PowerShell, YAML, JSON Hands-on with application security tools and DevSecOps processes Understanding of frameworks and standards like OWASP, NIST SSDF, ISO27001, NCSC Experience with threat modelling, risk assessments, and secure design reviews Confident owning security strategy and tooling across complex product landscapes A strong communicator - able to engage More ❯

/CD tools such as Jenkins, AWS CodePipeline, GitLab CI, or GitHub Actions Solid understanding of relational and NoSQL databases (e.g., PostgreSQL, MongoDB) Knowledge of security best practices (e.g. OWASP) and performance optimization Excellent leadership, communication, time management and mentoring skills, with the ability to influence technical direction Desirable Qualifications Experience in fintech, payments, or enterprise SaaS platforms Exposure to More ❯

/Postgres , databases DevOps: CI/CD, Docker , containerisation, Ubuntu/Linux, AWS , Serverless, CDK/CDKTF , Ansible Quality & Analytics: Postman API, testing frameworks, web analytics Patterns: Secure SDLC, OWASP Top 10 , TDD , Git-based workflows Must-have experience Proven delivery of full-stack web applications (frontend + backend + API) from design to production deployment . Hands-on with More ❯

/Postgres , databases DevOps: CI/CD, Docker , containerisation, Ubuntu/Linux, AWS , Serverless, CDK/CDKTF , Ansible Quality & Analytics: Postman API, testing frameworks, web analytics Patterns: Secure SDLC, OWASP Top 10 , TDD , Git-based workflows Must-have experience Proven delivery of full-stack web applications (frontend + backend + API) from design to production deployment . Hands-on with More ❯

. Familiarity with containerisation and infrastructure tools such as Docker, Kubernetes, Helm, and Terraform. Expertise in performance optimisation, caching, and monitoring. A solid understanding of secure coding practices and OWASP guidelines. Desirable: Exposure to Guidewire Software (PolicyCenter, BillingCenter) and mobile frameworks like Ionic Capacitor. You’ll Excel Here If You: Enjoy leading by example and mentoring others. Can translate complex More ❯

embedding security in agile development environments Hands-on knowledge of cloud platforms , CI/CD pipelines , and scripting (PowerShell, YAML, JSON, etc.) Familiarity with frameworks and standards such as OWASP , NIST SSDF , ISO27001 , or NCSC Practical experience with threat modelling , security tooling , and risk assessments Excellent communication skills, able to influence and engage at all levels from developers to execs More ❯

embedding security in agile development environments Hands-on knowledge of cloud platforms , CI/CD pipelines , and scripting (PowerShell, YAML, JSON, etc.) Familiarity with frameworks and standards such as OWASP , NIST SSDF , ISO27001 , or NCSC Practical experience with threat modelling , security tooling , and risk assessments Excellent communication skills, able to influence and engage at all levels from developers to execs More ❯

profile with working samples of previously produced code * Docker * Laravel Livewire/Inertia * DevOps * Experience with security, form validation, XSS prevention, database security, session management, input validation and other OWASP guidelines You will be able to be part of something special. As the Lead, you will be given so much autonomy, and it is a true green field project. Job More ❯

own experience to develop pragmatic solutions and resolve complex issues. Certifications such as CISSP, CEH, OSCP, or GSEC are preferred. Knowledge of security principles, practices, and frameworks, such as OWASP, NIST, and ISO. Awareness of security tools and technologies, such as SAST, DAST, IAST, SCA, WAF, IDS, IPS. Experience in conducting threat modelling and risk assessments. Interview process The interview More ❯

with integrating test automation into CI/CD pipelines (e.g., GitLab CI, Jenkins, GitHub Actions) Experience with non-functional testing , including: Performance testing (e.g., JMeter, Gatling), Security testing (e.g., OWASP ZAP, Checkmarx), Accessibility testing (e.g., Axe, WAVE, Pa11y) Understanding of shift-left testing practices and modern DevOps/Agile methodologies Experience testing in cloud-based environments , ideally Azure Strong communication More ❯

security tools and technologies (e.g. WAFs, AV, email/web gateways, ACLs). Expertise in secure coding practices and security testing (SAST, DAST, SCA, Pen Testing). Familiarity with OWASP Top 10, CWE, and remediation strategies. Hands-on experience with security testing tools and techniques. Excellent communication and documentation skills. Relevant certifications (e.g. CISSP, SANS GCIA, Security+, CCNA/CCNP More ❯

development, applying modern tools and practices. Work with Continuous Security, CI/CD, and automated testing approaches. Apply expertise in network security (OSI, TCP/IP), web application security (OWASP), and cryptography (PKI, TLS). Mentor, coach, and support the development of junior staff. Communicate complex security topics effectively to both technical and non-technical audiences. Essential Skills & Experience Proven More ❯

profile with working samples of previously produced code * Docker * Laravel Livewire/Inertia * DevOps * Experience with security, form validation, XSS prevention, database security, session management, input validation and other OWASP guidelines You will be able to be part of something special. You will be given so much autonomy, and it is a true green field project. Job responsibilities include: * Work More ❯

etc.) Proven track record as an Application or Cloud Security Architect Experience delivering into Public Sector, National Security or NHS programmes Familiarity with frameworks such as NCSC CAF, ISO27001, OWASP, NIST, or SABSA Excellent stakeholder management and communication skills 💼 The Package Up to £120,000 base salary Flexible hybrid or remote working (any UK location outside London) 25+ days annual More ❯

Security Professional • PWB - Offensive Security : Penetration Testing with Back|Track • SANS GCIH - GIAC Certified Incident Handler • Major involvement in Network & Web Application vulnerability assessment and penetration tests utilising the OWASP and OSSTMM open standards and other standards. • Lead IT Security Assessment, Incident Response (CIRT), and Forensic Analysis tasks for several major manufacturers, law firms, utility and non-profit organisations. • Lead More ❯

Mentor junior testers and help shape the consultancy’s internal security capability. What You’ll Bring 2–5 years’ experience in ethical hacking or penetration testing. Strong understanding of OWASP, web, and infrastructure testing. Experience with Burp Suite, Nmap, Nessus, Qualys, Metasploit, Kali Linux. Familiarity with cloud security (AWS, Azure, or GCP). Confident communicator with client-facing experience. Bonus More ❯

with Terraform , Docker , Kubernetes , and Git . Solid CI/CD and security automation skills. Knowledge of cloud security (IAM, encryption, network controls). Bonus: Cloud certifications, experience with OWASP ZAP or Burp Suite. You'll be part of a forward-thinking, impact-driven team blending science, technology, and innovation to improve global health outcomes. More ❯

in working with SQL Server and designing APIs, including REST and GraphQL. Knowledgeable about cloud platforms such as Azure, AWS, and microservices architecture. Familiar with secure development practices and OWASP standards. An effective, respectful communicator across technical and non-technical audiences. Experience working with legacy codebases (e.g., VB.NET) and modernizing them gradually. Knowledge of MicroFrontend architecture and ways to optimize More ❯

processes. Key Requirements: Proven experience designing and implementing secure cloud solutions. Strong understanding of application and infrastructure architecture. Background in network and web application security (OSI, TCP/IP, OWASP, PKI, TLS). Knowledge of governance, risk, and compliance practices. Relevant certifications (OSCP, CREST, TIGER, etc.) are beneficial. Benefits Include: Up to £120,000 base salary + performance bonus Healthcare More ❯

cloud services, particularly AWS (e.g., Lambda, S3, CloudWatch). Ability to communicate clearly and work effectively in a team setting. Understanding of secure coding practices and common vulnerabilities (e.g., OWASP Top 10) Familiarity with CI/CD pipelines and automated deployment processes. Don't meet every single requirement? That's okay, and you aren't alone! Research shows that women More ❯