1 to 25 of 33 Remote/Hybrid OWASP Jobs in the UK

segmentation, and host security. Hands on experience with the following security products Trellix, Ivanti, ClearSwift, Yubikey Understanding of secure coding practices and common vulnerabilities (OWASP Top 10, SANS Top 25). Expertise in identity and access management (IAM), including RBAC, ABAC, JWT and Cookie based authentication. Incident detection and response ...

have: Knowledge of platform engineering patterns (g. sidecar architecture, secure base images, technical contracts). Familiarity with accessibility and security testing standards (g. OWASP, WCAG). Benefits Alongside your salary, DBT contributes £17,991 towards you being a member of the Civil Service Defined Benefit Pension scheme. Learning and development ...

have: Knowledge of platform engineering patterns (g. sidecar architecture, secure base images, technical contracts). Familiarity with accessibility and security testing standards (g. OWASP, WCAG). Benefits Alongside your salary, DBT contributes £17,991 towards you being a member of the Civil Service Defined Benefit Pension scheme. Learning and development ...

have: Knowledge of platform engineering patterns (g. sidecar architecture, secure base images, technical contracts). Familiarity with accessibility and security testing standards (g. OWASP, WCAG). Benefits Alongside your salary, DBT contributes £17,991 towards you being a member of the Civil Service Defined Benefit Pension scheme. Learning and development ...

have: Knowledge of platform engineering patterns (g. sidecar architecture, secure base images, technical contracts). Familiarity with accessibility and security testing standards (g. OWASP, WCAG). Benefits Alongside your salary, DBT contributes £17,991 towards you being a member of the Civil Service Defined Benefit Pension scheme. Learning and development ...

have: Knowledge of platform engineering patterns (g. sidecar architecture, secure base images, technical contracts). Familiarity with accessibility and security testing standards (g. OWASP, WCAG). Benefits Alongside your salary, DBT contributes £17,991 towards you being a member of the Civil Service Defined Benefit Pension scheme. Learning and development ...

have: Knowledge of platform engineering patterns (g. sidecar architecture, secure base images, technical contracts). Familiarity with accessibility and security testing standards (g. OWASP, WCAG). Benefits Alongside your salary, DBT contributes £17,991 towards you being a member of the Civil Service Defined Benefit Pension scheme. Learning and development ...

/CD, Docker , containerisation, Ubuntu/Linux, AWS , Serverless, CDK/CDKTF , Ansible Quality & Analytics: Postman API, testing frameworks, web analytics Patterns: Secure SDLC, OWASP Top 10 , TDD , Git-based workflows Must-have experience Proven delivery of full-stack web applications (frontend + backend + API) from design to production ...

Secure architecture design and secure-by-design principles Risk assessment, threat modelling, and vulnerability management Security frameworks: ISO 27001, NIST 800-30/53, OWASP Cloud security architecture (AWS, Azure, GCP) Incident response, penetration testing, and remediation concepts Persuasive communication skills across technical and non-technical stakeholders Excellent analytical, documentation ...

systems and TCP/IP networking protocols Proven ability to perform source code reviews and application security analysis Advanced understanding of web application vulnerabilities (OWASP Top 10) and mitigation strategies Excellent report writing and executive communication skills—ability to translate technical findings into business risk Ability to work autonomously ...

Clearance (must be willing to pursue DV Clearance ) Industry specific qualifications Proven hands-on penetration testing experience Strong understanding of testing frameworks such as OWASP Knowledge of Cyber Security standards including ISO 27001, CIS and PCI DSS Experience working with Linux and Windows environments Exposure to cloud platforms such ...

Azure Key Vault for secure secret management across environments Writing and maintaining unit and integration tests (NUnit and ViTest) Ensuring all development aligns with OWASP secure coding standards Contributing to CI/CD pipeline improvements and secure deployment practices Participating in architecture and technical design reviews Collaborating with UI/ ...

responsibilities are: Technical Leadership Define and evolve backend architecture to ensure scalability, maintainability, and performance. Set coding standards and champion secure development practices (e.g. OWASP). Influence technology choices, frameworks, and tools to support engineering excellence. Oversee improvements to CI/CD pipelines, build processes, and operational workflows. Can clearly ...

Info Security experience working in an AWS Environment Previous application testing experience securing coding practices and vulnerability/penetration testing using guidelines such as OWASP Top 10. Good experience delivering security policies and procedures (ISO27001, CSA, NIST, GDPR etc.) Excellent stakeholder management experience and collaborating with other teams ...

Crest Team Member Proven hands-on penetration testing experience - must be able to hit the ground running Strong knowledge of testing frameworks including OWASP Knowledge of Cyber Security standards and policies such as ISO 27001, CIS, and PCI DSS. Experience across Linux and Windows environments Knowledge of cloud environments (Azure ...

ABSOLUTE MUST Proven hands-on penetration testing experience - must be able to hit the ground running Strong knowledge of testing frameworks including OWASP Knowledge of Cyber Security standards and policies such as ISO 27001, CIS, and PCI DSS. Experience across Linux and Windows environments Knowledge of cloud environments (Azure ...

security governance frameworks CISSP (or equivalent certification) Experience with risk assessments, threat modelling, and security design reviews Broad technical understanding across: Application security (e.g. OWASP, IAM, cryptography) Infrastructure security (networks, endpoints, cloud) Operational security (incident management, DR/BCP, patching) Experience managing or supporting vulnerability assessments and penetration testing Ability ...

gateways (Apigee, Azure API Management, Kong, Mulesoft). Strong knowledge of OAuth2.0, OIDC, JWT, mTLS, TLS, and Zero Trust principles. Deep understanding of OWASP API Security Top 10 and secure design patterns. Experience designing security controls in cloud (Azure, AWS, or GCP). Ability to create architectural artefacts (HLDs, LLDs ...

Criteria: Assessment experience to EN (Apply online only), EN 18031-x series of standards, NIST 8259, NIST CSF, etc Additional cybersecurity credentials such as OWASP, OSCP, CISSP etc Knowledge of security architecture design and applying regulatory guidance on cybersecurity assessment methodologies for risk management. Practical knowledge with the development ...

Infrastructure Web applications and APIs Cloud, mobile and wireless environments Familiar with tools such as: Nmap Burp Suite SQLmap Kali Linux Metasploit Knowledge of OWASP testing methodologies Experience with vulnerability management tools (Tenable, Rapid7 or Qualys) Strong technical reporting and communication skills Desirable 3+ years penetration testing experience Public sector ...

M365 security tooling and firewalls Understanding of vulnerability management, incident response, endpoint protection and identity & access management Familiarity with frameworks such as NIST, ISO27001, OWASP, MITRE, CIS Benchmarks Experience operating within a regulated environment (Financial Services preferred) Ability to take ownership, work independently and make risk-based security decisions Desirable ...

customer and internal team interactions. Bonus Points: Experience with helpdesk or ticketing software (e.g., Zendesk, ZohoDesk). Experience with security best practices (e.g., OWASP, STRIDE). Interest in automating repetitive tasks using AI tools and techniques. Experience in high-volume production environments with strict availability SLAs. Knowledge of the financial ...

design principles are consistently applied. Experience producing AppSec maturity roadmaps, target-state models, and governance frameworks. Strong understanding of industry standards and frameworks (OWASP ASVS, OWASP SAMM, NIST, ISO 27034). Desirable Skills/Knowledge/Experience Experience implementing or advising on secure use of AI/ML applications, including ...

years’ commercial experience in penetration testing or offensive security Broad exposure across multiple testing domains (infrastructure, application, cloud) Strong understanding of common vulnerabilities (e.g. OWASP Top 10) Ability to work with limited information and still deliver structured, effective outcomes Excellent written and verbal communication skills Desirable Experience Experience working within ...

advantageous) Who will: Own and enforce security standards and best practices for all back-office systems Guide the team on secure web application development (OWASP Top 10, threat modelling) Plan, prioritise, and manage team workload to meet business objectives and delivery timelines Mentor and support team members, promoting best practices ...