1 to 25 of 31 Remote/Hybrid OWASP Jobs in the UK

secure coding and SDLC practices Experience working within CI/CD and DevSecOps environments Knowledge of security frameworks such as: NCSC, NIST, CIS, OWASP, ISO27001, PCI DSS/GDPR Strong understanding of common attack vectors (e.g. XSS, SQL injection) Scripting or programming capability across Linux/Windows environments Strong communication ...

segmentation, and host security. Hands on experience with the following security products Trellix, Ivanti, ClearSwift, Yubikey Understanding of secure coding practices and common vulnerabilities (OWASP Top 10, SANS Top 25). Expertise in identity and access management (IAM), including RBAC, ABAC, JWT and Cookie based authentication. Incident detection and response ...

Secure architecture design and secure-by-design principles Risk assessment, threat modelling, and vulnerability management Security frameworks: ISO 27001, NIST 800-30/53, OWASP Cloud security architecture (AWS, Azure, GCP) Incident response, penetration testing, and remediation concepts Persuasive communication skills across technical and non-technical stakeholders Excellent analytical, documentation ...

everything listed, but exposure to some of the following would be highly beneficial: Testing & Automation: JUnit, Playwright, Selenium, Cucumber, Postman Non-Functional Testing: Gatling, OWASP ZAP DevOps & Platforms: Git/GitLab, Docker, Kubernetes, Azure and/or AWS Accessibility: WCAG, WAVE, Axe About you You’ll be someone ...

Excellent communication and coaching skills Stakeholder engagement and collaboration Experience with some of the following is highly desirable: JUnit, Playwright, Selenium, Cucumber Postman, Gatling, OWASP ZAP Docker/Kubernetes Azure and/or AWS Accessibility standards and tooling (WCAG, Wave, Axe) About you Passionate about quality and engineering excellence Comfortable ...

conducting threat modelling (e.g. STRIDE, attack trees) and risk analysis Strong understanding of security frameworks and best practice such as ISO 27001, NIST, CIS, OWASP, NCSC guidance Experience working in the UK Public Sector and associated security standards and guidance including GovAssure/NCSC CAF, HMG Security Policy Framework. Knowledge ...

architectures . Proven experience with risk assessment methodologies and maintaining enterprise risk registers . Working knowledge of risk assessment methodologies (e.g. ISO 31000, FAIR, OWASP risk rating). Strong understanding of Gov Assure, CAF, ISO 27001, Cyber Essentials, and NIST frameworks. Experience conducting or supporting security audits and implementing remediation ...

these practices to accelerate delivery and improve quality Desirable Skills In‐depth knowledge of industry security frameworks and web/API security standards e.g., OWASP Top 10, MITRE ATT&CK, OAuth 2.0, OpenID Connect, SAML – to guide secure design and development practices Deep expertise in security architecture and secure ...

protocols (e.g. A2A) Familiarity with MCPs for tool and context integration in agentic systems Familiarity with secure-by-design development principles (ISO 27001, NIST, OWASP) Experience in defence, national security, or similarly regulated environments Contributions to open-source AI/ML projects Soft Skills Delivery-focused - you ship working systems ...

fintech knowledge (reconciliation, idempotency, auditability, ledger concepts). Experience with distributed systems patterns (queues, background jobs, retries, rate limiting). Security experience (threat modelling, OWASP-style concerns, secure API design). Familiarity with Terraform. Why join us? £60k salary + equity 40 days holiday (incl. bank holidays) Pension scheme ...

fintech knowledge (reconciliation, idempotency, auditability, ledger concepts). Experience with distributed systems patterns (queues, background jobs, retries, rate limiting). Security experience (threat modelling, OWASP-style concerns, secure API design). Familiarity with Terraform. Why join us? £60k salary + equity 40 days holiday (incl. bank holidays) Pension scheme ...

fintech knowledge (reconciliation, idempotency, auditability, ledger concepts). Experience with distributed systems patterns (queues, background jobs, retries, rate limiting). Security experience (threat modelling, OWASP-style concerns, secure API design). Familiarity with Terraform. Why join us? £60k salary + equity 40 days holiday (incl. bank holidays) Pension scheme ...

fintech knowledge (reconciliation, idempotency, auditability, ledger concepts). Experience with distributed systems patterns (queues, background jobs, retries, rate limiting). Security experience (threat modelling, OWASP-style concerns, secure API design). Familiarity with Terraform. Why join us? £60k salary + equity 40 days holiday (incl. bank holidays) Pension scheme ...

fintech knowledge (reconciliation, idempotency, auditability, ledger concepts). Experience with distributed systems patterns (queues, background jobs, retries, rate limiting). Security experience (threat modelling, OWASP-style concerns, secure API design). Familiarity with Terraform. Why join us? £60k salary + equity 40 days holiday (incl. bank holidays) Pension scheme ...

doing Lead backend architecture – Define and evolve scalable, secure, high-performance backend systems Set engineering standards – Champion best practices, secure coding (OWASP), and high-quality delivery Hands-on technical contribution – Support critical backend work and review complex code Guide teams & mentor engineers – Facilitate design discussions, code reviews, and technical decision ...

Infrastructure as Code (Terraform or CDK) Strong grounding in clean architecture, SOLID principles, and code maintainability Knowledge of API integration and secure development practices (OWASP) What you'll be doing: Delivering end-to-end software solutions in a modern tech stack Working closely with product managers, QA, and engineering leadership ...

deploying and operating containerised services in cloud environments (Azure preferred) Strong understanding of distributed systems, scalability, and system resilience Knowledge of secure coding practices, OWASP principles, and regulatory/compliance considerations Hands-on experience with CI/CD pipelines, observability tooling, and incident management Ability to write clear technical documentation ...

Bases, Guardrails, and model lifecycles. AI/ML Core: Mastery of FMs, RAG, tool-use, and non-deterministic agent logic. Security Frameworks: Proficiency in OWASP LLM Top 10 and NIST AI RMF . Role 1: Identity Expert Mission: Secure the "Human-to-Agent" and "Agent-to-Resource" identity chain. ...

owners. Support secure delivery of web applications and APIs, working closely with Web and Salesforce teams and advising on common risks such as the OWASP Top 10. Develop and maintain security monitoring use cases, dashboards, and detection rules, tuning alerts to reduce false positives and improve coverage. Contribute to security ...

CD. Key deliverables: Build and enforce secure Azure infrastructure using Terraform (modular, scalable, production-ready) Implement perimeter security with Azure Front Door + WAF (OWASP, bot protection, rule tuning) Define governance using Azure Policy as code (networking, firewall, compliance controls) Secure AKS workloads with container scanning and runtime protections Design ...

DevOps/Jenkins, Git, and CI/CD pipelines Solid SQL/database knowledge (SQL Server, Entity Framework) Understanding of secure coding practices (e.g. OWASP) Experience working in Agile or similar delivery environments Please reach out to Fintan at TEC Partners for all of the details. ...

Youll lead the implementation of security controls across the Azure estate, including: Designing and deploying perimeter protection using Azure Front Door with WAF policies (OWASP Top 10, bot protection). Analysing traffic, tuning WAF rules, and working with stakeholders to reduce false positives. Defining and enforcing governance through Azure Policy ...

lead the implementation of security controls across the Azure estate, including: Designing and deploying perimeter protection using Azure Front Door with WAF policies (OWASP Top 10, bot protection). Analysing traffic, tuning WAF rules, and working with stakeholders to reduce false positives. Defining and enforcing governance through Azure Policy, particularly ...

lead the implementation of security controls across the Azure estate, including: Designing and deploying perimeter protection using Azure Front Door with WAF policies (OWASP Top 10, bot protection). Analysing traffic, tuning WAF rules, and working with stakeholders to reduce false positives. Defining and enforcing governance through Azure Policy, particularly ...

secure software development lifecycle practices • Experience working with CI/CD and DevSecOps practices • Knowledge of security frameworks and standards (e.g. NCSC, NIST, CIS, OWASP, ISO27001, PCI DSS, GDPR) • Strong understanding of common attack vectors (OWASP Top 10, XSS, SQL injection, etc.) • Good programming or scripting ability across Linux/ ...