1 to 25 of 28 Remote/Hybrid OWASP Jobs in the UK

Terraform) Containerisation (Docker, AKS) and serverless (Azure Functions) Monitoring and observability (Application Insights, Log Analytics) Secrets management and vulnerability scanning (Key Vault, SonarQube, OWASP) Architecture & Design Microservices and event-driven design (Service Bus, Event Grid, Kafka) Domain-Driven Design (DDD) principles Resilient and scalable system patterns (circuit breakers, retries) Integration ...

Secure architecture design and secure-by-design principles Risk assessment, threat modelling, and vulnerability management Security frameworks: ISO 27001, NIST 800-30/53, OWASP Cloud security architecture (AWS, Azure, GCP) Incident response, penetration testing, and remediation concepts Persuasive communication skills across technical and non-technical stakeholders Excellent analytical, documentation ...

tooling. * Proficiency in Python, with the ability to develop automation, security tooling, and data driven scripts. * Strong understanding of secure software development practices, including OWASP principles and DevSecOps methodologies integrated into CI/CD workflows. * Experience securing cloud and AI workloads on major cloud platforms such as AWS and Azure. ...

RBAC, ABAC, PAM, SSO) Strong analytical skills with the ability to interpret complex technical information Good understanding of threat modelling and threat intelligence methodologies (OWASP, STRIDE, MITRE) For more details, please reach out to . Reasonable Adjustments: Respect and equality are core values to us. We are proud ...

development is required. Maintain awareness of web application security and building applications which meet high standards of security, pass penetration tests and align with OWASP recommendations. Taking an active part in the whole Software Development Lifecycle end-to-end - including conception, design, architecture, build and deployment. Producing accurate estimates ...

edge AI or constrained/offline deployments. MLOps experience (Sagemaker, Kubeflow, ZenML). Experience building RESTful services around AI pipelines. ISO 27001, NIST SSDF, OWASP SAMM, or GDPR compliance literacy. Experience with AWS Karpenter, Prometheus, or similar observability stacks. Soft Skills Research-driven mindset, eager to experiment and iterate. Able ...

similar. Experience building documentation dashboards, status dashboards, or admin-style interfaces. Understanding of basic secure coding practices or awareness of concepts like the OWASP Top 10. Experience working on products that interact with hardware, embedded systems, or IoT devices. Comfort using AI coding tools to speed up development while still ...

similar. Experience building documentation dashboards, status dashboards, or admin-style interfaces. Understanding of basic secure coding practices or awareness of concepts like the OWASP Top 10. Experience working on products that interact with hardware, embedded systems, or IoT devices. Comfort using AI coding tools to speed up development while still ...

Comfortable operating independently while collaborating with multiple teams. Familiarity with cloud security, microservices, and modern architectures is a plus. Experience with tools such as OWASP ZAP, Burp Suite, Acunetix, Netsparker, Checkmarx, Veracode, Fortify, or SonarQube is highly desirable. Why Apply? Influence the security posture of a leading UK Bank ...

techniques and supply-chain risks. Cloud & Frameworks: Familiarity with AWS/Azure/GCP security and industry standards (NIST AI RMF, ISO 27001, OWASP Top 10 for LLMs, MITRE ATLAS). Consulting Skills: Ability to translate complex technical risks into actionable guidance for senior stakeholders. Preferred Skills Certifications: CISSP, CCSP ...

technical security concepts to technical and non-technical audiences including executives. Perform technical quality reviews and conduct technical conversations directly with clients. Confident with OWASP Top 10 and SANS Top 25 vulnerabilities and ability to effectively communicate methodologies and techniques with development teams. Utilize tools such as BurpSuite, Nessus, Nmap ...

practices . Strong understanding of Web Applications, Microservices, APIs, authentication/authorization protocols , and data architecture . Knowledge of secure software development practices , GDPR, OWASP, and NCSC cloud security principles. Experience delivering AI-based solutions, real-time data integration, or IoT solutions is advantageous. Consultancy & Leadership Skills Excellent communication skills ...

practices . Strong understanding of Web Applications, Microservices, APIs, authentication/authorization protocols , and data architecture . Knowledge of secure software development practices , GDPR, OWASP, and NCSC cloud security principles. Experience delivering AI-based solutions, real-time data integration, or IoT solutions is advantageous. Consultancy & Leadership Skills Excellent communication skills ...

plan and prioritise workloads You might also have (Desirable) Experience with cloud technologies, including Google or AWS certification Experience with Web Security best practices (OWASP) Behaviors we value in our team: You will possess strong communication skills, with the ability to multiple priorities and deadlines In a collaborative and effective ...

Doing... Technical Leadership Define and evolve backend architecture to ensure scalability, maintainability, and performance. Set coding standards and champion secure development practices (e.g. OWASP). Influence technology choices, frameworks, and tools to support engineering excellence. Oversee improvements to CI/CD pipelines, build processes, and operational workflows. Can clearly ...

Science, Cybersecurity or related subject (or UK Master's as alternative) 3-5 years commercial penetration testing experience Strong understanding of offensive security techniques, OWASP Top 10, MITRE ATT&CK Deep knowledge of operating systems, networking protocols, and system architecture Experience with penetration testing tools (Burp Suite, Metasploit, custom scripts ...

/Auditor Professional skills/experience Demonstrate a good understanding of information security frameworks, standards and security best practice (ISO27001, NIST CSF, Cyber Essentials, OWASP). Knowledge and adherence to data protection legislation and regulatory requirements (e.g. GDPR, FCA SYSC, PCI DSS). Extensive experience and understanding of security analysis ...

Criteria: Assessment experience to EN (Apply online only), EN 18031-x series of standards, NIST 8259, NIST CSF, etc Additional cybersecurity credentials such as OWASP, OSCP, CISSP etc Knowledge of security architecture design and applying regulatory guidance on cybersecurity assessment methodologies for risk management. Practical knowledge with the development ...

based prioritisation . Experience designing, implementing, and maturing vulnerability management programmes. Knowledge & Mindset Familiarity with security frameworks such as NIST CSF, ISO 27001, and OWASP . Understanding of regulatory and compliance requirements, including GDPR, NIS2, CE+, and ONR . A continuous improvement mindset, with a passion for learning and strengthening ...

testing API security testing Internal and external infrastructure assessments, including build and configuration reviews Mobile application testing, with an understanding of frameworks such as OWASP MASVS Experience in any of the following areas would be advantageous: Compiled/thick-client application testing Cloud security assessments (AWS and/or Azure ...

Strong working knowledge of Android and iOS operating systems Familiarity with common offensive and defensive security concepts and network protocols Deep understanding of the OWASP Top 10 and relevant security frameworks Working knowledge of Windows, Linux, and macOS internals Ability to work independently while collaborating effectively within a team Strong ...

security risks What you’ll bring Strong experience in an information security leadership role Excellent knowledge of security frameworks (ISO 27001, NIST, Cyber Essentials, OWASP) Good understanding of GDPR and regulatory compliance requirements Hands-on experience with core security technologies (SIEM, IAM, firewalls, endpoint security, vulnerability management) Incident response ...

rest/in transit, and other application security standards. Ensure software and infrastructure meet organizational security and compliance requirements (e.g., GDPR, ISO 27001, OWASP Top 10). Team Management & Culture Build and scale high-performance engineering teams, including backend, frontend, full-stack, data, and security engineers. Define and track KPIs … APIs, ETL, Azure Data Factory DevOps/Infra : CI/CD pipelines (e.g., GitHub Actions, Azure DevOps), containerization, Azure PaaS Security : Secure development lifecycle, OWASP, authentication/authorization protocols Leadership Attributes Technically credible leader with the ability to deep-dive on architecture and code when necessary. Strong decision-making skills ...

initiatives. Skills & Experience Proven experience as a Cyber Security Architect Strong, practical experience securing AI-enabled solutions Knowledge of Zero Trust, NIST, ISO 27001, OWASP ...

advantageous) Who will: Own and enforce security standards and best practices for all back-office systems Guide the team on secure web application development (OWASP Top 10, threat modelling) Plan, prioritise, and manage team workload to meet business objectives and delivery timelines Mentor and support team members, promoting best practices ...