101 to 125 of 154 OWASP Jobs in the UK

re looking for: 1–3+ years of experience in penetration testing or red teaming Strong understanding of offensive security tools, techniques, and methodologies (e.g. OWASP, MITRE ATT&CK, NIST) Experience in a consultancy environment is highly desirable Excellent written and verbal communication skills for client-facing work Familiarity with reporting More ❯

Nice to haves Experience within eCommerce and/or payments. Good understanding of OOP and/or functional paradigms. Good understanding of software security, OWASP and scaling of software systems. Good understanding of NextJS or other similar server-focused frontend metaframework. Bonus points for having used React's server components More ❯

Debugging Tools: Experience with Frida, Xposed, Android Studio, Xcode, Magisk, Checkra1n , and other security analysis tools. ? Bonus Points For: ? Experience with mobile security frameworks (OWASP Mobile Top 10) ? Hands-on debugging and performance profiling of mobile applications ? Knowledge of cloud integration and mobile app interactions with cloud services ? Why Join More ❯

managing Azure subscriptions You have a good knowledge of DevOps and IaC concepts You're familiar with cloud based security (e.g. ISO27001, NIST, CIS, OWASP, SOC2) and Identity and Access Management (IAM) within Azure You're familiar with ARM templates and/or Pulumi Ideally you will have automation and More ❯

managing Azure subscriptions You have a good knowledge of DevOps and IaC concepts You're familiar with cloud based security (e.G. ISO27001, NIST, CIS, OWASP, SOC2) and Identity and Access Management (IAM) within Azure You're familiar with ARM templates and/or Pulumi Ideally you will have automation and More ❯

and data analysis, parallelising complex simulations to drive improvements whilst optimising for cost and efficiency. You'll ensure the platform meets security standards including OWASP Top 10 and ISO 27001 compliance, collaborating with IT, legal and compliance teams. Location/WFH: You'll join the team in Central London three More ❯

and data analysis, parallelising complex simulations to drive improvements whilst optimising for cost and efficiency. You'll ensure the platform meets security standards including OWASP Top 10 and ISO 27001 compliance, collaborating with IT, legal and compliance teams. Location/WFH: You'll join the team in Central London three More ❯

and static application security testing tools. Excellent understanding and experience with manual security testing to find vulnerabilities and logical issues. Knowledge and understanding of OWASP and its utilisation within threat modelling. Experience of software development and languages. Working knowledge of CI and CD pipelines and associated security tooling. Use of More ❯

and static application security testing tools. Excellent understanding and experience with manual security testing to find vulnerabilities and logical issues. Knowledge and understanding of OWASP and its utilisation within threat modelling. Experience of software development and languages. Working knowledge of CI and CD pipelines and associated security tooling. Use of More ❯

and static application security testing tools. Excellent understanding and experience with manual security testing to find vulnerabilities and logical issues. Knowledge and understanding of OWASP and its utilisation within threat modelling. Experience of software development and languages. Working knowledge of CI and CD pipelines and associated security tooling. Use of More ❯

least 1 year in penetration testing, cloud security, or red teaming A strong understanding of offensive security methodology and vulnerability frameworks such as the OWASP Testing Guide, TIBER EU, MITRE ATT&CK, PTES, or others An ability to analyze root causes and deliver technological recommendations to our clients Excellent oral More ❯

audits & penetration testing What You’ll Bring CISSP or equivalent + 6-7 years in InfoSec Experience maturing security programs & frameworks ( ISO27001, NIST CAF, OWASP ) Strong knowledge of SIEM, IDS/IPS, RBAC, vulnerability management Understanding of cloud, COTS/SaaS platforms & IoT security Ability to communicate risks & strategies at More ❯

them Proficient understanding of threat modeling, operational threat intelligence, and common attack vectors Knowledge of web application vulnerabilities with ability to triage/verify OWASP Top 10 issues In-depth technical knowledge of macOS or Linux Operating Systems Preferred Qualifications Experience with disk and memory forensic tools Experience writing and More ❯

documentation, and service levels Minimum Requirements: 3-5 years' experience in DevSecOps or related roles Knowledge and working experience of security frameworks and tools - OWASP, Snyk, etc. Good team player and able to work on own initiative Proven experience in mentoring other team members Proven ability of establishing strong, effective More ❯

documentation, and service levels Minimum Requirements: 3-5 years' experience in DevSecOps or related roles Knowledge and working experience of security frameworks and tools - OWASP, Snyk, etc. Good team player and able to work on own initiative Proven experience in mentoring other team members Proven ability of establishing strong, effective More ❯

and process improvements. Collaborate with the wider team on research, content, and new service lines development. Engage with frameworks such as MITRE ATT&CK, OWASP Top 10, and CIS Benchmarks, PTES, and CREST. What We’re Looking For 3–5+ years of hands-on penetration testing experience. Solid report writing More ❯

experience in an IT (Helpdesk/IT Support) with a solid understanding of networking, Windows Active Directory, and Windows/Linux systems. Knowledge of OWASP vulnerabilities and experience in webapp and infrastructure pentesting. Must have or be working towards OSCP/CRT or equivalent. Enthusiastic about cybersecurity, excellent communication skills More ❯

clean, structured, maintainable code Deep understanding of object-oriented design principles and patterns Experience with security, form validation, XSS prevention, SQL injection and other OWASP guidelines Critical thinker and problem-solving skills A team player, with a 'can do' attitude Excellent level of written and spoken English Desirable skills Experience More ❯

Non-Functional Security Testing Conduct penetration testing, API security testing, and infrastructure security assessments . Perform risk-based security testing to identify and mitigate OWASP Top Ten vulnerabilities . Validate the effectiveness of security controls such as RBAC (Role-Based Access Control), MFA (Multi-Factor Authentication), and API security mechanisms … cases, methodologies, and tools used . Required Skills & Experience Proven experience in security testing for web applications, APIs, and cloud environments. Strong knowledge of OWASP Top Ten, CVE vulnerabilities, and threat modeling techniques . Hands-on experience with security testing tools such as OWASP ZAP, Burp Suite, Nessus, Metasploit, Nikto More ❯

also have a proven experience and knowledge with any combination of the following: Threat modelling and risk assessments Working knowledge of secure coding principles (OWASP and OWASP mobile, SANS ) Experience with designing and administering identity management (authentication and authorisation including policy enforcement points, token services, protocols such as OAuth2) Working More ❯

experience with AWS and Cloudflare and be comfortable working with Infrastructure as Code tools like Terraform. A strong understanding of common vulnerabilities and the OWASP Top 10 is essential, as is the ability to write and review code in Python, Scala or Go. Working on mobile-first platforms will also More ❯

Core Skills & Experience: Proven experience in secure system design, architecture, and cyber resilience. Strong knowledge of current cyber threats, vulnerabilities, and mitigation strategies (including OWASP). Expertise across infrastructure, network, application, and cloud security architecture. Excellent stakeholder engagement skills – able to influence, guide, and advise senior leaders. Familiarity with security More ❯

Core Skills & Experience: Proven experience in secure system design, architecture, and cyber resilience. Strong knowledge of current cyber threats, vulnerabilities, and mitigation strategies (including OWASP). Expertise across infrastructure, network, application, and cloud security architecture. Excellent stakeholder engagement skills – able to influence, guide, and advise senior leaders. Familiarity with security More ❯

managing a bug bounty program is a plus but not required). 3 years experience manual Web App testing experience. Strong technical knowledge of OWASP top 10. Comfortable using security testing tools including Burpsuite. Excellent written and verbal communication skills. Experience using frameworks such as CVSS. Self-motivated and able More ❯

Exposure, ASM, Pentesting, Application Security, Security Automation or Cloud Security solutions 2+ years of application security experience, understand security fundamentals and common vulnerabilities (e.g. OWASP Top Ten). Excellent communication, presentation, and demonstration skills. This role requires you to understand and articulate our platform's business value and technical advantages. More ❯