151 to 166 of 166 OWASP Jobs in the UK

implement secure software development practices Integrate security gates into CI/CD pipelines following DevSecOps principles Establish security quality gates and acceptance criteria Develop secure coding standards based on OWASP guidelines Create security architecture patterns and reference implementations Security Code Reviews & Testing Conduct in-depth security code reviews for critical features Implement automated security testing (SAST, DAST, IAST, SCA) Configure … and tune security scanning tools (Aquasec, Trivy, Dependabot, etc) Review cryptographic implementations against industry standards Validate authentication and authorization implementations Ensure compliance with OWASP ASVS (Application Security Verification Standard) Lead threat modeling sessions using STRIDE, PASTA, or similar frameworks Create threat models for new products and architectural changes Identify attack vectors specific to web and mobile platforms Develop abuse cases … and security test scenarios Maintain threat intelligence for fintech-specific risks Document security requirements derived from threat models Platform-Specific Security Mobile Applications: Apply OWASP MASVS and platform-specific guidelines (iOS App Transport Security, Android Network Security Config) APIs: Implement API security best practices (rate limiting, authentication, input validation) Cross-platform session management and secure data storage Security Tooling & Automation More ❯

Familiar with GIT Versioning Control and source safe environment. Knowledge in JIRA/Bitbucket/Jenkins/Static Code Security are an advantage. Understanding security principles & best practices (e.g., OWASP Top Ten) in web and mobile application development. Strong skills in testing, debugging, and troubleshooting. Excellent problem solving and analytical skills. Excellent communication and interpersonal skills. Ability to work independently … Familiar with GIT Versioning Control and source safe environment. Knowledge in JIRA/Bitbucket/Jenkins/Static Code Security are an advantage. Understanding security principles & best practices (e.g., OWASP Top Ten) in web and mobile application development. Strong skills in testing, debugging, and troubleshooting. Excellent problem solving and analytical skills. Excellent communication and interpersonal skills. Ability to work independently More ❯

mentor and advocate, fostering a culture of security awareness across engineering and business teams. Compliance and Standards : Ensure product security practices align with relevant security frameworks and standards (e.g., OWASP, NIST, ISO 27001, GDPR, PCI DSS). Support regulatory compliance efforts and maintain evidence to meet audit requirements. Collaboration and Communication : Function as the primary interface between security, development, and … modelling, security reviews, and penetration testing. Proven ability to secure cloud-native architectures, containerization technologies, and Infrastructure as Code (IaC) environments. Familiarity with industry standards and frameworks such as OWASP, BSIMM, PCI DSS, ISO 27001, and GDPR. Security Integration experience: Demonstrated ability to seamlessly integrate secure development practices into SDLC/SSDLC workflows. Skilled in implementing technical security controls and More ❯

tools What We're Looking For: ️ Proven experience as an Application Security Specialist or in a similar application security role ️ Strong knowledge of secure coding practices, common vulnerabilities (e.g., OWASP Top 10), and application security testing tools ️ Experience with SAST, DAST, and security code review tools (e.g., Fortify, Veracode, Checkmarx) ️ Familiarity with secure software development frameworks (e.g., OWASP, NIST) ️ Relevant More ❯

risk activities Skills & Experience Understanding of securing micro-service architectures Working knowledge of modern secure SDLC practices - embedding security into CI/CD piplines Understanding of application security principles (OWASP top 10, OWASP ASVS) AWS, GCP or Azure knowledge Previous experience in software development Robert Half Ltd acts as an employment business for temporary positions and an employment agency for More ❯

Skilled in SQL Server – database design, development, and optimisation Experience with Angular, HTML, CSS, and TypeScript Ability to work with Web API web services Awareness of security best practices (OWASP) Appetite to learn, improve, and stay up-to-date with new technologies Excellent communication and problem-solving skills Beneficial experience: Leading small development teams to deliver functionality on time Migrating … Engineer/C#/.NET/SQL Server/Angular/HTML/CSS/TypeScript/Web API/Azure/ASP.NET MVC/WinForms/WPF/OWASP/Computer Science/Software Engineering/Information Technology/Mathematics/Physics/Engineering More ❯

and non-technical findings to clients, both in written reports and during debrief sessions Collaborate with internal teams to scope and deliver engagements in line with best practices (e.g. OWASP, NIST, CHECK) Contribute to continuous service improvements and knowledge sharing within the team Stay up to date with emerging threats, tools, and techniques in the offensive security space Essential Skills … and Experience: Hands-on experience with penetration testing or vulnerability assessments (commercial or demonstrable practical knowledge) Familiarity with tools such as Burp Suite, Nmap, Nessus, Metasploit, etc. Understanding of OWASP Top 10 and common exploitation techniques Strong written and verbal communication skills for technical documentation and client interaction UK resident with eligibility for SC clearance (or already SC cleared) Desirable More ❯

Senior Cyber Security Analyst (6 months contract) Save job Join a leading global investment bank as a Senior Cyber Security Analyst, where you'll play a critical role in safeguarding a world-class financial institution. What You'll Do: Responsible More ❯

experience with Infrastructure-as-Code tools such as Terraform, SST, CDK or CloudFormation. Strong understanding of API development, RESTful design, and secure authentication. Demonstrated knowledge of API security and OWASP Top 10 vulnerabilities. Experience with Docker, Linux, Git, and container-based environments. Working familiarity with PCI DSS, payment systems, or other regulated environments is highly desirable. Excellent communicator with a … autonomously. Demonstrable expertise and understanding of API development/design and experience interfacing with disparate systems. Applicable understanding of software security, common exploits and secure development practices, including the OWASP Top 10. Proven and demonstrable understanding of testing methodologies and frameworks. Commercial experience with AWS and IaC (Terraform/CDK/CloudFormation) Commercial experience with Linux, Docker, Docker Compose, Git More ❯

experience with Infrastructure-as-Code tools such as Terraform, SST, CDK or CloudFormation. Strong understanding of API development, RESTful design, and secure authentication. Demonstrated knowledge of API security and OWASP Top 10 vulnerabilities. Experience with Docker, Linux, Git, and container-based environments. Working familiarity with PCI DSS, payment systems, or other regulated environments is highly desirable. Excellent communicator with a … autonomously. Demonstrable expertise and understanding of API development/design and experience interfacing with disparate systems. Applicable understanding of software security, common exploits and secure development practices, including the OWASP Top 10. Proven and demonstrable understanding of testing methodologies and frameworks. Commercial experience with AWS and IaC (Terraform/CDK/CloudFormation) Commercial experience with Linux, Docker, Docker Compose, Git More ❯

Job Title: Software Developer Salary: £50-55K The Business: Founded by a team of financial experts and ex-MAT professionals, IMP Software has a deep understanding of the challenges facing multi-academy trusts. Our mission is to empower multi More ❯

Job Title: Senior Software Developer Salary: £70-80K The Business: Founded by a team of financial experts and ex-MAT professionals, IMP Software has a deep understanding of the challenges facing multi-academy trusts. Our mission is to empower More ❯

️ Lead the Charge in Securing Global Animal Health Are you ready to take the lead in defending a global veterinary business from evolving cyber threats? As our Cyber Defense Manager, you'll head up the Cyber Defence "Blue Team," driving More ❯

internal and industry regulations. You’ll analyse new feature code to identify security risks and work with engineers to mitigate them, working and applying modern security standards such as OWASP CI/CD, DSOMM, SAMM and Cloud Security Posture management systems such as Azure Defender and Prisma Cloud. Our client empowers their people to balance their time between home and … SUCCESSFUL APPLICANT Engineering expertise in complicated Salesforce environments Exposure to Cloud Native software development, including cloud infrastructure and API design (Azure preferred) Proven experience applying modern standards such as OWASP CI/CD, DSOMM, SAMM etc Strong networking protocol knowledge (TCP/IP, UDP, HTTP/3, AMQP, streaming protocols etc), cloud network design (VPNs, subnets, regions/zones etc More ❯

in Sheffield/Birmingham or Edinburgh 3 days a week) Rate: Negotiable depending on experience (deemed inside IR35) Reference: 19542 You will either be a F5 WAF tuning specialists (OWASP experience required OR Cloud-native WAF engineers (minimum 2 of 3 CSPs) (AWS & GCP as preference)/OR Generic WAF tuning resource (cross-skill utility) Immediate contract for experienced WAF … A focus on tuning rules, analysing data, reducing false positives, and validating control efficacy in production-like conditions. Scope Includes: Hands-on tuning experience with F5. Custom rule creation , OWASP rule tuning (especially for F5), false positive reduction. Log analysis and data-driven tuning based on real traffic. Support for cloud-native WAF tuning (all three Cloud providers) -not deployment More ❯

determining the materiality of AI initiatives. Material projects undergo in-depth risk analysis, with high-risk items escalated to governance committees. Analysts will use frameworks such as the AI OWASP Top 10 to identify and assess security risks beyond standard assessments. Key Responsibilities: Perform AI-specific risk assessments to ensure regulatory compliance. Evaluate AI solutions for prohibited use cases and … with AI Governance and local risk management teams. Requirements: Strong IT and cybersecurity background. Expertise in AI technologies, including model development and deployment. Experience in risk assessment frameworks (e.g., OWASP AI Top 10). Must be based in the UK to meet regulatory and operational requirements. More ❯