26 to 46 of 46 OWASP Jobs in the UK

automation skills, and familiarity with IR frameworks. Consulting-style experience providing advisory support to IT/Digital teams. Knowledge of NIST, CIS, ISO, COBIT, OWASP, and willingness to work out of hours/travel when needed. Desirable: Experience in MxDR/SOC support, security technologies (IDS/IPS, SIEM, firewalls ...

such as: Qualys, Rapid7, Tanium, Axonius, Armis, or other. Experience applying the following models to an enterprise security program: CMMI, ISO/IEC 2700, OWASP SAMM, NIST, SMM SANS Security Maturity Model. Experience developing security reports, trends, and metrics analysis. Experience with the application of some of the following frameworks ...

Criteria: Assessment experience to EN (Apply online only), EN 18031-x series of standards, NIST 8259, NIST CSF, etc Additional cybersecurity credentials such as OWASP, OSCP, CISSP etc Knowledge of security architecture design and applying regulatory guidance on cybersecurity assessment methodologies for risk management. Practical knowledge with the development ...

Understanding of API technologies and integration patterns (synchronous, asynchronous, event-driven) with hands-on experience testing distributed systems and microservices architectures. Working knowledge of OWASP standards, common security vulnerabilities, and experience conducting or coordinating security testing including SAST, DAST, and penetration testing. Understanding of authentication and authorization frameworks (OAuth ...

databases, ideally SQL Server Server side development experience using C# or a similar object oriented language Strong understanding of secure development practices aligned with OWASP guidelines Comfortable working with Git based version control workflows Experience with common front end tools and frameworks such as jQuery and SASS Confidence engaging directly ...

digital forensics and the ability to document sensitive investigations accurately. Understanding of cloud security principles, PCI DSS/ISO 27001, MITRE ATT&CK, OWASP and vulnerability management frameworks. Ability to automate tasks or scripting experience to enhance SOC efficiency. Experience working with and explaining security concepts to non-technical stakeholders. ...

knowledge: network protocols, server infrastructure, Windows Server, Linux. Experience with threat hunting and spotting potential business-wide threats. Familiarity with frameworks: CVSS, CVE, CWE, OWASP, MITRE. OT vulnerability scanning and CTI monitoring experience. Strong analytical, prioritisation, communication, and reporting skills. Desirable: PCI-DSS/ISO27001, retail, cloud, DevOps/code ...

knowledge: network protocols, server infrastructure, Windows Server, Linux. Experience with threat hunting and spotting potential business-wide threats. Familiarity with frameworks: CVSS, CVE, CWE, OWASP, MITRE. OT vulnerability scanning and CTI monitoring experience. Strong analytical, prioritisation, communication, and reporting skills. Desirable: PCI-DSS/ISO27001, retail, cloud, DevOps/code ...

with Next-Gen Firewalls (Palo Alto, Fortinet, Check Point, Cisco, etc.) Strong background in network security, traffic flows, segmentation, and application security Understanding of OWASP, threat mitigation, and secure configuration principles Experience in incident response, troubleshooting, and performance tuning Excellent communication and documentation skills Click apply to be considered. ...

block activities. Hands-on experience with VMware AVI or similar technologies such as F5, Imperva, or AWS WAF. Security Knowledge: Deep understanding of OWASP Top 10 vulnerabilities and web application security principles. Familiarity with SSL/TLS, HTTP protocols, and application-layer security. Additional Information Interview Process: 2-3 rounds ...

regulatory compliance environment Experience working in API testing , Network technologies and cloud solutions Have a good practical understanding of firewalls technologies, WAP and OWASP Understanding of CAF , NIST and NCSC Understanding of Cloud platform, Linux OS, OpenShift, Kubernetes ...

Code principles. Familiarity with Enterprise Design Thinking or Agile methodologies. Knowledge of code quality tools (e.g., linters, etc.) and nonfunctional standards (e.g., WCAG 2.2, OWASP). Experience with AI coding assistants like GitHub Copilot or Cursor. Excellent collaboration skills for multidisciplinary teams. All profiles will be reviewed against the required ...

advantageous) Who will: Own and enforce security standards and best practices for all back-office systems Guide the team on secure web application development (OWASP Top 10, threat modelling) Plan, prioritise, and manage team workload to meet business objectives and delivery timelines Mentor and support team members, promoting best practices ...

applications (iOS & Android) using frameworks such as React Native or Flutter. Implement secure authentication flows, protect against common vulnerabilities (XSS, CSRF), and adhere to OWASP best practices. Integrate e-commerce tools and APIs (e.g., Klaviyo, Yotpo) for personalised content and loyalty features. Manage complex application state using libraries like Redux ...

Standards Expert knowledge of web accessibility (WCAG v2.1 AA) Experience deploying multi-language web solutions, particularly non-Microsoft native languages (Welsh) Comprehensive understanding of OWASP top ten and web security best practices Strong UX design principles and implementation experience Security & Identity Extensive experience with Microsoft Entra ID and Azure ...

standards and procedures for IoT. Relevant experience with ETSI EN 303 645, ETSI TS 103 701, RED EN 18031, IEC 62443, UL2900 and OWASP standards. Strong foundation in programming languages and networking is essential. Understanding of microcontrollers and real-time operating systems – STM32, ESP32, etc. Proficient with UART, JTAG ...

technology, and data decisions are fully aligned with the overarching Enterprise Architecture strategy. Champion and apply best-practice principles for solution and data security (OWASP, NCSC, GDPR) at every stage of the delivery lifecycle. Required Skills: Active SC Security Clearance is a strict necessity, coupled with extensive, hands-on experience ...

years minimum commercial PHP development experience. Solid understanding of object-oriented programming and SOLID principles. Solid knowledge of secure coding practices (e.g. OWASP). Experience with modern PHP frameworks (preferably Laravel or Symfony). Familiarity with relational databases (MySQL) and writing performant queries. Comfortable working with Git, Composer and modern … this role you MUST have the Right to Work in the UK without Company Sponsorship. KEYWORDS PHP Developer, Middleweight Developer, Senior Developer, SOLID Principles, OWASP, Laravel, Symfony, MySQL, Relational Databases, GIT, Composer, Automated Testing PHPUnit, PEST, CI/CD Pipelines, GitLab CI, GitHub Actions, Docker, Containerised Development, JavaScript, Vue.js, React ...

services Carry out exploratory testing to identify functional, UX, and edge-case issues Execute performance and security testing aligned to best practices (e.g. OWASP) Support production incident investigation and root cause analysis Collaborate with Engineers and Product Managers on test strategy, code quality, and requirements Improve testability through CI/… modern frameworks and tools (e.g. Playwright, Postman or similar) Hands-on experience with performance testing (e.g. K6) and security testing, with an understanding of OWASP principles and security within the SDLC Experience building, configuring, and maintaining CI/CD pipelines and managing deployments (e.g. Azure DevOps) Ability to analyse telemetry ...

BrowserStack (cross-device/browser testing) Ruby Cucumber/Gherkin (BDD) Selenium API testing (REST, Postman/Newman) Accessibility testing (WAVE, Pa11y) Security testing (OWASP ZAP, Dependency Check) Confident using browser developer tools and debugging techniques Strong understanding of version control using Git Comfortable working in Agile delivery environments Desirable … maintaining automated browser tests using Selenium and Ruby. Performing accessibility testing using tools such as WAVE and Pa11y and conducting security testing using OWASP ZAP and Dependency Check. Validating RESTful APIs using Postman or Newman, along with using browser developer tools (Lighthouse, JavaScript debug console, etc.) to support functional ...

mobile application security (iOS & Android). Conduct and oversee mobile penetration testing , runtime analysis, and threat modelling aligned to OWASP MASVS and NCSC CHECK standards. Identify, assess, and prioritise security risks across systems, applications, and networks. Design secure architectures using modern principles such as Zero Trust . Translate technical security … Security Architect , with a strong focus on mobile security. Advanced knowledge of mobile app security, threat modelling, and secure architecture . Strong understanding of OWASP , NCSC guidance, and secure design patterns. Desirable Experience embedding security into the Mobile SDLC (iOS & Android). Knowledge of client-side controls (obfuscation, encryption, jailbreak ...