4 of 4 Remote/Hybrid Static Application Security Testing Jobs in the UK

Location: Europe remote or London hybrid About the role: As our engineering and research organisation grows, so does the complexity of securing it. Our Application Security team is at the forefront of that challenge — building AI-native security tooling, embedding security into the development lifecycle … have a strong engineering background in application security, with hands‐on experience in areas such as threat modelling, secure design review, (AI‐)SAST/SCA tooling, vulnerability management, and/or security automation. You are very comfortable with Python and JavaScript. You have experience with ...

requirements: • Seeking a strong application security expert with deep penetration testing exposure. • Must have knowledge of various AppSec tools and have a wider appreciation of cyber security in general. • Secure code review, managing SAST, DAST and VM tools across the firm globally • Knowledge of mobile pen testing is highly advantageous • Linux is a key component for the role ...

grow by understanding global consumers and how changes in their shopping experience affect their business. Role Overview We’re looking for a Head of Security to own and lead information security at Reach. This is a hands‐on leadership role: you will set the strategy, own the program … primary contact for external auditors. Application and cloud security: Partner with engineering on secure SDLC, threat modeling for new products and features, SAST/DAST/SCA coverage, and cloud security posture (IAM, configuration, workload protection). Identity and access management: Own IAM policy, periodic access reviews ...

security automation Establish governance for CI/CD, IaC, and cloud delivery Define observability standards (SLOs, tracing, dashboards) Embed security into pipelines (SAST, SCA, DAST, secrets, IaC scanning) Govern "Golden Path" templates and adoption Operational Oversight & Risk Management Oversee reliability, performance, and security of platforms and pipelines … knowledge Proven ability to improve DORA and engineering performance metrics Experience with observability and monitoring frameworks Strong background in security tooling (SAST, SCA, DAST, scanning tools) Solid understanding of cloud security, IAM, and zero-trust principles Experience working in complex or regulated environments Excellent communication and stakeholder management ...