276 to 289 of 289 Static Application Security Testing Jobs in the UK

Role Overview: Additional Information: Please note, this role requires working full-time onsite, five days per week. NON Negotiable We are seeking an experienced IT Security Engineer to become a vital part of a growing IT Department. This critical role will focus on protecting our information assets through robust cybersecurity measures, ensuring adherence to best practices, international standards, and … local regulations. Ideally suited to candidates who possess expert knowledge of security frameworks including NIST 800, ISO 27001, and cybersecurity guidelines from PRA, FCA, and ICO. Candidates with at least 3 years' relevant experience in finance or banking, particularly as an information security officer or involvement in regulatory technical projects, are strongly preferred. Key Responsibilities: Develop and maintain … practices during usage, storage, transfer, and disposal. Conduct security evaluations on network and firewall policies and manage application security in both development and testing phases (SAST, DAST). Liaise with internal audit teams and international cybersecurity operations centres to implement security policies and controls. Provide cybersecurity training to ensure staff awareness and compliance. Skills & Qualifications More ❯

Role Overview: Additional Information: Please note, this role requires working full-time onsite, five days per week. NON Negotiable We are seeking an experienced IT Security Engineer to become a vital part of a growing IT Department. This critical role will focus on protecting our information assets through robust cybersecurity measures, ensuring adherence to best practices, international standards, and … local regulations. Ideally suited to candidates who possess expert knowledge of security frameworks including NIST 800, ISO 27001, and cybersecurity guidelines from PRA, FCA, and ICO. Candidates with at least 3 years' relevant experience in finance or banking, particularly as an information security officer or involvement in regulatory technical projects, are strongly preferred. Key Responsibilities: Develop and maintain … practices during usage, storage, transfer, and disposal. Conduct security evaluations on network and firewall policies and manage application security in both development and testing phases (SAST, DAST). Liaise with internal audit teams and international cybersecurity operations centres to implement security policies and controls. Provide cybersecurity training to ensure staff awareness and compliance. Skills & Qualifications More ❯

Social network you want to login/join with: Mandarin Speaking - IT Security Engineer, slough col-narrow-left Client: Location: slough, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 5 Posted: 31.05.2025 Expiry Date: 15.07.2025 col-wide Job Description: Role Overview: Additional Information: Please note, this role requires working full-time onsite … five days per week. NON Negotiable We are seeking an experienced IT Security Engineer to become a vital part of a growing IT Department. This critical role will focus on protecting our information assets through robust cybersecurity measures, ensuring adherence to best practices, international standards, and local regulations. Ideally suited to candidates who possess expert knowledge of security … practices during usage, storage, transfer, and disposal. Conduct security evaluations on network and firewall policies and manage application security in both development and testing phases (SAST, DAST). Liaise with internal audit teams and international cybersecurity operations centres to implement security policies and controls. Provide cybersecurity training to ensure staff awareness and compliance. Skills & Qualifications More ❯

Cyber Security Operations Lead 12 Months (Outside IR35) Hybrid (Edinburgh) Harvey Nash's client is recruiting for a Cyber Security Operations Lead on a 12 Month contract Main Responsibilities Use understanding of digital systems and attack frameworks to apply theory to practice. Be aware of the current cyber threat landscape and industry best practices and standards. Lead on … improvement to coverage and depth of security monitoring and vulnerability scanning Design vulnerability data gathering and prioritisation procedures Act as technical escalation point for analysts on significant incidents, investigations, including hands on experience Establish procedures for intelligence ingestion and threat hunting Working with architects and interpreting designs to ensure strong handover to SecOps during new service go live. Recommendation … product delivery evidence Key Skills Security products (M365 Defender stack, Sentinel/SIEM, email filtering (including authentication protocols), AV, firewalls, WAFs, Defender for Cloud) Security Testing (SAST, DAST, vulnerability scanning, configuration compliance scanning) Virtualisation platforms and operating systems, including Hyper-V and Windows Server. Enterprise Systems (Azure, M365, Intune, email, PKI, AD, GP, SCCM) Application platforms More ❯

Information Security Analyst Contract - 6-months, Inside IR35 £400-£450 per day Edinburgh Financial Services A small Edinburgh Financial Services organisation is currently seeking an experienced Information Security Analyst with a strong background in vulnerability management , to join their team on an initial 6 month Contract & working from their office based in Edinburgh (hybrid). The Contract will … involve assessing vulnerability reports and collaborating with cross-functional teams to ensure timely mitigation & to be successful, key knowledge & experience should include: Recent experience working as an Information Security Analyst, Security Engineer or Vulnerability Analyst with strong experience with complex information security projects . In-depth knowledge & expertise … of Information Security standards, technologies & methodologies etc (e.g., ISO27001 ). Strong grasp of security best practices , risk management , and compliance . Particular focus on Vulnerability Management utilising SAST/DAST tools , especially Tenable . Familiarity with Azure DevOps for tracking work items. Ability to work independently and in agile teams. Excellent communication and stakeholder management skills are a More ❯

revenue. Leverage existing relationships and network on platforms like LinkedIn to enhance product awareness, customer relationships, and drive engagement. Stay abreast of industry trends, technologies, and best practices in application security. … Actively pursue new technical skills and expertise across multiple industries and product offerings. Desired Technical Skills and Experience: Familiarity with Application Security Testing technologies, including DAST, SAST, SCA, IaC, IAST, RASP, CSPM, API Security, and more. Experience with at least one scripting language. Hands-on experience with AppScan or other application security products (Snyk More ❯

Your new company - Specialist Global Financial Services Your new role - Permanent - ON SITE 5 Days per week. - UK Only Job Title: IT Security Engineer Job Brief: As the first line of defence in the IT department, the purpose of this role focusses on information security, cybersecurity and data security, including a wide scope of … physical security operating systems such as Windows and Linux, network security, firewall and other security devices, application security both development and testing phrases SAST & DAST, terminal security, backup security, third party and supply chain security. We are seeking a skilled IT Security Engineer to identify, investigate, and mitigate potential security risks to protect the information systems and computer networks. Responsibilities: Design and Implement Security Measures: Develop secure network solutions to defend against advanced cyber threats. Maintain the cybersecurity equipment, including firewall, IPS, WAF, WSUS, ATA, AD policy. Compile and develop cybersecurity policies and procedures, conduct regular reviews. Application Security: Ensure the security of applications by More ❯

Job Scope: Security Test Planning & Preparation Test Planning Coordinate with development teams for testing schedules and plan testing timelines aligned with release schedules Create security test plans for new applications, major releases and enhancements Define testing scope and approach using Agency Cybersecurity Control templates Define entry and exit criteria for security testing phases … Test Environment Preparation Configure security testing tools in the designated environment for (1) SCR and (2) App-VAPT … Setup test data and test cases Security Test Execution Secure Code Review (SCR) Perform source code security analysis for new applications, major release changes and enhancements Use SAST tools to analyze code security and use SCA tools to review any open-source and third-party components included in the applications. Document code security findings and verify More ❯

Get AI-powered advice on this job and more exclusive features. Direct message the job poster from Harvey Nash Title: Security Design Specialist (Finance and Banking) Location: Edinburgh, UK Duration: 6 Months Overview: Work with Security architects and application development teams to ensure Threat models designs are secure. Job Description Facilitating Security Architecture run threat modelling … in identifying and mitigating threats. Oversee security related issues across multiple product teams/squads. Help ensure development teams adopt frictionless shift left security, through engagement with SAST/DAST, automation and CSPM. You will have the ability to work with and understand complex architectures and modern development methods. Ensure that security architecture standards and patterns are … by development teams but also being the conduit for feedback and enhancements to the standards and patterns framework. Being the point of contact for development teams with Global Information Security to help them meet global security policy requirements. Seniority level Seniority level Mid-Senior level Employment type Employment type Contract Job function Job function Design, Finance, and Strategy More ❯

impactful communication skills, articulating complex ideas to broad audiences Learning and professional development - takes initiative to advance own skills and identify and manage development opportunities in area of responsibility. Security, privacy and ethics - contributes to the implementation of appropriate working practices and culture Line Management responsibility for Engineering Managers and Engineers Develop and maintain software development processes, standards, and … the customer experience Provide visionary leadership to multiple Agile Scrum/Squad/teams Technical Skills REST/WCF Services Database Design Web accessibility standards Web security principles SAST and DAST tools Source code control Awareness of Continuous Integration, Continuous Deployment, Blue/Green Deployments WCF, REST, Microservices, API Gateway, Messaging TFSVC, GIT Identity Access ORM Tools SharePoint JSON More ❯

Position Title: Senior Security Analyst Location: Remote (UK or Spain) Role Purpose: Analyze and fully reproduce potential security findings reported to our clients. Communicate with the global researcher community to gather information and inform them triage analysis outcomes. Author and deliver NCC-quality vulnerability reports to the specifications of individual clients. Drive or contribute to projects that improve … BBS’ tooling, operational processes, and delivery quality. Provide mentorship and technical guidance to associate security analysts, fostering their professional development and enhancing their technical skills. Summary: Due to continued growth, NCC Group is seeking an experienced and seasoned Bug Bounty Triager to join the Bug Bounty Services (BBS) Practice as a Senior Security Analyst on our Tier … applications. Proven experience in application security source code reviews. Professional experience that required regular use of programming scripting languages. Vulnerability Disclosure and Bug Bounty experience. Experience with SAST and DAST testing tools. Vulnerability Management experience. Software QA experience is a plus. Behaviours: Focusing on Clients and Customers. Working as One NCC. Always Learning. Being Inclusive and Respectful. More ❯

Title: Security Design Specialist (Finance and Banking) Location: Edinburgh, UK Duration: 6 Months Overview: Work with Security architects and application development teams to ensure Threat models designs are secure. Job Description Facilitating Security Architecture run threat modelling workshops assisting the development teams … in identifying and mitigating threats. Oversee security related issues across multiple product teams/squads. Help ensure development teams adopt frictionless shift left security, through engagement with SAST/DAST, automation and CSPM. You will have the ability to work with and understand complex architectures and modern development methods. Ensure that security architecture standards and patterns are … by development teams but also being the conduit for feedback and enhancements to the standards and patterns framework. Being the point of contact for development teams with Global Information Security to help them meet global security policy requirements. More ❯

The Product Security Team's mission is to Left-shift SDLC (Security Development Lifecycle) processes for ALL code written in Databricks (for Customer Use or Supporting Customer internally) to reduce the likelihood of introducing new vulnerabilities in production and minimize the count and effect of externally identified vulnerabilities on Databricks Services. You will be an individual contributor on … the product security team at Databricks, managing SDLC functions for features and products within Databricks. This would include, but is not limited to, security design reviews, threat models, manual code reviews, exploit writing and exploit chain creation. You will also support IR and VRP programs when there is a vulnerability report or a product security incident. You … Code Review, Exploit writing, etc. Work with other security teams to provide support for Incident Response and Vulnerability Response as and when needed. Work with the results of SAST tools to help evaluate and identify false positives and file defects for real issues. Work on DAST tools and related automation for auto-assessment and defect filing. Maintain the automation More ❯

65k - £78K + bonus, benefits) We are working with a globally renowned and industry leading UK brand who are going through an exciting phase of growth across their wider Security function, resulting in the need for a DevSecOps Engineer. As a DevSecOps Engineer, you will work within a newly established team in a role that sees you provide hands … on Application Security and DevSecOps responsibilities, as well as being involved in various strategic activities. Your duties would include setting-up, securing and enhancing pipelines, scripting and automation, as well as looking at how things are done, what improvements can be made, supporting cyber change initiatives and driving security awareness/practices as necessary. This role will … most companies of a similar size, who also offer some of the best perks & benefits available! Key skills and experience required: · DevSecOps experience · Application Security expertise across SAST, DAST & SCA · Background and experience in Software Development/Scripting/Automation · Ability to work in a fast-paced environment · Ability to work on-site for key strategic/important More ❯