16 of 16 Dynamic Application Security Testing Jobs in the UK excluding London

Description The Security Engineering Team Lead owns and evolves MO's application security capability, embedding security into engineering practices, platforms, and delivery pipelines while leading a small team of specialists. Reporting to the Cyber Security Technical Manager, the role drives secure-by-design principles across … professionals, with the ability to build capability within a team. Hands-on experience implementing and operating application security tooling, such as SAST, DAST, SCA, and secrets management. Experience integrating security controls into CI/CD pipelines (e.g. GitHub, AWS DevOps), including automated testing and policy enforcement. ...

Knowledge of modern authentication and authorization (OAuth2, OIDC, SAML, JWT, RBAC/ABAC) Experience integrating security tooling into CI/CD (SAST, DAST, SCA, container scanning) Familiarity with Terraform or Pulumi and policy-as-code approaches Exposure to AI/ML systems and associated security risks … Senior Application Security Engineer Central Manchester (3 days in-office) AWS/Azure/GCP, Application Security, Terraform, Authentication, SAST, DAST, Container Security etc. ...

offices . Job Description: At Ardent Credit Services, we are dedicated to excellence in the Banking & Financial Services sector. Our commitment to innovation and security underpins our success, and we are seeking a skilled IT Security Engineer to join our dynamic team. This pivotal role will contribute … shifted left." Vulnerability Management: Manage and execute Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) on proprietary applications. Remediation & Guidance: Act as the primary security resource for development teams, providing technical advice on vulnerability fixes and secure coding practices ...

offices . Job Description: At Phillips & Cohen Associates, we are dedicated to excellence in the Banking & Financial Services sector. Our commitment to innovation and security underpins our success, and we are seeking a skilled IT Security Engineer to join our dynamic team. This pivotal role will contribute … shifted left." Vulnerability Management: Manage and execute Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) on proprietary applications. Remediation & Guidance: Act as the primary security resource for development teams, providing technical advice on vulnerability fixes and secure coding practices ...

Cloud Application Security Engineer Central Manchester (3 days a week in-office) Up to £90,000 + Generous Benefits We’re currently supporting an exciting SaaS fintech that’s looking to bring on a Cloud Application Security Engineer to strengthen their growing team. This … OAuth2, OIDC, SAML, JWT, RBAC/ABAC) and how to implement them at scale Experience integrating security into CI/CD pipelines (SAST, DAST, SCA, container scanning) Experience with Infrastructure as Code (e.g. Terraform, Pulumi) and applying security policy as code The company are very big on training ...

Security Engineering Lead Location: Bristol (3 days per week on-site) Salary: £100,000 + excellent benefits An established and highly regarded financial services organisation is seeking a Security Engineering Lead to play a pivotal role in strengthening security controls, risk management, and remediation across a major … controls into CI/CD pipelines and cloud environments Own and evolve security tooling, including vulnerability management, detection, and DevSecOps capabilities (eg SAST, DAST, SCA, container and cloud security tooling) Define and implement secure engineering standards, including secure coding, infrastructure-as-code security, and threat modelling practices ...

Security Engineering Lead Location: Bristol or London or Edinburgh (3 days per week on-site) Salary: £100,000 + excellent benefits An established and highly regarded financial services organisation is seeking a Security Engineering Lead to play a pivotal role in strengthening security controls, risk management … controls into CI/CD pipelines and cloud environments Own and evolve security tooling, including vulnerability management, detection, and DevSecOps capabilities (eg SAST, DAST, SCA, container and cloud security tooling) Define and implement secure engineering standards, including secure coding, infrastructure-as-code security, and threat modelling practices ...

Cyber Security Specialist - Inside IR35 - Public Sector - Edinburgh (Hybrid) Day Rate - Market Rates Duration - 12 months Harvey Nash's Client have a requirement for within their cyber security team, you will be providing advice and guidance to digital transformation projects. Activities will cover cyber security and risk … SecOps processes and automation for new systems Technical scope Security products (email filtering, AV, firewalls, WAFs, MS Defender) Security Testing (SAST, DAST) Virtualisation platforms and operating systems, including Hyper-V and Windows Server. Enterprise Systems (email, PKI, AD, GP, SCCM, Azure incl. Entra and Intune, M365) Application ...

Security Architect 2-3 days Bristol then rest remote 6 months likely extension £600pd outside IR35 Active DV or SC clearance required Key Responsibilities Architecture & Design Develop secure architecture designs for container platforms (e.g., Kubernetes, OpenShift, Docker). Architect and strengthen security controls across virtualisation technologies , including VMware … Policy Desirable Skills Experience with OpenShift or enterprise Kubernetes distributions. Hands on security tooling (Falco, Istio, Calico, etc.). Experience with SAST/DAST, SBOMs, and software supply chain security. Familiarity with automation tooling (Terraform, Ansible, Helm). Certifications such as: CCSK/CCSP CISSP CISM Kubernetes Security ...

Cyber Security Specialist 12-month contract£500-550 per dayOutside IR35 Hybrid - Edinburgh (1-2 days per week onsite) We are currently recruiting for an experienced Cyber Security Specialist to join a busy digital transformation environment on a 12-month contract. This role will play a key part … experience across: Enterprise security tooling such as email filtering, antivirus, firewalls, WAF, and Microsoft Defender Security testing approaches including SAST and DAST Enterprise platforms including Active Directory, PKI, SCCM, Microsoft 365, and Azure (including Entra and Intune) Virtualisation and operating systems, including Windows Server and Hyper ...

legal, and commercial teams to embed security into lifecycle governance Define and implement a modern DevSecOps tooling strategy (CI/CD, SAST/DAST, SCM, automation) Drive secure coding, threat modelling, and supply chain security practices (SBOM, provenance, signing) Develop KPIs, metrics, and maturity models to track … Agile, CI/CD, cloud, automation) Expertise in application security, threat modelling, and secure coding standards Experience implementing tooling ecosystems (e.g. SAST, DAST, SCA, pipeline automation) A track record of influencing senior stakeholders and driving cultural change Ability to build and lead both direct and virtual teams across ...

Azure DevSecOps Consultant – Information Security Location: Ipswich, Suffolk Onsite/Hybrid (UK – 3 days per week in office). Candidates must live a commutable distance from Ipswich. We are partnered with a major enterprise undergoing significant cloud-security transformation, and we're seeking an experienced Azure DevSecOps Consultant … Implementing automated cloud control validation aligned to internal and industry frameworks. Leading the adoption of Policy as Code principles. Integrating security tooling (SAST, DAST, SCA, secret scanning) into the DevOps toolchain. Creating documentation, SOPs, and guidance to support secure development and cloud practices. Translating complex technical risks into clear ...

includingtenantisolationatbothapplicationanddatalayers Hands-onexperiencewithAWS,AzureorGCP UnderstandingtoAI/MLplatformsandinfrastructure(e.g.modelpipelines,servinglayers,vectordatabases,LLMintegrations) Strongknowledgeofauthenticationandauthorizationpatterns(OAuth2,OIDC,SAML,JWT,RBAC/ABAC)andhowtoimplementthematscale ExperienceintegratingsecurityintoCI/CDpipelines(SAST,DAST,SCA,containerscanning) ExperiencewithInfrastructureasCode(e.g.Terraform,Pulumi)andapplyingsecuritypolicyascode Thecompanyareverybigontraininganddevelopmentandareconsideringcandidateswithoutalltherequiredskills. Youllplayakeyroleindrivingsecure-by-designprinciples,workingcloselywithengineeringteamstoembedsecurityintoarchitecture,development,anddeployment. Applynowtobeconsidered-AlternativelyfollowReVybeITRecruitmentforsimilarjobs. ...

current AI tooling helps and where it falls short. Apply engineering practices that hold up in production: TDD, secrets management and rotation, SAST/DAST, structured logging, metrics, tracing, and automated CI/CD (GitHub Actions, Jenkins). Own what you build end-to-end, including the infrastructure and operations … tools (Claude Code, Cursor, GitHub Copilot) with demonstrable workflows, sub-agents, skills, and innovative approaches. Strong Python or TypeScript, with OOP, SOLID, 12-factor application development, and microservice architecture. You've built Next.js applications, FastAPI services, and similar. End-to-end implementation experience with vector databases, retrieval pipelines ...

Senior hands-on role securing Azure platforms with a strong focus on security tooling, scanning, vulnerability remediation, and backup and recovery. The role requires deep Azure expertise, ARM and Bicep experience, and the ability to work closely with engineering and security teams to deliver secure, resilient platforms. Client … harden Azure platform environments Implement security scanning, tooling and remediation plans Build and secure CI/CD pipelines in Azure DevOps Integrate SAST, DAST, dependency and secret scanning tools Design and implement backup and recovery aligned to RTO/RPO Manage identity and access management controls Implement monitoring ...

tooling, and best practice guidance. Key Responsibilities Design and implement scalable CI/CD pipelines using Azure DevOps Integrate security tooling (SAST/DAST) into build and release pipelines Embed DevSecOps controls, including: Vulnerability scanning Secure build gates Policy enforcement Collaborate with engineering and security teams to improve … Experience Strong experience with Azure DevOps (CI/CD pipelines) Proven background in DevOps/DevSecOps consulting roles Hands-on experience integrating SAST and DAST tools into pipelines Solid understanding of secure software delivery practices Experience with: Containerisation Orchestration Strong knowledge of: Git and branching strategies Automation and infrastructure ...