1 to 25 of 75 OWASP Jobs in the UK excluding London

principles in customer-facing SaaS platforms. Deep understanding of application security and secure SDLC across modern stacks (JavaScript/React, C#/.NET, Azure services, containers). Knowledge of OWASP Top 10 and mitigation strategies. Experience with modern authentication and authorization protocols (OpenID Connect, OAuth2.0). Hands-on experience with SAST/DAST tools and integration into SDLC. Proficiency in More ❯

principles in customer-facing SaaS platforms. Deep understanding of application security and secure SDLC across modern stacks (JavaScript/React, C#/.NET, Azure services, containers). Knowledge of OWASP Top 10 and mitigation strategies. Experience with modern authentication and authorization protocols (OpenID Connect, OAuth2.0). Hands-on experience with SAST/DAST tools and integration into SDLC. Proficiency in More ❯

ofmodern software development approaches such as automated testing, test driven development, continuous integration, pair programming, code review and version control have understanding of common web security risks such as OWASP Top 10, and the corresponding mitigations enjoy researching and learning new programming tools and techniques and sharing their skills with others have experience working in a collaborative environment, and an More ❯

in mentoring and adapting coaching style to diverse learning needs Confident communicator who can align technical solutions with business priorities Knowledge of secure coding practices and common vulnerabilities (e.g., OWASP Top 10) Familiarity with performance profiling and optimisation It would be a bonus if you also had: Commercial experience with serverless technologies (e.g., AWS Lambda, DynamoDB, API Gateway) Exposure to More ❯

and Azure DevOps (CI/CD) Familiarity with scripting languages like PowerShell, YAML, JSON Hands-on with application security tools and DevSecOps processes Understanding of frameworks and standards like OWASP, NIST SSDF, ISO27001, NCSC Experience with threat modelling, risk assessments, and secure design reviews Confident owning security strategy and tooling across complex product landscapes A strong communicator - able to engage More ❯

through deployment, oversee secure coding and testing, and drive operational maturity and resilience against evolving threats What you'll do: Define and govern secure architecture standards, aligned with NIST, OWASP, ISO 27001, and enterprise policies Lead DevSecOps integration, embedding automated security testing (SAST, DAST, SCA, container security) into CI/CD pipelines Oversee large-scale secure development programs, ensuring SLA More ❯

. Proficient in Git or other version control systems. Desirable Knowledge, Skills and Experience: Certifications in OCI or other cloud platforms (AWS, GCP). Experience with security tools like OWASP ZAP, Burp Suite, etc. Familiarity with Jira, Confluence, or similar tools. Knowledge of compliance frameworks (e.g., GDPR, HIPAA, ISO 27001, ISO 13485). Background in start-up or scale-up More ❯

Note: this position includes participation in an on-call rotation. What we’re looking for 3+ years in software engineering plus 2+ years in application security. Strong knowledge of OWASP, application vulnerabilities, and security testing techniques. Experience with secure web application development and Agile/DevOps methodologies. Familiarity with pen testing, bug bounty, or hacker community collaboration. Strong communication skills More ❯

Provide mentoring, training, and security awareness support to internal teams. Essential Skills & Experience Strong hands-on experience in application and cloud security engineering. Deep understanding of web app vulnerabilities (OWASP Top 10, CWE) and secure coding practices. Proficiency with security testing tools and vulnerability management platforms. Broad knowledge of network and infrastructure security concepts (WAFs, ACLs, VPNs, etc.). Familiarity More ❯

Provide mentoring, training, and security awareness support to internal teams. Essential Skills & Experience Strong hands-on experience in application and cloud security engineering. Deep understanding of web app vulnerabilities (OWASP Top 10, CWE) and secure coding practices. Proficiency with security testing tools and vulnerability management platforms. Broad knowledge of network and infrastructure security concepts (WAFs, ACLs, VPNs, etc.). Familiarity More ❯

embedding security in agile development environments Hands-on knowledge of cloud platforms , CI/CD pipelines , and scripting (PowerShell, YAML, JSON, etc.) Familiarity with frameworks and standards such as OWASP , NIST SSDF , ISO27001 , or NCSC Practical experience with threat modelling , security tooling , and risk assessments Excellent communication skills, able to influence and engage at all levels from developers to execs More ❯

certifications: CISSP, CISM, CISA, or equivalent Higher education sector experience Multi-tenant SaaS architecture security experience DevSecOps and CI/CD security integration knowledge Security frameworks: NIST, CIS Controls, OWASP Multi-jurisdictional data protection knowledge Enterprise sales cycle support experience Key Attributes: Strategic thinker who can balance security with business needs Pragmatic approach to security implementation Detail-oriented with strong More ❯

certifications: CISSP, CISM, CISA, or equivalent Higher education sector experience Multi-tenant SaaS architecture security experience DevSecOps and CI/CD security integration knowledge Security frameworks: NIST, CIS Controls, OWASP Multi-jurisdictional data protection knowledge Enterprise sales cycle support experience Key Attributes: Strategic thinker who can balance security with business needs Pragmatic approach to security implementation Detail-oriented with strong More ❯

or supporting the higher education sector. Strong understanding of multi-tenant SaaS security. Knowledge of DevSecOps and integrating security in CI/CD pipelines. Familiarity with NIST, CIS Controls, OWASP, and other security frameworks. Awareness of global data protection and multi-jurisdictional privacy requirements. Experience supporting enterprise sales cycles with security expertise and assurance. Benefits: 25 days' holiday plus bank More ❯

profile with working samples of previously produced code * Docker * Laravel Livewire/Inertia * DevOps * Experience with security, form validation, XSS prevention, database security, session management, input validation and other OWASP guidelines You will be able to be part of something special. As the Lead, you will be given so much autonomy, and it is a true green field project. Job More ❯

reliable deployments. Collaborate with engineering teams to embed best practices for monitoring, security, and performance. Contribute to architectural decisions and technical design reviews. Ensure compliance with secure coding standards (OWASP, API security, web application best practices). Support automation, observability, and continuous improvement initiatives across the engineering organisation. ✅ You’ll Be a Great Fit If You... Have strong coding experience More ❯

processes and code quality. Governance and Compliance Contribute to and follow coding standards and security policies, maintaining and supporting compliance with security standards/guidelines such as PCI v4, OWASP etc. Ensure Senior and Junior Developers are well trained in application security practices and knowledge is kept up to date. Strategy Contribute to long-term technical planning, identify areas for More ❯

/Bonus - Research experience in edge AI or constrained/offline deployments. - MLOps experience (Sagemaker, Kubeflow, ZenML). - Experience building RESTful services around AI pipelines. - ISO 27001, NIST SSDF, OWASP SAMM, or GDPR compliance literacy. - Experience with AWS Karpenter, Prometheus, or similar observability stacks. Soft Skills Research-driven mindset, eager to experiment and iterate. Able to bridge the gap between More ❯

Agile working, mentoring and technical leadership Desirable: Azure AD, Enterprise Apps, Graph API, Azure AI Search Relational and non-relational database design, Entity Framework Postman, Selenium, Playwright Awareness of OWASP, PCI v4, licensing and IP protection Microsoft certifications Experience in travel or entertainment tech Apply today if you're ready to lead, architect and deliver robust Azure solutions at scale. More ❯

own experience to develop pragmatic solutions and resolve complex issues. Certifications such as CISSP, CEH, OSCP, or GSEC are preferred. Knowledge of security principles, practices, and frameworks, such as OWASP, NIST, and ISO. Awareness of security tools and technologies, such as SAST, DAST, IAST, SCA, WAF, IDS, IPS. Experience in conducting threat modelling and risk assessments. Interview process The interview More ❯

programming skills and/or web application framework , i.e. Angular Understanding of encryption algorithms, key management, and secure protocols (TLS, SSH, etc.). Strong understanding of common vulnerabilities (e.g., OWASP Top 10, CWE/SANS Top 25). Familiarity with Linux, Windows, and network protocols (TCP/IP, DNS, Understanding of industrial protocols (e.g., Serial, Modbus, HART). Knowledge of More ❯

programming skills and/or web application framework , i.e. Angular Understanding of encryption algorithms, key management, and secure protocols (TLS, SSH, etc.). Strong understanding of common vulnerabilities (e.g., OWASP Top 10, CWE/SANS Top 25). Familiarity with Linux, Windows, and network protocols (TCP/IP, DNS, HTTP/S). Understanding of industrial protocols (e.g., Serial, Modbus More ❯

with integrating test automation into CI/CD pipelines (e.g., GitLab CI, Jenkins, GitHub Actions) Experience with non-functional testing , including: Performance testing (e.g., JMeter, Gatling), Security testing (e.g., OWASP ZAP, Checkmarx), Accessibility testing (e.g., Axe, WAVE, Pa11y) Understanding of shift-left testing practices and modern DevOps/Agile methodologies Experience testing in cloud-based environments , ideally Azure Strong communication More ❯

using technologies such as AWS Lambda, Spring Boot, NodeJS, Python FastAPI, Oracle, PostgreSQL, and MongoDB . Work within Agile and DevSecOps environments, utilising tooling such as Atlassian, Jenkins, GitLab, OWASP and AWS services. Apply Site Reliability Engineering principles to enhance reliability, resilience, and performance. Support technical decision-making, explaining trade-offs and best practices to clients and stakeholders. Contribute to More ❯

using technologies such as AWS Lambda, Spring Boot, NodeJS, Python FastAPI, Oracle, PostgreSQL, and MongoDB . Work within Agile and DevSecOps environments, utilising tooling such as Atlassian, Jenkins, GitLab, OWASP and AWS services. Apply Site Reliability Engineering principles to enhance reliability, resilience, and performance. Support technical decision-making, explaining trade-offs and best practices to clients and stakeholders. Contribute to More ❯