26 to 50 of 170 OWASP Jobs in the UK excluding London

with public/private cloud environments ( Openshift, Rancher, K8s, AWS, GCP, Azure, etc. ) In-depth knowledge of security principles, compliance regulations, and change management. Experience in running assessments using OWASP MASVS and ASVS. Working knowledge on exploiting and fixing application vulnerabilities. Proven expertise in architectural threat modeling and conducting secure design reviews. In-depth knowledge of common web application vulnerabilities … i.e. OWASP Top 10 or SANS top 25). Familiarity with automated dynamic scanners, fuzzers, and proxy tools. An analytical mind for problem solving, abstract thought, and offensive security tactics. Highly effective communication skills, in both verbal and written forms, to effectively convey technical and non-technical concepts to a wide variety of audiences Exposure to advanced AI and Large More ❯

into application design Lead security architecture reviews and provide expert technical guidance on complex security challenges Keep up-to date with the latest security threat assessment frameworks such as OWASP, MITRE ATT&CK Assess security posture against industry regulations and compliance requirements Identify and mitigate security risks associated with new technologies and initiatives Perform security assessments to identify vulnerabilities Communicate More ❯

efforts for security breaches. Provide security guidance and training to teams across the organization. Key Skills & Experience: Strong knowledge of security frameworks (ISO 27001, NIST 800-30/53, OWASP) . Experience with risk management methodologies and compliance with MOD and HMG security standards (JSP, Def Stan 05-138/139). Proficiency in security threat modeling and risk assessments. More ❯

efforts for security breaches. Provide security guidance and training to teams across the organization. Key Skills & Experience: Strong knowledge of security frameworks (ISO 27001, NIST 800-30/53, OWASP) . Experience with risk management methodologies and compliance with MOD and HMG security standards (JSP, Def Stan 05-138/139). Proficiency in security threat modeling and risk assessments. More ❯

or internal testing roles considered) OSCP certification is essential (OSEP, OSCE3, or other advanced Offensive Security certifications also accepted) Demonstrable knowledge of Web Application security , including common vulnerabilities (e.g., OWASP Top 10) Strong desire to deepen technical capabilities across various domains, including infrastructure, cloud, and red teaming Excellent written and verbal communication skills Full right to work in the UK More ❯

or internal testing roles considered) OSCP certification is essential (OSEP, OSCE3, or other advanced Offensive Security certifications also accepted) Demonstrable knowledge of Web Application security , including common vulnerabilities (e.g., OWASP Top 10) Strong desire to deepen technical capabilities across various domains, including infrastructure, cloud, and red teaming Excellent written and verbal communication skills Full right to work in the UK More ❯

Experience with Azure Managed Services, Docker, Kubernetes, Terraform, Helm Experience building modern web apps using Angular and Typescript Experience working in Azure DevOps managing backlogs etc Working knowledge of OWASP security best practices Knowledge of working with FedRamp compliance Our Employer Commitment This job posting will remain active until a qualified candidate is identified. At Ivanti, we are committed to More ❯

Minimum 5 years of practical penetration testing experience (web, infrastructure, external/internal). Experience in scoping penetration testing assessments. Strong knowledge of security testing methodologies and frameworks (eg, OWASP, NIST). Proficiency with industry-standard tools (eg, Burp Suite, Nmap, Metasploit, Kali Linux). Excellent written and verbal communication skills. OSCP is essential. Experience with red teaming or threat More ❯

software architects, engineers QA teams and digital experience owners to improve DevOps best practices and workflows within an Agile framework. Implementing security measures, compliance policies, and vulnerability assessments following OWASP guidelines and applicable UK regulations such as UK-GDPR, UK Payment Services Regulations and PCI-DSS. Supporting disaster recovery planning and backup strategies. Keeping up to date with emerging DevOps … with Selenium for test automation. Knowledge of scripting and automation languages such as Powershell, Bash. Familiarity with networking and security best practices. Knowledge of application secure coding principles (e.g., OWASP) for protection against vulnerabilities and the ability to implement secure coding and deployment best practices. Experience in Agile software development methodologies and how DevOps practices integrate within Agile teams. Familiarity More ❯

systems (e.g., Git) and continuous integration/deployment (CI/CD) practices. · Solid understanding of web security practices, including JWT authentication, secure API design, rate limiting, and familiarity with OWASP vulnerabilities. · Ability to troubleshoot and find solutions without needing hand-holding. Salary & Benefits 🎁 No two days are the same at Arcube. In a high-performing and tight-knit team, the More ❯

SQL and familiarity with relational & NoSQL databases. Experience designing and consuming REST APIs. Hands‐on with cloud services (AWS) and Docker containers. Solid grasp of secure‐coding best practices (OWASP Top 10). Mindset & Behaviours Collaborative: thrive in cross‐functional teams and build strong relationships with peers. Communicative: speak up in discussions, share ideas and listen actively. Leadership mindset: take More ❯

REST API principles and best practices including API versioning, authentication/authorization models and techniques, and secret management. Familiarity with Entity Framework or other ORM tools. Experience in applying OWASP secure coding practices. Confident applying cloud best-practices for identity and access management, hosting, deployment and monitoring. Confident working on problems from scratch - resourceful in turning problems into simple solutions More ❯

code reviews and promoting best practice in relation to coding standards. Creating solutions that are scalable and improve performance, are based on secure coding guidelines which prevent common vulnerabilities (OWASP) and are HIPAA and HiTrust compliant. Understanding and planning for evolutionary paths. Managing risk identification and risk mitigation strategies associated with the architecture. You Will Bring An in-depth understanding More ❯

mobile, desktop apps as API consumers) Experience with background job processing systems (Sidekiq, Delayed Job, or Resque), job retries, idempotency, and queue management; Understanding of web application security principles (OWASP Top 10, rate limiting, CSRF/XSS protection, secure API design); Upper-Intermediate or higher English level. As a plus: Experience in a programming language(s) other than Ruby: JS More ❯

Desirable Skills: Experience working with distributed and hybrid teams . Ability to effectively communicate complex technical concepts in non-technical terms to stakeholders. Familiarity with modern security frameworks like OWASP and SANS25 . Experience with Continuous Delivery and Automated Deployment using tools like Azure DevOps . People Source Consulting Ltd is acting as an Employment Business in relation to this More ❯

experience with Government Digital Standards (GDS) Demonstrable experience in Test Automation using Playwright with JavaScript Expertise in Browserstack for use in compatibility testing Previous experience in security testing with OWASP ZAP Performance testing knowledge (JMeter preferred) Experience in CI/CD Integration for Test Automation Azure DevOps proficiency for Test Management and defect tracking Working experience of BDD Framework (Cucumber More ❯

fundamentals in data structures, algorithm design and complexity analysis. Experience developing, deploying and maintaining API's onto AWS or Azure. Excellent understanding of software design principles. Experience in applying OWASP secure coding practices. Confident and experienced with automated testing - from unit tests to system and integration tests. Willingness to develop across multiple platforms and architectures. Genuinely passionate about changing lives More ❯

Science fundamentals in data structures, algorithm design and complexity analysis. Experience developing, deploying and maintaining APIs onto AWS or Azure. Excellent understanding of software design principles. Experience in applying OWASP secure coding practices. Confident and experienced with automated testing from unit tests to system and integration tests. Willingness to develop across multiple platforms and architectures. Genuinely passionate about changing lives More ❯

including AWS Lambda, Spring Boot, NodeJS, Python FastAPI, Oracle, PostgreSQL and MongoDB. Build solutions as part of a DevSecOps and Agile ecosystem supported by tooling including Atlassian, Jenkins, GitLab, OWASP and AWS componentry. Ensure your solution works in a reliable and resilient way using Site Reliability Engineering methods to increase availability while reducing costs and callouts. Help the client and More ❯

including AWS Lambda, Spring Boot, NodeJS, Python FastAPI, Oracle, PostgreSQL and MongoDB. Build solutions as part of a DevSecOps and Agile ecosystem supported by tooling including Atlassian, Jenkins, GitLab, OWASP and AWS componentry. Ensure your solution works in a reliable and resilient way using Site Reliability Engineering methods to increase availability while reducing costs and callouts. Help the client and More ❯

including AWS Lambda, Spring Boot, NodeJS, Python FastAPI, Oracle, PostgreSQL and MongoDB. Build solutions as part of a DevSecOps and Agile ecosystem supported by tooling including Atlassian, Jenkins, GitLab, OWASP and AWS componentry. Ensure your solution works in a reliable and resilient way using Site Reliability Engineering methods to increase availability while reducing costs and callouts. Help the client and More ❯

working with just 1 day/week in the office Projects that span both UK and US markets Exposure to best-in-class tools and frameworks (MITRE ATT&CK, OWASP) Supportive culture with a learning mindset and room to grow Involvement in the full security lifecycle from audits to implementation Opportunity to shape how cloud security evolves in a global More ❯

design and analysis. Experience with one or more of Java, C#, JavaScript, Go, PHP, Python, Kotlin, Scala, Groovy. Interest or experience with web application or mobile security, familiarity with OWASP Top 10 lists. Black Duck considers all applicants for employment without regard to race, color, religion, sex, gender preference, national origin, age, disability, or status as a Covered Veteran in More ❯

hands-on penetration testing experience across network, web, wireless, and cloud environments. Expert with core tools: Burp Suite, Metasploit, Cobalt Strike, Nmap , and custom Scripting. Deep understanding of vulnerabilities (OWASP Top 10, MITRE ATT&CK) and exploitation methods. Experience delivering reports aligned to PTES, OWASP, NIST, or OSSTMM standards. Exceptional communicator who can translate complex technical issues for diverse audiences. More ❯

Ensure delivery of high standards, documentation, and service levels Minimum Requirements: 3-5 years' experience in DevSecOps or related roles Knowledge and working experience of security frameworks and tools - OWASP, Snyk, etc. Good team player and able to work on own initiative Proven experience in mentoring other team members Proven ability of establishing strong, effective working relationships at all levels More ❯