26 to 50 of 75 OWASP Jobs in the UK excluding London

using technologies such as AWS Lambda, Spring Boot, NodeJS, Python FastAPI, Oracle, PostgreSQL, and MongoDB . Work within Agile and DevSecOps environments, utilising tooling such as Atlassian, Jenkins, GitLab, OWASP and AWS services. Apply Site Reliability Engineering principles to enhance reliability, resilience, and performance. Support technical decision-making, explaining trade-offs and best practices to clients and stakeholders. Contribute to More ❯

in an agile environment. Integrating with a range of third-party systems and APIs to deliver seamless payment experiences. Writing clean, maintainable, and secure code, following best practice and OWASP principles. Supporting continuous improvement through code reviews, automation, and DevOps processes. Contributing to team discussions, sharing ideas, and helping drive technical innovation. Skills and Experience We’re Looking For Strong More ❯

security tools and technologies (e.g. WAFs, AV, email/web gateways, ACLs). Expertise in secure coding practices and security testing (SAST, DAST, SCA, Pen Testing). Familiarity with OWASP Top 10, CWE, and remediation strategies. Hands-on experience with security testing tools and techniques. Excellent communication and documentation skills. Relevant certifications (e.g. CISSP, SANS GCIA, Security+, CCNA/CCNP More ❯

profile with working samples of previously produced code * Docker * Laravel Livewire/Inertia * DevOps * Experience with security, form validation, XSS prevention, database security, session management, input validation and other OWASP guidelines You will be able to be part of something special. You will be given so much autonomy, and it is a true green field project. Job responsibilities include: * Work More ❯

autonomously. Demonstrable expertise and understanding of API development/design and experience interfacing with disparate systems. Applicable understanding of software security, common exploits and secure development practices, including the OWASP Top 10. Proven and demonstrable understanding of testing methodologies and frameworks. Commercial experience with AWS and IaC (Terraform/CDK/CloudFormation) Commercial experience with Linux, Docker, Docker Compose, Git More ❯

At least 3 years of experience in software engineering. At least 2 years of experience in application security. In-depth knowledge of application security vulnerabilities, testing techniques, and the OWASP framework. Team player able to build relationships across the organization. In-depth understanding of secure web application development. Experience in web application and Agile development methodologies. Comprehensive knowledge of IT More ❯

Security Professional • PWB - Offensive Security : Penetration Testing with Back|Track • SANS GCIH - GIAC Certified Incident Handler • Major involvement in Network & Web Application vulnerability assessment and penetration tests utilising the OWASP and OSSTMM open standards and other standards. • Lead IT Security Assessment, Incident Response (CIRT), and Forensic Analysis tasks for several major manufacturers, law firms, utility and non-profit organisations. • Lead More ❯

PagerDuty (transitioning to Dynatrace) CI/CD: GitLab pipelines Databases: Oracle RDS, SQL, MongoDB (limited use) Languages & Frameworks: Java 21, Spring Boot/Spring Batch Testing & Automation: Playwright, WireMock, OWASP ZAP (SAST, DAST, SCA), Gatling Key Responsibilities Define and implement QA principles within the workstream, aligned with programme strategy Collaborate with stakeholders to establish automation patterns and repeatable testing approaches More ❯

implementing secure infrastructure or cloud architectures. o Proven experience with risk assessment methodologies and maintaining enterprise risk registers. o Working knowledge of risk assessment methodologies (e.g. ISO 31000, FAIR, OWASP risk rating). o Strong understanding of Gov Assure, CAF, ISO 27001, Cyber Essentials, and NIST frameworks. o Experience conducting or supporting security audits and implementing remediation plans. o Proficiency More ❯

Mentor junior testers and help shape the consultancy’s internal security capability. What You’ll Bring 2–5 years’ experience in ethical hacking or penetration testing. Strong understanding of OWASP, web, and infrastructure testing. Experience with Burp Suite, Nmap, Nessus, Qualys, Metasploit, Kali Linux. Familiarity with cloud security (AWS, Azure, or GCP). Confident communicator with client-facing experience. Bonus More ❯

cloud environments. Collaborate with teams to embed security best practices into CI/CD pipelines and foster a security-first culture. Your Skills Hands-on experience with security tools (OWASP Zap, Trivy, Dependabot) in CI/CD Cloud security expertise in AWS and Azure Strong scripting skills (Node.js, Python, Bash) Knowledge of vulnerability management and secure DevOps practices Nice to More ❯

with Terraform , Docker , Kubernetes , and Git . Solid CI/CD and security automation skills. Knowledge of cloud security (IAM, encryption, network controls). Bonus: Cloud certifications, experience with OWASP ZAP or Burp Suite. You'll be part of a forward-thinking, impact-driven team blending science, technology, and innovation to improve global health outcomes. More ❯

consulting, applications, cloud, and infrastructure, you'll collaborate with brilliant colleagues and clients on truly impactful projects. What you'll do: Embed security across the SDLC, promoting secure coding (OWASP) Automate security in CI/CD workflows (SAST, DAST, IAST, SCA, IaC) Perform appsec testing, code reviews, and vulnerability remediation Drive secure DevOps culture through training, playbooks, and developer champions … Strengthen cloud & container security (AWS, Azure, GCP, Kubernetes, Docker) What you'll bring: 2-4 years' experience in AppSec/DevSecOps Hands-on with tools like Checkmarx, Veracode, SonarQube, OWASP ZAP Strong coding skills (Java, Python, JavaScript, Go, .NET) Familiar with CI/CD (Jenkins, GitHub Actions, Azure DevOps) and IaC (Terraform) Knowledge of OWASP Top 10, API security, and More ❯

s recognition. His OwaspHeaders.Core library has achieved remarkable success with over 1.2 million downloads, providing essential web application security features to developers across the .NET ecosystem. The library implements OWASP Secure Headers Project recommendations, enabling developers to enhance their application security with minimal effort whilst maintaining clean, maintainable code. Beyond digital community engagement, Jamie demonstrates his commitment to developing future More ❯

areas of expertise would be an advantage: Transport Ticketing. Point of Sale Terminals. Contactless Smartcards, ITSO. Contactless Payments and Payments Standards (cEMV, PCI). Internet Security and protocols – e.g. OWASP, OAuth2, OpenID. C# Developer/Embedded Software Engineer More ❯

cloud services, particularly AWS (e.g., Lambda, S3, CloudWatch). Ability to communicate clearly and work effectively in a team setting. Understanding of secure coding practices and common vulnerabilities (e.g., OWASP Top 10) Familiarity with CI/CD pipelines and automated deployment processes. Don't meet every single requirement? That's okay, and you aren't alone! Research shows that women More ❯

solutions. What You’ll Bring 5+ years in cybersecurity with a strong desire to grow. Deep understanding of AWS security, hybrid cloud, and DevSecOps. Familiarity with NIST, ISO 27001, OWASP, and CIS frameworks. Experience working in a payments environment (PCI compliant) Proficiency in tools like SIEM, IDS/IPS, DLP, IAM, and encryption. Strong communication and stakeholder influence skills. Certifications More ❯

frameworks Comfort with HTML/CSS/JavaScript fundamentals Team player, willing to learn and grow Bonus Points For Exposure to Entity Framework Core Awareness of web security/OWASP principles A relevant degree (Computer Science or related) Familiarity with IIS or Azure DevOps The Offer £35,000 – £45,000 depending on experience Hybrid role, 2 days a week in More ❯

improvement to development processes and code quality. Governance and Compliance Follow coding standards and security policies, maintaining and supporting compliance with security standards/guidelines such as PCI v4, OWASP etc. Keep training and knowledge on application security practices up to date. Strategy Support long-term technical planning, identify areas for improvement in existing systems and processes, and provide recommendations More ❯

security and technology innovation Knowledge of cloud services — ideally Azure Familiarity with security tools such as Nessus and WireShark Understanding of business continuity, disaster recovery and secure development practices (OWASP Top 10) Awareness of standards such as Cyber Essentials, ISO 27001, ISO 22301 and/or NIST Excellent organisation skills, attention to detail and a proactive, can-do attitude Able More ❯

cybersecurity testing of IoT products across consumer, industrial, and healthcare sectors. Provide expert interpretation of standards including ETSI EN , ETSI TS , RED EN 18031 , IEC 62443 , UL 2900 , and OWASP . Develop and improve test methods, tools, and automated reporting processes for the IoT lab. Guide internal teams and clients through security evaluations, results interpretation, and resolution of compliance issues. More ❯

HTML, CSS, and JavaScript Work collaboratively with designers and business teams to translate ideas into functional products Implement MVC patterns , REST APIs , and ensure robust, secure code aligned with OWASP best practices Debug, test, and optimise applications for performance Research emerging tools and technologies to enhance product functionality Create and maintain clear, detailed documentation What We’re Looking For We More ❯

Kafka), and robust error handling. Advanced SQL (PostgreSQL), schema design, query optimisation, and NoSQL where appropriate; lead data modelling and migration strategies. Demonstrate expert knowledge and application of the OWASP Top 10 security risks; proactively identify, remediate, and educate the team on security vulnerabilities. Architect logging, monitoring, and tracing strategies (OpenTelemetry, Prometheus, Application Insights), and drive adoption of best practices More ❯

Army or Defence background , ideally with knowledge of command, control, and intelligence systems . Deep understanding of architecture frameworks, design standards and methodologies. Experience with secure software development lifecycles , OWASP , GDPR , and NCSC Cloud Security Principles . Demonstrated ability to design and deliver secure, integrated solutions in sensitive or classified environments. Strong stakeholder engagement and communication skills, with the ability More ❯

Army or Defence background , ideally with knowledge of command, control, and intelligence systems . Deep understanding of architecture frameworks, design standards and methodologies. Experience with secure software development lifecycles , OWASP , GDPR , and NCSC Cloud Security Principles . Demonstrated ability to design and deliver secure, integrated solutions in sensitive or classified environments. Strong stakeholder engagement and communication skills, with the ability More ❯