51 to 75 of 86 OWASP Jobs in the UK excluding London

forward and see them implemented. Experience; Good understanding of the configuration of Power Pages An understanding of security best practices around Power Pages, with knowledge of items such as OWASP Hands on experience with Dataverse and Dataverse for Teams as part of implementing Power Platform solutions. Hands on experience in the setup of Continuous Integration (CI) and Continuous Delivery (CD More ❯

/negotiate technical outcomes with 3rd parties, including conflict resolution due to changing priorities. Experience of using common information security management frameworks, such as NIST, PCI, GDPR, ISO Series, OWASP the IT Infrastructure Library (ITIL), the ISF Standards of Good Practice (SoGP) and ISACA's Control Objectives for Information and related Technology (COBIT) frameworks. Actively represent the security organisation within More ❯

CEH, OSCP. Experience in cloud and mobile application security testing. Familiarity with EASM, threat intelligence, and cyber risk research. Understanding of compliance frameworks (GDPR, NIST, Cyber Essentials+, PCI-DSS, OWASP, SOC2). Global Impact: Your work will help protect the systems that support veterinary care across continents. Cutting-Edge Challenges: Tackle real-world threats in a complex, distributed business environment. More ❯

designs, and ensure integration with SIEM and monitoring systems. Demonstrated proficiency in network/system security (Firewalls, IDS/IPS, micro-segmentation), IAM (RBAC, ABAC, JWT), secure coding practices (OWASP, SANS), and hands-on experience with tools like Trellix, Ivanti, ClearSwift. Deep knowledge of Kubernetes and container security (RBAC, network policies, runtime protection), CI/CD pipeline hardening (Git, SonarQube More ❯

designs, and ensure integration with SIEM and monitoring systems. Demonstrated proficiency in network/system security (firewalls, IDS/IPS, micro-segmentation), IAM (RBAC, ABAC, JWT), secure coding practices (OWASP, SANS), and hands-on experience with tools like Trellix, Ivanti, ClearSwift. Deep knowledge of Kubernetes and container security (RBAC, network policies, runtime protection), CI/CD pipeline hardening (Git, SonarQube More ❯

complex tasks. Excellent communication and stakeholder management skills. Knowledge of GDPR and accessibility standards. Degree in a relevant subject or equivalent experience. Desirable: Understanding of secure development standards (eg, OWASP) and UK Higher Education systems Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered More ❯

structures and have experience of managing Azure subscriptions You have a good knowledge of DevOps and IaC concepts You're familiar with cloud based security (e.g. ISO27001, NIST, CIS, OWASP, SOC2) and Identity and Access Management (IAM) within Azure You're familiar with ARM templates and/or Pulumi Ideally you will have automation and scripting (PowerShell or similar) skills More ❯

traffic patterns using tools such as Splunk, Wireshark, or custom scripts. Experience working with at least three major WAF vendors (e.g., Akamai, F5, AWS, GCP). Familiarity with the OWASP Top 10 and modern web attack techniques. Desirable Skills/Experience Experience in DevSecOps practices and pipeline automation. Security engineering expertise alongside WAF specialism. Experience reverse-engineering exploits to develop More ❯

willingness to undergo DV clearance. Demonstrable experience in network and application-layer testing. Skilled with industry-standard tools (e.g. Burp Suite, Nmap, Metasploit, Cobalt Strike). Strong knowledge of OWASP Top 10, MITRE ATT&CK, and vulnerability management principles. Excellent communication and technical reporting skills. 🎯 Offer: £60,000 salary. Predominantly remote working. Occasional client site visits in the Gloucestershire area. More ❯

Technologies: C++ Python TCP/IP networking Test Plans Test Execution Linux Server windows server QA ISTQB AWS Services system programming owasp security VMware debugging skills multithreaded software A Software Test Engineer is required to join the software QA test team of our Buckinghamshire based client, a manufacturer of software for the telecommunications and speech processing market. This is a More ❯

Security Architect or similar role Strong knowledge of security standards, protocols, and best practices Experience with threat modelling, risk assessment, and incident response Familiarity with security tools (e.g., Snyk, OWASP ZAP) Excellent communication and collaboration skills Self-learner and ability to execute tasks without supervision Ability to maintain the highest level of professionalism Activities Assess and design secure system architectures More ❯

engagements. What We’re Looking For Strong technical background in vulnerability and security operations. Experience using scanning tools (e.g. Qualys, Nessus) and open-source analysis tools (e.g. Nmap, Wireshark, OWASP ZAP). Familiarity with Microsoft security products (Intune, Conditional Access, DLP, Defender Suite). Scripting knowledge in PowerShell or Python to automate workflows and reporting. Clear communicator with the ability More ❯

An understanding of MOD ISN 23/09 Secure by Design Knowledge of security frameworks, such as ISO/IEC 27001, NIST 800-30, NIST 800-53 or OWASP Working with risk management frameworks and methodologies (e.g., ISO 27001/2, ISO27005/31000, NIST 800-30, NIST 800-53) Please reach out to Lewis Dunn @ ARM if you are More ❯

An understanding of MOD ISN 23/09 Secure by Design Knowledge of security frameworks, such as ISO/IEC 27001, NIST 800-30, NIST 800-53 or OWASP Working with risk management frameworks and methodologies (e.g., ISO 27001/2, ISO27005/31000, NIST 800-30, NIST 800-53) Please reach out to Lewis if you are interested or More ❯

and efficient context to all customer engagements. Our ideal candidate: Able to demonstrate proven experience with technical accreditations or demonstrable experience in security and vulnerability remediation technologies: Security Tooling: OWASP ZAP, Nmap, Wireshark Assessment Tooling: Nessus, Qualys, etc Remediation Tooling: Microsoft Endpoint Management/Intune Microsoft Security/Compliance: MFA,?Conditional Access, SSPR, DLP, IPM, IRM, DKIM, MCAS Application packaging More ❯

with all operating systems Experience with security tools (E.G Burp, Nessus) Willingness to travel for on-site consulting and audits Knowledge of open security audit standards and projects, including OWASP and ATT(at)CK Passion for IT and IT security Enthusiasm for new technical challenges Experience with scripting languages Experience with vulnerabilities in web applications and API interfaces Certs such More ❯

reducing false positives, and validating control efficacy in production-like conditions. Scope Includes: Hands-on tuning experience with Akamai and F5 (minimum 1 of each). Custom rule creation , OWASP rule tuning (especially for F5), false positive reduction. Log analysis and data-driven tuning based on real traffic. Support for cloud-native WAF tuning (all three Cloud providers) -not deployment More ❯

A focus on tuning rules, analysing data, reducing false positives, and validating control efficacy in production-like conditions. Scope Includes: Hands-on tuning experience with Akamai. Custom rule creation , OWASP rule tuning (especially for F5), false positive reduction. Log analysis and data-driven tuning based on real traffic. Support for cloud-native WAF tuning (all three Cloud providers) -not deployment More ❯

systems or experience in the life insurance industry You'll thrive in this role if you: Have a strong technical mindset and attention to detail Understand security best practices (OWASP) and SOLID principles Communicate well and enjoy working in a team Are organised, analytical, and enjoy solving problems Are curious and always looking to learn something new Why join us More ❯

attack techniques and relate these to normal and observed digital system behaviour and recommend how to defend against them. Interpret and demonstrate use of external source of vulnerabilities (e.g. OWASP, intelligence sharing initiatives, open source) Undertake security risk assessments for simple systems without direct supervision and propose basic remediation advice in the context of the employer Source and analyse security More ❯

in Sheffield/Birmingham or Edinburgh 3 days a week) Rate: Negotiable depending on experience (deemed inside IR35) Reference: 19542 You will either be a F5 WAF tuning specialists (OWASP experience required OR Cloud-native WAF engineers (minimum 2 of 3 CSPs) (AWS & GCP as preference)/OR Generic WAF click apply for full job details More ❯

SSDLC strategy, including short, mid, and long-term goals aligned with the group's security posture and digital transformation initiatives. Develop and maintain AppSec maturity models (e.g. based on OWASP SAMM, NIST SSDF, BSIMM) and work with business units to assess current state and define realistic improvement plans. Drive the development of a global secure development policy, including approved tools … deploy processes. Experience working in or with regulated industries or large enterprises is highly desirable. Mergers and Acquisitions integration experience is a plus Familiarity with industry frameworks and standards: OWASP SAMM, OWASP ASVS, BSIMM, NIST SSDF, ISO 27034. Lead teams and projects. This could be as an DevSecOps team lead, security architect, or manager for SSDLC initiatives. Professional certifications in More ❯

with proven experience leading teams. Secondary Expertise: Knowledge and experience in network security, including firewalls, micro-segmentation, DDoS protection, WAF, and NAC. Familiarity with open-source frameworks such as OWASP, CVSS, etc. Experience with security products like Qualys, AlgoSec, Fortinet, Guardicore, Akamai, and Forescout. Salary: Up to £80,000 Basic Salary + 10% bonus + 4k car 13% pension Location More ❯

with their opinions. Desirable qualifications, capabilities, and skills: Experience in a software engineering role, ideally with focus on security. Working knowledge of offensive security, Application and Infrastructure penetration testing (OWASP top 10, OWASP ASVS). Understanding of security vulnerabilities and remediation options in codebases & containers. Working knowledge of methods for authentication and authorization (ODIC, OAuth 2, FIDO 2, etc) Don More ❯

a Junior Product Security Engineer, you will: Support Secure Product Development: Assist in creating and improving secure software development practices, helping to identify and mitigate common security flaws (e.g., OWASP Top 10 vulnerabilities) in web applications, mobile, and IoT devices. Help ensure the proper implementation of authentication and authorization mechanisms, encryption fundamentals, and secure communication protocols like TLS/SSL. … years of experience in security, IT, or related technical fields, including valuable internships or academic projects focusing on cybersecurity. Experience with secure software development practices and an understanding of OWASP Top 10 vulnerabilities with the ability to identify common security flaws in web applications, mobile, and IoT devices. Basic knowledge of programming languages (Python, C++, Java, or JavaScript) and familiarity More ❯