26 to 50 of 186 Static Application Security Testing Jobs in the UK excluding London

Ensure adherence to the existing Change Management Policy. Perform daily system monitoring, verifying the integrity and availability of all hardware, server resources, systems and key processes, reviewing system and application logs, and verifying completion of scheduled jobs such as backups. Use Windows Active Directory to administer user permissions, managing/creating service accounts and group membership. Assist with out … Engineers, including relevant training. Create and maintain fully automated CI build processes for multiple environments used by multiple applications and components. Skills and Experience required Proven experience working with application deployment/configuration. Background in software development, testing, or support. Proven ability in troubleshooting environment and application issues. Proven experience working with and managing stakeholders. Good communication … IIS and Apache Tomcat (Web services). Virtualisation software. Package management tools like CloudSmith or JFrog Artifactory. Container management e.g., minikube, docker or Kubernetes. CICD process with ideally with SAST and SCA code analysis. DevOps tools: Git repo, Azure DevOps, Azure, GitHub, GitHub Actions, AWS CI/CD tools, TeamCity, OctopusDeploy, Terraform, Ansible. PowerShell. Azure and AWS fundamentals. For more More ❯

skills Experience with Spring Boot and Hibernate Experience with JavaScript or other front-end technologies Building microservice architectures and event-driven systems Test automation: BDD, mocking, contract testing, SAST Knowledge of web technologies, data tooling, infrastructure, and networking About working for us We value diversity and inclusivity, ensuring our organization reflects modern society. We have initiatives supporting under-represented More ❯

one object oriented language, e.g. Java, Go or Python Developing of RESTful API services & understanding of API Gateways (e.g. APIGEE). Building applications utilising container technologies e.g. Docker. Managing application deployed to Kubernetes clusters, Istio & Helm. Cloud: GCP, GKE, IaC (Terraform). Build Tools & DevOps principles: Git, Maven, Jenkins CI/CD, Nexus, SonarQube. SQL/NoSQL database, Basic … in Spring Boot and Hibernate. Experience in JavaScript or other front-end technologies. Experience of building microservice architecture and event driven systems. Experience in Test automation: BDD, mocking, contract testing, Sast. Exposure to web technologies, data tooling & infrastructure/networking. About working for us Our focus is to ensure we're inclusive every day, building an organisation that reflects More ❯

ideally an additional OOP language e.g. Go or Python; Developing of RESTful API services & understanding of API Gateways (e.g. APIGEE). Building applications utilising container technologies e.g. Docker. Managing application deployed to Kubernetes clusters, Istio & Helm. Cloud: GCP, GKE, IaC (Terraform). Build Tools & DevOps principles: Git, Maven, Jenkins CI/CD, Nexus, SonarQube. SQL/NoSQL database, Basic … in Spring Boot and Hibernate. Experience in JavaScript or other front-end technologies. Experience of building microservice architecture and event driven systems. Experience in Test automation: BDD, mocking, contract testing, Sast. Exposure to web technologies, data tooling & infrastructure/networking. About working for us Our focus is to ensure we're inclusive every day, building an organisation that reflects More ❯

Join to apply for the DAS Application Security Lead role at IBM 1 week ago Be among the first 25 applicants Join to apply for the DAS Application Security Lead role at IBM Get AI-powered advice on this job and more exclusive features. Introduction At IBM CIC, we deliver deep technical and industry expertise to … governance across data access. Responsibilities Integrate security into the software development lifecycle, automating security practices into CI/CD pipelines. Implement automated security testing (SCA, SAST, DAST) to identify and remediate vulnerabilities at every stage of development. Secure IaC configurations, ensuring secure provisioning, configuration management, and continuous monitoring of infrastructure. Utilize CNAPP and CSPM tools to … Cloud and Palo Alto security tools. Proficiency in DLP, CASB, and DAG technologies. Familiarity with DSPM tools, data classification tools, and CI/CD tools. Knowledge of SCA, SAST, and DAST tools. Experience with IaC security tools, container security tools, and Kubernetes security. Seniority level Seniority level Mid-Senior level Employment type Employment type Full-time Job More ❯

clients locally based skills and technical expertise to drive innovation and adoption of new technology. Your role and responsibilities As a Cybersecurity Architect, you will specialize in DevSecOps, integrating security into the software development lifecycle, automating security practices, and ensuring robust threat modeling and vulnerability management. Your primary focus will be on cloud-native and on-premises environments … governance across data access. Responsibilities: Integrate security into the software development lifecycle, automating security practices into CI/CD pipelines. Implement automated security testing (SCA, SAST, DAST) to identify and remediate vulnerabilities at every stage of development. Secure IaC configurations, ensuring secure provisioning, configuration management, and continuous monitoring of infrastructure. Utilize CNAPP and CSPM tools to … Cloud and Palo Alto security tools. Proficiency in DLP, CASB, and DAG technologies. Familiarity with DSPM tools, data classification tools, and CI/CD tools. Knowledge of SCA, SAST, and DAST tools. Experience with IaC security tools, container security tools, and Kubernetes security. ABOUT BUSINESS UNIT IBM Consulting is IBM's consulting and global professional services business More ❯

Principal Cloud Security Engineer (Closing date - 07/17/2025) hackajob Glasgow, Scotland, United Kingdom Join or sign in to find your next job Join to apply for the Principal Cloud Security Engineer (Closing date - 07/17/2025) role at hackajob Continue with Google Continue with Google Principal Cloud Security Engineer (Closing date … industry-standard frameworks like AWS Well-Architected or Azure Security Centre. Develop and enforce security controls within Infrastructure as Code (IaC) pipelines, integrating security testing (SAST, DAST, SCA) and automated compliance checks into CI/CD processes. Provide expert guidance on cloud security architecture, articulating security postures, and implementing mitigating controls to reduce risk. … solutions, including native security services (IAM, WAFs, threat detection), with a strong focus on embedding security within CI/CD pipelines using tools like Terraform, AWS CloudFormation, SAST, DAST, and SCA. Demonstrable experience leading DevSecOps initiatives, integrating security controls seamlessly into development and operational workflows, and collaborating effectively with Developers, Architects, and DevOps teams to promote security More ❯

as Azure (pref.), AWS or GCP Worked with defining data models and interacting with databases Built software that incorporates best practices in application security controls, such as SAST, DAST, Penetration Testing etc. Skills we'd love to see/Amazing Extras: Experience with Docker, Kubernetes or other serverless application delivery platforms Used GIT, Jenkins, GitHub or More ❯

Senior Application Security Architect, Woking Client: Opus Recruitment Solutions Location: Woking, United Kingdom Job Category: Other EU work permit required: Yes Job Views: 3 Posted: 26.06.2025 Expiry Date: 10.08.2025 Job Description: Opus Recruitment Solutions is seeking multiple experienced Application Security Architects to join our client's growing AppSec team. As part of the ongoing development of … their cyber security capabilities, these specialists will help shape the strategic direction of the client's application security posture, working closely with developers, product managers, and security stakeholders to embed security throughout the SDLC. Main Responsibilities: Define and enforce secure architecture standards across web, mobile, and cloud-native applications. Provide security guidance during product … Top 10, SANS CWE Top 25, and secure coding best practices. Familiarity with threat modeling methodologies such as STRIDE and architectural risk analysis. Hands-on experience with tools like SAST/DAST/IAST, Snyk, SonarQube, Burp Suite, Veracode, or similar. Strong understanding of cloud platforms and modern development architectures. Relevant certifications such as CSSLP, OSWE, GWAPT, CISSP, or equivalent More ❯

ESO's teams are growing, and our software is in demand globally by firefighters, paramedics, hospitals and governments. To meet this demand, we are building an industry-leading cyber security team in Belfast to protect our customers and data from a variety of fast moving and constantly evolving threats. We are looking for an Application Security Engineer … across our estate, and lead remediation activities prioritization. Enhance Secure Development by contributing to threat modelling, risk assessment, evolving Secure Coding Guidelines, and maintaining core security controls like SAST and DAST deployments. Provide technical support with risk assessments on PHI, and steering improvements to our environment in line with common standards such as NIST. Support External Penetration Testing … and cloud native deployments Working with toolsets such as: vulnerability management, firewalls, SIEM, PAM, IDS/IPS, EDR/XDR, WAF Working with code security controls such as SAST/DAST/IAST/RASP You should also: Have some knowledge in securing Continuous Integration/Continuous Deployment and associated practices Understand current attack tactics, techniques and procedures along More ❯

Social network you want to login/join with: Senior Application Security Engineer, Slough col-narrow-left Client: Cloudsmith Location: Slough, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 4 Posted: 31.05.2025 Expiry Date: 15.07.2025 col-wide Job Description: Some people like building things. Others like breaking them. You? You love … a job you’ll want to see. This job is with the software supply chain company - securing and powering how software gets delivered everywhere. What you'll do: Embed security across the platform, from source to prod. Architect security controls across distributed, cloud-native systems. Lead threat modeling and security reviews (and get people to enjoy them … At your core, you’re a software engineer. Python for sure and a bit of TypeScript never hurt anyone. Deep application security knowledge Hands-on experience with SAST, DAST, RASP, and securing cloud (preferably AWS). Strong grasp of container security, API security, IaC, and CI/CD. You’ve done pen testing, threat modeling More ❯

RMM Service Automation Platform and has a proven track record of helping MSPs standardize and automate the setup and delivery of IT services to achieve true scalability. The Senior Application Security Engineer plays a critical role in enhancing our application security posture by conducting advanced security assessments, leading security initiatives, and collaborating with development … teams to integrate security into the software development lifecycle. The position plays a key role in identifying and mitigating security vulnerabilities to protect our applications and data. This role is based in our Edinburgh hub. What You'll Do Assist in maturing organizational processes that drive complex security efforts for internal teams and external partners. Develop and … is preferred Thorough understanding of OWASP Top 10 and Secure Development Expertise in automating security tools and integrations, including simple scripting Experience with application security tools (SAST, DAST, IAST and SCA) Strong technical knowledge of development and production release process, including CI/CD Experience with the application of threat modeling and other risk identification techniques More ❯

DevOps Engineer £55,000 - £60,000 and Bonus Scheme South Wales We're looking for a skilled DevOps Engineer to support the deployment, configuration, and optimisation of our application environments and CI/CD pipelines. You'll work closely with development, QA, platform, and support teams to ensure reliable and secure software delivery, with a focus on automation, standardisation … governance, standards, and training. Participate in monthly DevOps Community of Practice forums. What You'll Bring Essential Skills: Experience in deploying and configuring enterprise applications Background in software development, testing, or support Strong problem-solving and stakeholder communication skills Proficiency with: Windows Server and SQL Server Management Studio IIS, Apache Tomcat Virtualisation (VMware … Git, Azure DevOps, GitHub Actions, AWS CI/CD tools TeamCity, OctopusDeploy, Terraform, Ansible Docker, Kubernetes, Minikube PowerShell scripting Cloud fundamentals (Azure and AWS) CI/CD pipelines, including SAST/SCA code analysis Desirable: Experience with third-party software vendors and support Familiarity with the insurance sector Knowledge of: Microsoft Dynamics, PowerApps, Salesforce Guidewire (PC/BC/CC More ❯

and backend layers Contribute to the design of test frameworks and CI/CD pipelines Collaborate with engineers, product managers, and UX to define and validate features Perform exploratory testing and champion quality throughout the SDLC Support secure deployment and testing practices in containerised environments Tech You’ll … Work With: Automation tools: Playwright, Cypress, JUnit, Jasmine Languages: JavaScript/TypeScript, Java or Kotlin DevOps & Infra: Docker, Kubernetes, GitLab CI, Bitbucket Testing tools: Postman, browser dev tools, SAST/DAST integrations Environments: Unix and Windows What You Bring: Hands-on experience building test automation from scratch Strong debugging and analytical skills Comfortable reviewing code and contributing to testable More ❯

Windows Server/SSMS IIS and Apache Tomcat (Web services) Virtualisation software Package management tools (CloudSmith/JFrog Artifactory) Container management (docker or Kubernetes) CICD process with ideally with SAST and SCA code analysis DevOps tools: Git repo, Azure DevOps, Azure, GitHub, TeamCity, OctopusDeploy, Terraform, Ansible, PowerShell Strong stakeholder management and communication skills. Contact: David Southwood - CPS Group More ❯

Windows Server/SSMS * IIS and Apache Tomcat (Web services)* Virtualisation software* Package management tools (CloudSmith/JFrog Artifactory)* Container management (docker or Kubernetes)* CICD process with ideally with SAST and SCA code analysis* DevOps tools: Git repo, Azure DevOps, Azure, GitHub, TeamCity, OctopusDeploy, Terraform, Ansible, PowerShell* Strong stakeholder management and communication skills.Contact: David Southwood - CPS GroupBy applying to this More ❯

Application Security Architect position in Crawley, West Sussex, with Opus Recruitment Solutions. Job Details: Location: Crawley, West Sussex, United Kingdom Category: Other Posted: 26.06.2025 Expiry Date: 10.08.2025 Job Description: Opus is seeking multiple experienced Application Security Architects to join our client's expanding AppSec team. The role involves shaping the strategic direction of application security, collaborating with developers, product managers, and security stakeholders to embed security throughout the SDLC. Main Responsibilities: Define and enforce secure architecture standards across web, mobile, and cloud-native applications. Provide security guidance during product development, including threat modeling, secure coding, design reviews, and architecture assessments. Lead the implementation of DevSecOps practices, integrating security into CI … Deep knowledge of OWASP Top 10, SANS CWE Top 25, and secure coding best practices. Familiarity with threat modeling methodologies such as STRIDE. Hands-on experience with tools like SAST, DAST, IAST, Snyk, SonarQube, Burp Suite, Veracode, or similar. Strong understanding of cloud platforms and modern development architectures. Relevant certifications such as CSSLP, OSWE, GWAPT, CISSP, or equivalent are advantageous. More ❯

Social network you want to login/join with: Senior Application Security Architect, Nottingham Client: Opus Recruitment Solutions Location: Nottingham, United Kingdom Job Category: Other - EU work permit required: Yes Job Views: 3 Posted: 26.06.2025 Expiry Date: 10.08.2025 Job Description: Opus is seeking multiple experienced Application Security Architects to join our client's expanding AppSec team. … As the client continues developing their cyber team, they seek AppSec specialists to shape their application security strategy, collaborating with developers, product managers, and security stakeholders to embed security throughout the SDLC. Main Responsibilities: Define and enforce secure architecture standards across web, mobile, and cloud-native applications. Provide security guidance during product development, including threat … knowledge of OWASP Top 10, SANS CWE Top 25, and secure coding best practices. Familiarity with threat modeling methodologies like STRIDE and architectural risk analysis. Hands-on experience with SAST/DAST/IAST tools such as Snyk, SonarQube, Burp Suite, Veracode, or similar. Strong understanding of cloud platforms and modern development architectures. Relevant certifications such as CSSLP, OSWE, GWAPT More ❯

Social network you want to login/join with: Senior Application Security Architect, Basildon Client: Opus Recruitment Solutions Location: Basildon, United Kingdom Job Category: Other - EU work permit required: Yes Job Views: 3 Posted: 26.06.2025 Expiry Date: 10.08.2025 Job Description: Opus is seeking multiple experienced Application Security Architects to join our client's expanding AppSec team. … As our client enhances their cyber team, they seek specialists to shape their application security strategy, collaborating with developers, product managers, and security stakeholders to embed security throughout the SDLC. Main Responsibilities: Define and enforce secure architecture standards across web, mobile, and cloud-native applications. Provide security guidance during product development, including threat modeling, secure … OWASP Top 10, SANS CWE Top 25, and secure coding practices. Familiarity with threat modeling methodologies like STRIDE and architectural risk analysis. Hands-on experience with tools such as SAST/DAST/IAST, Snyk, SonarQube, Burp Suite, Veracode, or similar. Strong understanding of cloud platforms and modern architectures. Relevant certifications like CSSLP, OSWE, GWAPT, CISSP, or equivalent are advantageous. More ❯

Social network you want to login/join with: Senior Application Security Architect, Preston, Lancashire Client: Opus Recruitment Solutions Location: Preston, Lancashire, United Kingdom Job Category: Other EU work permit required: Yes Job Views: 3 Posted: 26.06.2025 Expiry Date: 10.08.2025 Job Description: Opus is looking for multiple experienced Application Security Architects to join our client's … growing AppSec team. As our client continues developing and improving their cyber team, they seek AppSec specialists to shape the strategic direction of their application security posture, collaborating with developers, product managers, and security stakeholders to embed security throughout the SDLC. Main Responsibilities: Define and enforce secure architecture standards across web, mobile, and cloud-native applications. … Deep knowledge of OWASP Top 10, SANS CWE Top 25, and secure coding practices. Familiarity with threat modeling methodologies such as STRIDE and risk analysis. Experience with tools like SAST/DAST/IAST, Snyk, SonarQube, Burp Suite, Veracode, or similar. Strong understanding of cloud platforms and modern development architectures. Relevant certifications such as CSSLP, OSWE, GWAPT, CISSP are advantageous. More ❯

Social network you want to login/join with: Opus are looking for multiple experienced Application Security Architects to join our clients growing AppSec team. As our client continues the development and improvement of their overall cyber team, they’re looking for AppSec specialists to shape the strategic direction of our clients application security posture, collaborating … with developers, product managers, and security stakeholders to ensure that security is embedded throughout the SDLC. Main Responsibilities: Define and enforce secure architecture standards and frameworks across web, mobile, and cloud-native applications. Provide security guidance throughout product development, including threat modeling, secure coding, design reviews, and architecture assessments. Lead the implementation of DevSecOps practices, integrating security … SANS CWE Top 25, and secure coding best practices. Familiarity with threat modelling methodologies such as STRIDE and architectural risk analysis. Hands-on experience with tools such as SAST/DAST/IAST, Snyk, SonarQube, Burp Suite, Veracode, or similar. Strong understanding of cloud platforms) and modern development architectures Relevant certifications such as CSSLP, OSWE, GWAPT, CISSP , or equivalent are More ❯

Social network you want to login/join with: Opus are looking for multiple experienced Application Security Architects to join our clients growing AppSec team. As our client continues the development and improvement of their overall cyber team, they’re looking for AppSec specialists to shape the strategic direction of our clients application security posture, collaborating … with developers, product managers, and security stakeholders to ensure that security is embedded throughout the SDLC. Main Responsibilities: Define and enforce secure architecture standards and frameworks across web, mobile, and cloud-native applications. Provide security guidance throughout product development, including threat modeling, secure coding, design reviews, and architecture assessments. Lead the implementation of DevSecOps practices, integrating security … SANS CWE Top 25, and secure coding best practices. Familiarity with threat modelling methodologies such as STRIDE and architectural risk analysis. Hands-on experience with tools such as SAST/DAST/IAST, Snyk, SonarQube, Burp Suite, Veracode, or similar. Strong understanding of cloud platforms) and modern development architectures Relevant certifications such as CSSLP, OSWE, GWAPT, CISSP , or equivalent are More ❯

Social network you want to login/join with: Opus are looking for multiple experienced Application Security Architects to join our clients growing AppSec team. As our client continues the development and improvement of their overall cyber team, they’re looking for AppSec specialists to shape the strategic direction of our clients application security posture, collaborating … with developers, product managers, and security stakeholders to ensure that security is embedded throughout the SDLC. Main Responsibilities: Define and enforce secure architecture standards and frameworks across web, mobile, and cloud-native applications. Provide security guidance throughout product development, including threat modeling, secure coding, design reviews, and architecture assessments. Lead the implementation of DevSecOps practices, integrating security … SANS CWE Top 25, and secure coding best practices. Familiarity with threat modelling methodologies such as STRIDE and architectural risk analysis. Hands-on experience with tools such as SAST/DAST/IAST, Snyk, SonarQube, Burp Suite, Veracode, or similar. Strong understanding of cloud platforms) and modern development architectures Relevant certifications such as CSSLP, OSWE, GWAPT, CISSP , or equivalent are More ❯

Social network you want to login/join with: Opus are looking for multiple experienced Application Security Architects to join our clients growing AppSec team. As our client continues the development and improvement of their overall cyber team, they’re looking for AppSec specialists to shape the strategic direction of our clients application security posture, collaborating … with developers, product managers, and security stakeholders to ensure that security is embedded throughout the SDLC. Main Responsibilities: Define and enforce secure architecture standards and frameworks across web, mobile, and cloud-native applications. Provide security guidance throughout product development, including threat modeling, secure coding, design reviews, and architecture assessments. Lead the implementation of DevSecOps practices, integrating security … SANS CWE Top 25, and secure coding best practices. Familiarity with threat modelling methodologies such as STRIDE and architectural risk analysis. Hands-on experience with tools such as SAST/DAST/IAST, Snyk, SonarQube, Burp Suite, Veracode, or similar. Strong understanding of cloud platforms) and modern development architectures Relevant certifications such as CSSLP, OSWE, GWAPT, CISSP , or equivalent are More ❯

Social network you want to login/join with: Opus are looking for multiple experienced Application Security Architects to join our clients growing AppSec team. As our client continues the development and improvement of their overall cyber team, they’re looking for AppSec specialists to shape the strategic direction of our clients application security posture, collaborating … with developers, product managers, and security stakeholders to ensure that security is embedded throughout the SDLC. Main Responsibilities: Define and enforce secure architecture standards and frameworks across web, mobile, and cloud-native applications. Provide security guidance throughout product development, including threat modeling, secure coding, design reviews, and architecture assessments. Lead the implementation of DevSecOps practices, integrating security … SANS CWE Top 25, and secure coding best practices. Familiarity with threat modelling methodologies such as STRIDE and architectural risk analysis. Hands-on experience with tools such as SAST/DAST/IAST, Snyk, SonarQube, Burp Suite, Veracode, or similar. Strong understanding of cloud platforms) and modern development architectures Relevant certifications such as CSSLP, OSWE, GWAPT, CISSP , or equivalent are More ❯