26 to 50 of 61 Remote Static Application Security Testing Jobs

Ensure adherence to the existing Change Management Policy. Perform daily system monitoring, verifying the integrity and availability of all hardware, server resources, systems and key processes, reviewing system and application logs, and verifying completion of scheduled jobs such as backups. Use Windows Active Directory to administer user permissions, managing/creating service accounts and group membership. Assist with out … Engineers, including relevant training. Create and maintain fully automated CI build processes for multiple environments used by multiple applications and components. Skills and Experience required Proven experience working with application deployment/configuration. Background in software development, testing, or support. Proven ability in troubleshooting environment and application issues. Proven experience working with and managing stakeholders. Good communication … IIS and Apache Tomcat (Web services). Virtualisation software. Package management tools like CloudSmith or JFrog Artifactory. Container management e.g., minikube, docker or Kubernetes. CICD process with ideally with SAST and SCA code analysis. DevOps tools: Git repo, Azure DevOps, Azure, GitHub, GitHub Actions, AWS CI/CD tools, TeamCity, OctopusDeploy, Terraform, Ansible. PowerShell. Azure and AWS fundamentals. For more More ❯

skills Experience with Spring Boot and Hibernate Experience with JavaScript or other front-end technologies Building microservice architectures and event-driven systems Test automation: BDD, mocking, contract testing, SAST Knowledge of web technologies, data tooling, infrastructure, and networking About working for us We value diversity and inclusivity, ensuring our organization reflects modern society. We have initiatives supporting under-represented More ❯

ideally an additional OOP language e.g. Go or Python; Developing of RESTful API services & understanding of API Gateways (e.g. APIGEE). Building applications utilising container technologies e.g. Docker. Managing application deployed to Kubernetes clusters, Istio & Helm. Cloud: GCP, GKE, IaC (Terraform). Build Tools & DevOps principles: Git, Maven, Jenkins CI/CD, Nexus, SonarQube. SQL/NoSQL database, Basic … in Spring Boot and Hibernate. Experience in JavaScript or other front-end technologies. Experience of building microservice architecture and event driven systems. Experience in Test automation: BDD, mocking, contract testing, Sast. Exposure to web technologies, data tooling & infrastructure/networking. About working for us Our focus is to ensure we're inclusive every day, building an organisation that reflects More ❯

thrive in your ideal environment. Join us in transforming the life sciences industry , committed to making a positive impact on its customers, employees, and communities. The Role Veeva’s Security Engineering team is seeking an aspiring Application Security Engineer that wants to work with Veeva’s product teams to secure their applications. This role has a broad scope, ranging from assisting with managing our SAST/SCA environment to developing Dev Sec Ops automation services, and system integrations using APIs, Webhooks, or other custom integrations of Veeva’s infrastructure. Development of automated processes of security … our multiple platforms. You will be working as a security expert supporting our product development teams on code quality issues and findings. What You'll Do Support Checkmarx SAST & SCA platform, tuning and supporting product development Assist application product teams with scan automation via pipeline build such as Jenkins or CI/CD Automation of security tools More ❯

Social network you want to login/join with: Senior Application Security Engineer, London col-narrow-left Client: Copper.co Location: London, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Reference: 75101a751ac0 Job Views: 15 Posted: 22.06.2025 Expiry Date: 06.08.2025 col-wide Job Description: Copper is a digital asset technology company dedicated to … trade and settle directly from the safety of their MPC-secured wallets. By reducing settlement time for transfers to a few milliseconds (without blockchain network dependency) and offering enhanced security measures, ClearLoop is rapidly reshaping the way asset managers trade and manage capital. In addition to industry-leading security certifications, Copper has one of the strongest insurance coverages … systemic solutions, removing the possibility of vulnerabilities before they can manifest. Domain Knowledge: Strong understanding of the S-SDLC. Intimate knowledge of security-specific tooling domains (e.g. SCA, SAST, DAST, MAST) and their effective integration within the S-SDLC. Awareness of microservice architecture and associated common deployment patterns a must. Security Industry Knowledge: Deep familiarity with security More ❯

Senior Application Security Engineer page is loaded Senior Application Security Engineer Apply locations London, UK time type Full time posted on Posted 2 Days Ago job requisition id JR100290 Who we are ???? We’re the people behind the global loyalty currency, Avios, and home to three ambitious, growing businesses;IAG Loyalty, British Airways Holidays andThe Wine … our CI/CD pipelines, facilitate threat modelling sessions, and review security-sensitive design decisions around authentication, cryptography, and logging. You’ll also ensure that tools such as SAST, DAST, and SCA are effective and efficient, and that testing programmes — including pen testing, vulnerability scanning, and bug bounty — are delivering value. You’ll triage vulnerabilities, support engineering … vulnerabilities, including the OWASP Top 10 Proficient in coding, scripting (e.g. Python, Bash), and automating security in CI/CD Hands-on experience with security tools like SAST, DAST, and SCA Familiar with cloud environments (especially AWS), containers, and microservices Comfortable reviewing technical designs, performing threat modelling, and advising on secure architecture Strong communicator who collaborates well with More ❯

ESO's teams are growing, and our software is in demand globally by firefighters, paramedics, hospitals and governments. To meet this demand, we are building an industry-leading cyber security team in Belfast to protect our customers and data from a variety of fast moving and constantly evolving threats. We are looking for an Application Security Engineer … across our estate, and lead remediation activities prioritization. Enhance Secure Development by contributing to threat modelling, risk assessment, evolving Secure Coding Guidelines, and maintaining core security controls like SAST and DAST deployments. Provide technical support with risk assessments on PHI, and steering improvements to our environment in line with common standards such as NIST. Support External Penetration Testing … and cloud native deployments Working with toolsets such as: vulnerability management, firewalls, SIEM, PAM, IDS/IPS, EDR/XDR, WAF Working with code security controls such as SAST/DAST/IAST/RASP You should also: Have some knowledge in securing Continuous Integration/Continuous Deployment and associated practices Understand current attack tactics, techniques and procedures along More ❯

a job you’ll want to see. This job is with the software supply chain company - securing and powering how software gets delivered everywhere. What you'll do: Embed security across the platform, from source to prod. Architect security controls across distributed, cloud-native systems. Lead threat modeling and security reviews (and get people to enjoy them … Pen-test services and infra (ethically, please). Extend security automation and monitoring with tools like CircleCI, GitHub Actions, DataDog, AWS Security Hub, etc. Harden everything from container runtimes to APIs to artifact pipelines. Write secure code, review other people’s code, and help everyone level up their secure coding game. Build tools, automate boring stuff, and occasionally … At your core, you’re a software engineer. Python for sure and a bit of TypeScript never hurt anyone. Deep application security knowledge Hands-on experience with SAST, DAST, RASP, and securing cloud (preferably AWS). Strong grasp of container security, API security, IaC, and CI/CD. You’ve done pen testing, threat modeling More ❯

RMM Service Automation Platform and has a proven track record of helping MSPs standardize and automate the setup and delivery of IT services to achieve true scalability. The Senior Application Security Engineer plays a critical role in enhancing our application security posture by conducting advanced security assessments, leading security initiatives, and collaborating with development … teams to integrate security into the software development lifecycle. The position plays a key role in identifying and mitigating security vulnerabilities to protect our applications and data. This role is based in our Edinburgh hub. What You'll Do Assist in maturing organizational processes that drive complex security efforts for internal teams and external partners. Develop and … is preferred Thorough understanding of OWASP Top 10 and Secure Development Expertise in automating security tools and integrations, including simple scripting Experience with application security tools (SAST, DAST, IAST and SCA) Strong technical knowledge of development and production release process, including CI/CD Experience with the application of threat modeling and other risk identification techniques More ❯

Up to c. £225k Comp Package | Hybrid Working - 3 Days in Office] We’re partnering with a leading pensions investment firm undergoing a major cloud-native technology transformation, embedding security into every layer of software delivery. This is a rare opportunity to join a highly technical security engineering team with full leadership backing, directly shaping secure-by-design … systems that safeguard billions in assets and over a million pension holders. If you’re passionate about automation, developer enablement, and driving security culture within engineering-led teams, this role offers real influence and impact at scale... Key Responsibilities Integrate security controls across … the full software development lifecycle - from threat modelling and design to secure coding and CI/CD pipeline enforcement Build and automate security tooling into developer workflows, including SAST, DAST, secrets management, dependency scanning and policy-as-code guardrails Create reusable infrastructure-as-code modules and templates to enable consistent security patterns across cloud-native deployments (AWS focus More ❯

Up to c. £225k Comp Package | Hybrid Working - 3 Days in Office] We’re partnering with a leading pensions investment firm undergoing a major cloud-native technology transformation, embedding security into every layer of software delivery. This is a rare opportunity to join a highly technical security engineering team with full leadership backing, directly shaping secure-by-design … systems that safeguard billions in assets and over a million pension holders. If you’re passionate about automation, developer enablement, and driving security culture within engineering-led teams, this role offers real influence and impact at scale... Key Responsibilities Integrate security controls across … the full software development lifecycle - from threat modelling and design to secure coding and CI/CD pipeline enforcement Build and automate security tooling into developer workflows, including SAST, DAST, secrets management, dependency scanning and policy-as-code guardrails Create reusable infrastructure-as-code modules and templates to enable consistent security patterns across cloud-native deployments (AWS focus More ❯

Tech Expert to join our teams and work on client projects located in Brussels. As a DevSecOps - CyberSecurity Tech Expert, your main responsibilities will include: Using and fine-tuning security tools to prevent risks during software development Guiding developers to efficiently use … security tools without slowing down their workflow Conducting threat modelling to anticipate potential security issues Performing secret scanning to detect sensitive information in code Implementing and managing SAST/DAST tools for automated security testing Ensuring cloud and container security throughout the development lifecycle Your Profile Bachelor's degree or equivalent 3-5 years of … experience in a similar position Proficiency in security and development tools such as Checkmarx, Qualys, Prisma Cloud, Hashicorp Vault, Defect Dojo, GitHub, API Security, and CI/CD pipelines Strong knowledge of application security frameworks and standards such as SAMM Solid experience in container and cloud security Language(s): English (required), French and/or More ❯

continuously evolving our recruitment processes to ensure fairness and are open to accommodating any needs you might have. If, due to a disability, you need adjustments to complete the application, please let us know by sending an email with your name, the role to which you would like to apply, and the type of support you need to complete … the application to adjustments@depop.com. For any other non-disability related questions, please reach out to our Talent Partners. The Role In 2025 we are investing in improving security capabilities to our Engineering & Data group. We are looking for a security engineer to guide our engineering practices, improve security in our software delivery lifecycle, and work … rotation for security incidents Requirements Experience with developing APIs and Frontend applications Experience architecting secure systems at scale Experience integrating security testing into the SDLC i.e. SAST, DAST, SCA Experience with vulnerability scanning and software patching at scale Experience working with at least one major cloud provider (AWS specifically is advantageous) Strong networking foundations Experience with infrastructure More ❯

Security Engineer Oliver James are partnered with a forward-thinking UK organisation that are embarking on the most radical and ambitious transformation programme in the history of its Healthcare business. In response to a changing UK health landscape, the rapid growth of the preventative wellbeing sector, and the need for bold simplification, this organisation is uniting several internal businesses … into a single, streamlined digital offering. The mission? To empower people to be the best version of themselves-with health and wellbeing at the core. As a Security Engineer , you'll be a key player in this journey-applying modern security practices across a newly developed Digital Platform that underpins the transformation. You'll work across agile engineering … DSOMM, SAMM, and Cloud Security Posture Management tools (e.g. Azure Defender, Prisma Cloud). Security Tooling Expertise: Strong hands-on experience with security scanning tools, including SAST and SCA (e.g. Snyk, Checkmarx) and DAST tools (e.g. OpenZAP, Qualys DAST). Technical Breadth: Solid understanding of networking protocols (TCP/IP, HTTP/3, AMQP, etc.), cloud network More ❯

internal businesses into a single, streamlined digital offering. The mission? To empower people to be the best version of themselves-with health and wellbeing at the core. As a Security Engineer , you'll be a key player in this journey-applying modern security practices across a newly developed Digital Platform that underpins the transformation. You'll work across … agile engineering teams to ensure security is embedded into every layer of the technology stack, from design through to deployment and monitoring. What You'll Be Doing: Security by Design: Collaborate with engineering teams to assess new features and services, identify potential vulnerabilities, and design secure solutions from the ground up. Code & Tooling Contribution: Play a hands-on … DSOMM, SAMM, and Cloud Security Posture Management tools (e.g. Azure Defender, Prisma Cloud). Security Tooling Expertise: Strong hands-on experience with security scanning tools, including SAST and SCA (e.g. Snyk, Checkmarx) and DAST tools (e.g. OpenZAP, Qualys DAST). Technical Breadth: Solid understanding of networking protocols (TCP/IP, HTTP/3, AMQP, etc.), cloud network More ❯

Rate: £625.00 p/d Location: Remote Based (Adhoc London - Travel Expensed) Start Date: ASAP The Role: In this role, you will work closely with the client's Cyber Security team to ensure the security of products being released into production environments across containers, hosts, and APIs. You will identify, remediate, and mitigate risks and vulnerabilities, integrating security … CD pipeline. Proactively identify, assess, and remediate vulnerabilities in applications and infrastructure (containers, hosts, APIs). Implement and manage static and dynamic application security testing (SAST/DAST) tools and workflows. Support secure cloud deployments within AWS, ensuring compliance with internal standards and regulations. Skills & Experience: Strong experience in a DevSecOps or security-focused DevOps … role. In-depth knowledge and hands-on experience with SAST, DAST, and API security testing. Solid understanding of AWS and security configurations. Experience in securing containerized environments. Strong knowledge of vulnerability management tools and methodologies. Experience implementing automated deployments. #J-18808-Ljbffr More ❯

Social network you want to login/join with: Lead Application Security Engineer, west london col-narrow-left Client: WeDo Location: west london, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 5 Posted: 26.06.2025 Expiry Date: 10.08.2025 col-wide Job Description: Title: Lead Application Security Engineer Location: Fully Remote … with credit – offering digital credit cards and financial services built on cloud-native architecture and driven by data. They are looking to hire a highly technical, hands-on Lead Application Security Engineer to take full ownership of the application security landscape – not from a policy or governance standpoint, but through deep, practical expertise in identifying and … vulnerabilities A proven background in credit cards, payments, or financial transaction systems Understanding of modern application architectures (APIs, microservices, cloud platforms – likely Azure) Familiarity with OWASP Top 10, SAST/DAST, and a variety of pen testing techniques A desire to build and lead a team, while remaining technical and practical day to day Right to work in More ❯

Social network you want to login/join with: Lead Application Security Engineer, south west london col-narrow-left Client: WeDo Location: south west london, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 5 Posted: 26.06.2025 Expiry Date: 10.08.2025 col-wide Job Description: Title: Lead Application Security Engineer Location … with credit – offering digital credit cards and financial services built on cloud-native architecture and driven by data. They are looking to hire a highly technical, hands-on Lead Application Security Engineer to take full ownership of the application security landscape – not from a policy or governance standpoint, but through deep, practical expertise in identifying and … vulnerabilities A proven background in credit cards, payments, or financial transaction systems Understanding of modern application architectures (APIs, microservices, cloud platforms – likely Azure) Familiarity with OWASP Top 10, SAST/DAST, and a variety of pen testing techniques A desire to build and lead a team, while remaining technical and practical day to day Right to work in More ❯

Job Title: Senior Security Engineer Manager: CISO Department: Cyber Security Division: Enterprise Information Technology Services Location: London, Hybrid Main Purpose: The MDU is undertaking an exciting digital transformation programme and to support this the Cyber Security Team is looking to appoint a Senior Security Engineer. Working closely with delivery teams covering strategic and non-strategic change … this role will provide subject matter expertise to keep the MDU, its data and, its member safe from cyber security threats. The Senior Security Engineer will be responsible for the delivery of security technologies in a range of projects and will therefore: Have a strong cyber security engineering or professional services background with experience of delivering … technical skills with experience and accreditations covering multiple security domains. Cyber security subject matter expert with relevant certifications such as CISSP, CISM, CSSP, or equivalent. Proficiency in SAST, DAST and SCA with hands on experience integrating such tools into development pipelines. Extensive experience of consulting on projects, building in security requirements and ensuring services go-live with More ❯

opportunity to join a large-scale digital transformation programme aimed at uniting multiple internal business units under a new, secure, cloud-native digital platform. Ideal for a hands-on Security Engineer who enjoys embedding security into the development lifecycle and working with modern tooling and cloud environments. The successful Security Engineer's responsibilities will include: Analysing new … and cloud network architecture (VPNs, subnets, zones) Experience with API security and integration-related platforms such as Auth0 or API Gateways Proficiency with security tools including SAST (e.g. Snyk, Checkmarx), SCA, and DAST (e.g. OpenZAP, Qualys DAST) Ability to manage secure operations of large-scale software estates, including deployment pipelines, rollback strategies, and uptime monitoring Practical experience building … Engineering, Cybersecurity Engineer, Information Security Specialist, Salesforce, Azure, OWASP CI/CD, DSOMM, SAMM, Cloud Security Posture Management, Prisma Cloud, Azure Defender, Snyk, Checkmarx, OpenZAP, Qualys, DAST, SAST, CI/CD, Infrastructure Security, Auth0, Secure APIs, Networking Protocols, DevSecOps, Secure Development, CRM Security Next Steps Please click "Apply now" and submit your up-to-date CV More ❯

Security Engineer Permanent Hybrid - 2 or 3 days p/w on-site Tunbridge Wells area FPSG have a fantastic opportunity to join a large-scale digital transformation programme aimed at uniting multiple internal business units under a new, secure, cloud-native digital platform. Ideal for a hands-on Security Engineer who enjoys embedding security into the … and cloud network architecture (VPNs, subnets, zones) Experience with API security and integration-related platforms such as Auth0 or API Gateways Proficiency with security tools including SAST (e.g. Snyk, Checkmarx), SCA, and DAST (e.g. OpenZAP, Qualys DAST) Ability to manage secure operations of large-scale software estates, including deployment pipelines, rollback strategies, and uptime monitoring Practical experience building … Engineering, Cybersecurity Engineer, Information Security Specialist, Salesforce, Azure, OWASP CI/CD, DSOMM, SAMM, Cloud Security Posture Management, Prisma Cloud, Azure Defender, Snyk, Checkmarx, OpenZAP, Qualys, DAST, SAST, CI/CD, Infrastructure Security, Auth0, Secure APIs, Networking Protocols, DevSecOps, Secure Development, CRM Security Next Steps Please click "Apply now" and submit your up-to-date CV More ❯

Security Engineer/Cloud/DSOMM/OWASP/Salesforce Permanent Hybrid - 2 or 3 days p/w on-site Leeds FPSG have a fantastic opportunity to join a large-scale digital transformation programme aimed at uniting multiple internal business units under a new, secure, cloud digital platform. Ideal for a hands-on Security Engineer who enjoys … and cloud network architecture (VPNs, subnets, zones) Experience with API security and integration-related platforms such as Auth0 or API Gateways Proficiency with security tools including SAST (e.g. Snyk, Checkmarx), SCA, and DAST (e.g. OpenZAP, Qualys DAST) Ability to manage secure operations of large-scale software estates, including deployment pipelines, rollback strategies, and uptime monitoring Practical experience building … Engineering, Cybersecurity Engineer, Information Security Specialist, Salesforce, Azure, OWASP CI/CD, DSOMM, SAMM, Cloud Security Posture Management, Prisma Cloud, Azure Defender, Snyk, Checkmarx, OpenZAP, Qualys, DAST, SAST, CI/CD, Infrastructure Security, Auth0, Secure APIs, Networking Protocols, DevSecOps, Secure Development, CRM Security Next Steps Please click "Apply now" and submit your up-to-date CV More ❯

S-RM is a global intelligence and cyber security consultancy. Since 2005, we've helped some of the most sophisticated clients in the world solve some of their toughest challenges. We've been able to do this because of our outstanding people. We're committed to developing bright, curious, driven individuals who want to think critically, solve complex problems … WORKING IN INFOSEC AT S-RM This is an opportunity to join a company where infosec is embedded into the culture. Our client services include a world-class cyber security team which means we think critically about our own security practices at all levels. We see information security as an asset not a cost centre, and we … Engineer, you'll play a lead technical role in maintaining and evolving S-RM's information security. Key Responsibilities: Improve and implement development pipeline security features, such as SAST and DAST Manage, monitor and improve compliance, vulnerability management, threat intelligence, detection/prevention tools across a multi-cloud environment. Provide expert security design and engineering guidance on complex More ❯

Security Engineer/Cloud/DSOMM/OWASP/Salesforce Permanent Hybrid – 2 or 3 days p/w on-site Bournemouth FPSG have a fantastic opportunity to join a large-scale digital transformation programme aimed at uniting multiple internal business units under a new, secure, cloud-native digital platform. Ideal for a hands-on Security Engineer who … and cloud network architecture (VPNs, subnets, zones) Experience with API security and integration-related platforms such as Auth0 or API Gateways Proficiency with security tools including SAST (e.g. Snyk, Checkmarx), SCA, and DAST (e.g. OpenZAP, Qualys DAST) Ability to manage secure operations of large-scale software estates, including deployment pipelines, rollback strategies, and uptime monitoring Practical experience building … Engineering, Cybersecurity Engineer, Information Security Specialist, Salesforce, Azure, OWASP CI/CD, DSOMM, SAMM, Cloud Security Posture Management, Prisma Cloud, Azure Defender, Snyk, Checkmarx, OpenZAP, Qualys, DAST, SAST, CI/CD, Infrastructure Security, Auth0, Secure APIs, Networking Protocols, DevSecOps, Secure Development, CRM Security Next Steps Please click "Apply now" and submit your up-to-date CV More ❯

My growing defence client is seeking a Security Engineer. You'll join a leading organisation that develops cutting edge products and technology. Role Purpose You'll own the security posture across our client's product portfolio-encompassing software, hardware, and services-by embedding robust security controls throughout the development lifecycle, identifying and mitigating risks, and ensuring compliance … execute penetration tests and automated vulnerability scans; validate fixes. Oversee third-party security assessments as required. Continuous Improvement Drive security tooling and automation (CI/CD integration, SAST/DAST). Stay ahead of emerging threats and security technologies; evangelise best practices across teams. Qualifications & Experience Proven experience (5+ years) in product or application security …/5/31000, NIST 800-series) and Defence Standards (JSPs, Def Stan 05-138/139). Hands-on experience with security testing tools and techniques (SAST, DAST, penetration testing). Eligible for UK SC clearance; right to work in the UK. Why Join? You'll Gain exposure to cutting-edge defence technology and intelligence insights. More ❯