51 to 75 of 114 Remote OWASP Jobs

including AWS Lambda, Spring Boot, NodeJS, Python FastAPI, Oracle, PostgreSQL and MongoDB. Build solutions as part of a DevSecOps and Agile ecosystem supported by tooling including Atlassian, Jenkins, GitLab, OWASP and AWS componentry. Ensure your solution works in a reliable and resilient way using Site Reliability Engineering methods to increase availability while reducing costs and callouts. Help the client and More ❯

including AWS Lambda, Spring Boot, NodeJS, Python FastAPI, Oracle, PostgreSQL and MongoDB. Build solutions as part of a DevSecOps and Agile ecosystem supported by tooling including Atlassian, Jenkins, GitLab, OWASP and AWS componentry. Ensure your solution works in a reliable and resilient way using Site Reliability Engineering methods to increase availability while reducing costs and callouts. Help the client and More ❯

including AWS Lambda, Spring Boot, NodeJS, Python FastAPI, Oracle, PostgreSQL and MongoDB. Build solutions as part of a DevSecOps and Agile ecosystem supported by tooling including Atlassian, Jenkins, GitLab, OWASP and AWS componentry. Ensure your solution works in a reliable and resilient way using Site Reliability Engineering methods to increase availability while reducing costs and callouts. Help the client and More ❯

including AWS Lambda, Spring Boot, NodeJS, Python FastAPI, Oracle, PostgreSQL and MongoDB. Build solutions as part of a DevSecOps and Agile ecosystem supported by tooling including Atlassian, Jenkins, GitLab, OWASP and AWS componentry. Ensure your solution works in a reliable and resilient way using Site Reliability Engineering methods to increase availability while reducing costs and callouts. Help the client and More ❯

Security Engineer/Cloud/DSOMM/OWASP/Salesforce Permanent Hybrid – 2 or 3 days p/w on-site Bournemouth FPSG have a fantastic opportunity to join a large-scale digital transformation programme aimed at uniting multiple internal business units under a new, secure, cloud-native digital platform. Ideal for a hands-on Security Engineer who enjoys embedding … maturity frameworks such as DSOMM, including hands-on delivery (code, configuration, documentation, tooling) Designing, building, operate, monitoring secure solutions across complex platforms Ensuring internal and industry security standards (e.g. OWASP CI/CD, SAMM) are adhered to across systems Managing and improving cloud security posture (Azure Defender, Prisma Cloud etc) Implementing and optimising observability platforms for holistic system monitoring Supporting … software estates, including deployment pipelines, rollback strategies, and uptime monitoring Practical experience building automated security test suites into CI/CD workflows Familiarity with security frameworks such as DSOMM, OWASP, and SAMM Suitability: This role is a technical hands-on security engineering role, it is NOT GRC focused. It would be well-suited to experienced Security Engineers or Developers with More ❯

efforts for security breaches. Provide security guidance and training to teams across the organization. Key Skills & Experience: Strong knowledge of security frameworks (ISO 27001, NIST 800-30/53, OWASP) . Experience with risk management methodologies and compliance with MOD and HMG security standards (JSP, Def Stan 05-138/139). Proficiency in security threat modeling and risk assessments. More ❯

efforts for security breaches. Provide security guidance and training to teams across the organization. Key Skills & Experience: Strong knowledge of security frameworks (ISO 27001, NIST 800-30/53, OWASP) . Experience with risk management methodologies and compliance with MOD and HMG security standards (JSP, Def Stan 05-138/139). Proficiency in security threat modeling and risk assessments. More ❯

to develop policy-as-code and security guardrails Confident communicator who can influence engineering teams and champion security culture across technical stakeholders Familiarity with security frameworks such as NIST, OWASP ASVS, and CIS Benchmarks (Preferred) Experience driving security maturity within regulated industries such as financial services (Preferred) Certifications such as AWS Security Specialty, CSSLP, or GIAC DevSecOps ... More ❯

to develop policy-as-code and security guardrails Confident communicator who can influence engineering teams and champion security culture across technical stakeholders Familiarity with security frameworks such as NIST, OWASP ASVS, and CIS Benchmarks (Preferred) Experience driving security maturity within regulated industries such as financial services (Preferred) Certifications such as AWS Security Specialty, CSSLP, or GIAC DevSecOps ... More ❯

and an understanding of infrastructure-as-code, networking, and API design. Salesforce Exposure: Familiarity with complex Salesforce environments and their associated security considerations. Modern Security Frameworks: Deep familiarity with OWASP CI/CD, DSOMM, SAMM, and Cloud Security Posture Management tools (e.g. Azure Defender, Prisma Cloud). Security Tooling Expertise: Strong hands-on experience with security scanning tools, including SAST More ❯

technologies, including firewalls, intrusion detection/prevention systems (IDS/IPS), SIEM, antivirus solutions, encryption mechanisms, and vulnerability assessment tools. Hands-on experience in security tools (e.g., SAST, DAST, OWASP ZAP). Relevant security certifications, such as Security+, IAT II/III level, or equivalent. Strong capability in risk assessment, vulnerability management, and data informed decision-making. Solid understanding of More ❯

Platform (GCP) Security & Compliance Cloud and a pplication security: Cloud posture management tools (e.g. Azure Dender, GCP SCCE), WAFs (e.g. Azure WAF, Cloud Armor AWS WAF), and protection against OWASP Top 10 and emerging threats. Network & infrastructure security: Network security principles (e.g. segmentation, monitoring, intrusion detection/prevention). Any experience in Zero Trust architecture in cloud environments would be More ❯

junior team members and support collaborative delivery of projects. Occasionally support the creation of marketing materials such as research papers and articles. Skills/Must have: Strong knowledge of OWASP methodologies and offensive testing across black/grey/white-box approaches. Proficiency in tools like Burp Suite, Kali, Nmap, Nessus, Qualys, Metasploit. Familiarity with cloud platform security testing (AWS More ❯

Focus on ensuring different modules/components interact correctly. Test APIs, databases, and service flows. Security Testing & Penetration Testing (Ethical Hacking) Simulate attacks to find vulnerabilities. Tools: Burp Suite , OWASP ZAP , Metasploit . CEH , OSCP , CISSP certifications an advantage Vulnerability Testing Scan systems for known vulnerabilities. Collaborate with SecOps and DevSecOps teams. Security QA/Secure Code Testing Test software … from a secure coding perspective. Ensure compliance with secure development standards (OWASP Top 10, etc.). Test Management Oversee testing across multiple teams and or products. Handle stakeholder communication, budget, vendor selection, and process compliance. Test Architectecture Design testing frameworks, strategies, and toolchains. Advise on choosing tools (e.g., UFT vs Selenium) and scaling automation. API Testing Validate REST/SOAP More ❯

experience with Government Digital Standards (GDS) Demonstrable experience in Test Automation using Playwright with JavaScript Expertise in Browserstack for use in compatibility testing Previous experience in security testing with OWASP ZAP Performance testing knowledge (JMeter preferred) Experience in CI/CD Integration for Test Automation Azure DevOps proficiency for Test Management and defect tracking Working experience of BDD Framework (Cucumber More ❯

internal and external audits where needed. What we're looking for ? Experience in software engineering, with a strong security mindset Deep understanding of web and API vulnerabilities, including the OWASP Top 10 Proficient in coding, scripting (e.g. Python, Bash), and automating security in CI/CD Hands-on experience with security tools like SAST, DAST, and SCA Familiar with cloud More ❯

contribute to Red Team and social engineering operations. Support junior team members and engage in knowledge sharing. Key Skills & Experience: 3-5 years' penetration testing experience. Strong understanding of OWASP, SSL/TLS, SSH, and HTTP. Comfortable conducting black box, grey box, and white box testing. Familiar with tools like Kali, Burp Suite, Metasploit, Nmap, Nessus, and Qualys. Knowledge of More ❯

contribute to Red Team and social engineering operations. Support junior team members and engage in knowledge sharing. Key Skills & Experience: 3-5 years' penetration testing experience. Strong understanding of OWASP, SSL/TLS, SSH, and HTTP. Comfortable conducting black box, grey box, and white box testing. Familiar with tools like Kali, Burp Suite, Metasploit, Nmap, Nessus, and Qualys. Knowledge of More ❯

Stack Overflow). Flexible working hours, willing to participate in a 24x7 support organization. Positive service-oriented personality. Proven technology skills, including proficiency with Mac, Windows, Linux, knowledge of OWASP top 10, web and mobile application security. Nice to haves: Your own bug bounty profile. Certificates such as CEH, CPT, CEPT, CPEN, OSWE, EWPT, or EWPTX are a plus. What More ❯

infrastructure, cloud, and third parties. Strong grasp of insurance data models, digital workflows, and sector-specific regulatory requirements. Excellent knowledge of security frameworks and methodologies (e.g. NIST, ISO 27001, OWASP). Proficiency in security-by-design, cloud security (Azure/AWS), zero trust, and secure API design. Strong interpersonal skills with the ability to communicate complex technical matters to senior More ❯

infrastructure, cloud, and third parties. Strong grasp of insurance data models, digital workflows, and sector-specific regulatory requirements. Excellent knowledge of security frameworks and methodologies (e.g. NIST, ISO 27001, OWASP). Proficiency in security-by-design, cloud security (Azure/AWS), zero trust, and secure API design. Strong interpersonal skills with the ability to communicate complex technical matters to senior More ❯

looking for Cloud engineering experience with security tooling and cloud workload protection Skilled in DevOps, AWS, Infrastructure as Code (Terraform), and scripting (Python, Bash) Knowledge of secure engineering standards (OWASP, CIS, NIST) and Agile/DevOps practices Experienced with CSPM, CNAPP, security incident response, and SIEM tools Ability to evaluate and recommend new security technologies Clear communicator focused on enhancing More ❯

experience with AWS (or similar cloud platforms) and Cloudflare. Infrastructure as Code: Proficiency with Terraform or similar IaC tools. Vulnerability Knowledge: Solid understanding of common vulnerability classes and the OWASP Top 10. Coding & Scripting: Proficient in reading code (e.g., Python, Scala) and using Git for version control of code and configuration changes. Familiarity with iOS or Android security. Experience of More ❯

hands-on penetration testing experience across network, web, wireless, and cloud environments. Expert with core tools: Burp Suite, Metasploit, Cobalt Strike, Nmap , and custom scripting. Deep understanding of vulnerabilities (OWASP Top 10, MITRE ATT&CK) and exploitation methods. Experience delivering reports aligned to PTES, OWASP, NIST, or OSSTMM standards. Exceptional communicator who can translate complex technical issues for diverse audiences. More ❯

senior role. The Role: Develop and maintain web apps using C#, .NET, Python and Javascript Collaborate with designers to ensure technical and visual alignment Write secure code compliant with OWASP standards The Person: Degree in Computer Science or a related field (preferred) Experience with C#,.NET, JavaScript, Python Based Basildon, happy working hybrid British Citizen Reference Number: BBBH19584 Keywords : Full More ❯