1 to 25 of 77 OWASP Jobs

with DevSecOps in threat modelling, vulnerability testing, and incident management. Experience in security tolling and techniques e.g. Protectively Marked Systems, Splunk, GuardDuty, Nessus, Snort, OWASP, SonarQube, Snyk, SAST, DASTExperience of setup and configuration in a cloud environment. Experience with Infrastructure as Code and tooling (e.g. Terraform, CloudFormation, ARM) Experience working more »

appropriate security tools including automated cloud-based tooling Up-to-date understanding of network security (e.g. OSI, TCP/IP), web application security (e.g. OWASP) and cryptographic controls (e.g. PKI, TLS) Up-to-date understanding of identity management and authentication/authorisation products and patterns Evidence of self-development – we more »

to implement best practices. Debugging within Visual Studio (or an IDE of your preference) Experience in Data Security within the application and familiarity with OWASP top 10 threats. (desirable) Experience with CI/CD pipelines and cloud technologies such as Azure (desirable) Experience working in an Agile environment (desirable) Strong more »

experience implementing threat detection capabilities in security tooling such as SIEM, EDR, XDR, or SOAR. understanding of security frameworks such as Mitre ATT&CK, OWASP, NIST, and/or CIS. low-level understanding of networking principles, operating systems, and software design practices. with commonly adopted cloud technologies across different vendors more »

different format · Creating database schemas · Implementing automated testing platforms and unit tests · Proficient understanding of code versioning tools, such as Git · Some understanding of OWASP security principles would be advantageous. · Understanding of “session management” in a distributed server environment more »

an Agile Software environment Familiarity with some or all of - Network management and optimisation, Postgresql Database management and optimisation, common security frameworks CIS,NIST,OWASP Familiarity Public Cloud Services like AWS,GCP, Azure Familiarity with co-located physical infrastructure (currently hybrid) Understanding of Continuous Integration (CI) and Continuous Deployment (CD more »

Can you deliver… Here's what we're looking for from our Golang/PHP expert… · 2+ years of Golang experience · Cloud Infrastructure – AWS · OWASP and/or Similar web Security · Rest API’s, GraphQL, gRPC · Building microservices and associated APIs · Microservice/Event Driven Design - An understanding of the more »

with RESTful APIs and integrating backend services In-depth experience with security, form validation, XSS prevention, database security, session management, input validation and other OWASP guidelines Proven experience in developing scalable web applications using Laravel and other web technologies Strong problem-solving skills and the ability to work both independently … Laravel Livewire/Inertia DevOps Knowledge of Cloud technology Experience with security, form validation, XSS prevention, database security, session management, input validation and other OWASP guidelines These are brand-new roles, and you will be able to be part of something special. As the Senior, you will be given so more »

deadline and personal time management skills Excellent communication skills Advantage to have awareness of: C# MVC Razor .NET Core and .NET Framework Azure services OWASP Chromatic Storybook Accessibility Node.js Ability to rollout solutions that are well tested and meet the needs of the end users. Can work with other members more »

with an ability to see both the big picture and the details Capacity to handle a big existing code base Knowledge of Web security & OWASP 10 risks Knowledge of Messaging Architecture and Data Architecture practice is a plus more »

skilled at influencing and negotiating. Certifications such as CISSP, CEH, OSCP, or GSEC are preferrable Knowledge of security principles, practices, and frameworks, such as OWASP, NIST, and ISO Awareness of security tools and technologies, such as SAST, DAST, IAST, SCA, WAF, IDS, IPS Experience in conducting threat modelling and risk more »

threat modelling Experience in red teaming and penetration testing Experience implementing SDLC process, technology, and automation in a DevOps environment; ideally making use of OWASP best practices Experience within agile delivery frameworks Familiarity with of common application and infrastructure security vulnerabilities and mitigations? Please apply directly and I will be more »

M.Inst.ISP, CISA by a recognised professional body Technical certifications by a recognised professional body in network or systems engineering Fundamental Cloud Concepts for AWS. OWASP Top 10: API Security Playbook. Ways of Working This role is based out of our London Bridge office. Our hybrid model way of working offers more »

Dev SecOps engineering position. Strong experience securing cloud platforms, primarily AWS and Mongo Atlas. Exposure to Audits/Compliance/Security frameworks (ISO27001, SOC2, OWASP, SAMM, DSOMM). Knowledge of embedded security (IDE plugins, SAST, DAST, SCA). Experience performing vulnerability scanning/penetration testing. Threat detection and prevention (IDS more »

with the development team. Preferred qualifications, capabilities and skills Knowledge of penetration testing techniques Knowledge of tools used in the security industry (e.g. Burp, OWASP ZAP) Python, Ruby, Go or a similar language that can help you aid in the implementation of automation tooling Experience with IT risk management operating more »

DevSecOps Proven experience of application security and threat modelling Experience implementing SDLC process, technology, and automation in a DevOps environment; ideally making use of OWASP best practice Experience within agile delivery frameworks Experience with large-scale web applications and backend services, including API design, access management, authorization, authentication, data protection more »

with RESTful APIs and integrating backend services In-depth experience with security, form validation, XSS prevention, database security, session management, input validation and other OWASP guidelines Proven experience in developing scalable web applications using Laravel and other web technologies Strong problem-solving skills and the ability to work both independently more »

Application security: including but not limited to: authentication, identity and access management, auditing, use of cryptography, data security, privacy enhancing technologies, web services security, OWASP, threat & vulnerability management and secure code development methodologies. • Infrastructure security: including but not limited to: network security, host security, database security, device security, VPNs & SSLs more »

with modern software engineering methodologies and the digital product lifecycle • DevSecOps best tools and practices • Regulatory and industry standards like PCI DSS, ISO 27001, OWASP, ISO 9000 range Technology • Deep knowledge of Microsoft Azure • Kubernetes and containerisation patterns • SQL Server, Redis, Cosmos DB or other Document DBs • Service Bus and more »

Computer Science/Technology with IT audit or compliance experience In depth knowledge of information security, Technology Compliance management industry frameworks and standards: NIST, OWASP, SANS, ISO-27001/2, SANS, and Cobit 3+ years working experience with enterprise technology compliance management programs, or Auditing experience, controls testing, conducting ITGC more »

and programming languages, including: How to test for/exploit them, Real world mitigations that can be applied Familiarity with vulnerability classification frameworks (e.g. OWASP Top 10, CVSS, MITRE CVE) Ability to threat model systems/applications/platforms to assess design and find flaws that can be exploited What more »

skills. Experience with SQL database and database optimisation; NoSQL knowledge will be required for the job, and is a desired existing skill. Understanding of OWASP Top 10 and Secure Software Development LifeCycle. Prior experience with one of semgrep, codeql, valgrind, yara or other CI/CD tools is desirable. Prior more »

Veracode Experience working with CI/CD pipelines in environments such as Azure DevOps Experience security IaaS architectures Have a good working knowledge of OWASP Top 10 Security risks Preferred certificate in Certified Information Systems Security Professional (CISSP) or Certified Secure Software Lifecycle Professional (CSSLP); bonus certificate in Certified Ethical more »

Science or related fields. 3 plus years of progressive experience in computing and information security. knowledge of industry best practices on security hardening (CIS), OWASP, network security, security risk & management frameworks, national cybersecurity standards, ISO27001, etc. player with excellent communication skills, (oral, written, presentation), interpersonal and consultative skills. Able to more »

compliance, risk management and technical assurance practices. Should have experience of using common information security management frameworks, such as NIST, PCI, GDPR, ISO Series, OWASP the IT Infrastructure Library (ITIL), the ISF Standards of Good Practice (SoGP) and ISACA’s Control Objectives for Information and related Technology (COBIT) frameworks. Must more »