creating and implementing secure solutions to ensure the safety of our platforms? Do you enjoy responding to real-time threats? About our Team The Security Assurance team is dedicated to safeguarding Elsevier's customer-facing products, supporting infrastructure, and enterprise technology stack from security threats. We achieve this … by proactively integrating security best practices throughout the entire engineering and development lifecycle. Its functions encompass a range of activities such as conducting design and implementation assessments, performing application security reviews, penetration testing, researching security issues, developing security tools and automation, and engaging in offensive … security tactics. About the Role The core responsibility entails safeguarding the Elsevier brand through proactive security application testing, validating security controls, and simulating tactics employed by malicious actors seeking to compromise or breach security measures deployed across our entire technology infrastructure Responsibilities Performing comprehensive securitymore »
East London, London, United Kingdom Hybrid / WFH Options
MECS Communications Ltd
DevSecOps Engineer Engineering, Software Development, DevOps, DevSecOps, Security Hybrid working - 1 day London, 4 day's work from home @mecscomms is recruiting for a DevSecOps Engineer, on behalf a major telecommunications service provider. The role is crucial in the operational efficiency & security of software development & deployment processes, through … configure, deploy & roll out Splunk software across the platforms & infrastructure managed by the Engineering & Run & Operate teams. The DevSecOps Engineer will also oversee logging & Security Information & Event Management (SIEM) aspects of infrastructure, collaborating with application development teams to resolve issues & enhance security measures within the CI/CD … If you have a background encompassing any of the following; Multi cloud environments, AWS, Azure, managing Splunk, defining data streams, indices, ingests & dashboards, adding security tooling to CI/CD pipelines, SAST, code security, SonarCloud, AWS Security Hub, Source code, Github, Github Actions, IaC tooling, Automation, AWS more »
Penetration Tester to add to their heavily experienced team of specialists. You will be given the opportunity to deliver on a wide variety of testing engagements with business across multiple industries. You will perform and support the main activities of my client's securitytesting services. You … will individually provide and perform securitytesting, analysis, documentation, findings and remediation support to clients. You will also play a key role in supporting the wider testing team to ensure delivery of assigned tasks. *REMOTE WORKING* *Client Site Travel Required* *£45,000 - £60,000 + benefits – DOE … Penetration Tester – Responsibilities: Delivery of high quality penetration testing, application securitytesting and red-team engagements Working on client site occasionally to deliver Internal Infrastructure, Wifi and Physical Testing engagements Assisting in proposal writing and scoping Customer management and debriefing Supporting the wider team in the more »
our software corresponds to the specifications and highest quality standards of software development and deployment. Whilst the primary focus is on automated and manual testing of our Canvas, React, Node.js and PostgreSQL/Mongo stack, you also could get involved in testing of infrastructure as code deployments and … tests to ensure developer code is fit for purpose and any bugs or issues are removed before go-live Carry out different types of testing: functional testing (smoke, sanity, regression and usability), acceptance testing, integration testing, load testing, securitytesting, database testing, and non-functional testing (including for performance and security) Review new software requirements and prepare and update testing scenarios Liaise with the team through daily stand-ups to ensure quality throughout the software development lifecycle Adapt testing techniques and coverage to a rapidly evolving product more »
Solihull, West Midlands, United Kingdom Hybrid / WFH Options
Matchtech
Title: Device Security Evaluation Analyst (Penetration Tester) Location: Solihull (minimum 2 days on site, 3 days from home) Salary: Up to £80,000, depending on experience Clearance: You will be required to undertake DV clearance after joining the business due to the nature of the work. Please only apply … Unfortunately, any non-British citizens can not be considered for this position. Our client, a leading technology and telecommunications company, is seeking a Device Security Evaluation Analyst to join their team as they grow. As a Device Security Evaluation Analyst, you will play a crucial role in performing … securitytesting and analysis on the hardware and software components that make up modern IT and telecoms networks (5G). In this role, you will work alongside a small team of Security Evaluation Analysts, tackling some of the most interesting cyber problems with a tangible impact on more »
Role: WAF Security Engineer Location: Fully Remote Inside IR35 6 month initial Looking for experience with Akamai - WAF and DEVSECOPS. Our Financial Sector client is looking for an experienced Security Engineer who has experience working on projects that involve Web Application Firewall and Akamai. This contract offers remote … role will play a critical role in enhancing our Web Application Firewall (WAF) across multiple solutions and applications and will be pivotal in crafting, testing, and implementing advanced WAF solutions. This role involves a strong focus on developing robust security measures against web-based attacks, contributing significantly to … the security posture of our organization and achieving audits. Key Responsibilities Develop and refine complex custom WAF rules and features, ensuring mitigation of Minimum Viable Product (MVP) and security posture gaps. Coding expertise to create effective testing mechanisms for baseline and custom WAF rules, integrating these tests more »
their specialised field of test automation Fundamental Tasks Write test automation code, including maintaining and implementing test frameworks. Create test strategies, plans and other testing documents for changes to ensure appropriate test coverage, maximise defect detection prior to release and confirm customer requirements and expectations are met. Lead, co … into test reports, during and on completion of testing. Essentials This role will require an individual with proven test pedigree, with experience in: Manual testing (specification & execution) Automation frameworks (implementation/assisted implementation of) Automation testing Technical ability Able to read code and write test code in.Net and … TS/JS Cypress (UI testing) SQL (Test data) Postman (API, possible e2e and performance testing) .Net Nunit/XUnit/Web Application Factory Typescript Angular BDD/TDD CI/CD DevOps Git Visual Studio Agile (worked within scrum/kanban team) Desirables It will be a more »
Hemel Hempstead, England, United Kingdom Hybrid / WFH Options
BSI
Job Title: Application Security Test Engineer Location: Hemel Hempstead UK/Hybrid BSI have a fantastic career opportunity for an individual looking to develop a rewarding career within the cyber security regulatory industry. Our testing teams are responsible for testing a wide range of products to … ensure they meet stringent security standards and certification requirements. You will have the opportunity to test a wide range of products from our global clients, including big tech. Working within the regulatory landscape you will have the opportunity to keep abreast of the latest regulatory requirements, develop your expertise … and research new testing techniques to further expand our testing capabilities. As our Application Security Test Engineer, you be responsible for testing client mobile and web software applications in accordance to OWASP (ASVS/MASVS) frameworks. To be successful in this role you’ll need to more »
Swindon, England, United Kingdom Hybrid / WFH Options
Maclean Moore
We are partnered with a reputable global consultancy that are recruiting Security Consultants to work on a very exciting LONG-TERM CONTRACT within the financial service sector. Role: Senior Security Consultant Rate: Up to £500 per day (inside IR35) Location: London/Swindon – Hybrid (2 days onsite per … week) Duration: 6 months (initially – view to extend) Vacancies: 3 The Role: As a Security Consultant you will be accountable for ensuring that services and change initiatives in the business areas you are aligned to are delivered in a secure and compliant manner. You’ll be working in a … matrix manner with our business, change and delivery teams, supporting everything from small technology changes to major transformation programmes, driving implementation of our Security and Resilience strategies and policies in a positive and pragmatic manner which enables our colleagues to deliver their business objectives. Key responsibilities: security risk more »
We are partnered with a reputable global consultancy that are recruiting Security Consultants to work on a very exciting LONG-TERM CONTRACT within the financial service sector. Role: Senior Security Consultant Rate: Up to £500 per day (inside IR35) Location: South West UK Hybrid (2 days onsite per … week) Duration: 6 months (initially view to extend) Vacancies: 3 The Role: As a Security Consultant you will be accountable for ensuring that services and change initiatives in the business areas you are aligned to are delivered in a secure and compliant manner. Youll be working in a matrix … manner with our business, change and delivery teams, supporting everything from small technology changes to major transformation programmes, driving implementation of our Security and Resilience strategies and policies in a positive and pragmatic manner which enables our colleagues to deliver their business objectives. Key responsibilities: Conducting security risk more »
Manchester, North West, United Kingdom Hybrid / WFH Options
Erin Associates
Security Development Analyst Fully Remote - £35-45k Join a successful organisation as a Security Development Analyst. You'll review code, conduct security tests, and collaborate with key stakeholders within Software development. Candidates must be able to review code written in Java & C#. Key responsibilities for this … IT Security role Code analysis and application security reviews. Dynamic Application SecurityTesting (DAST) Identifying and addressing security vulnerabilities Working with stakeholders to enhance processes. Core skills & experience for this Security Analyst role: Security review methodologies: SAST, DAST, SBOM, SCA Implementing security tooling in CI/CD pipelines Threat modeling Code review (Java or C#) Familiarity with security frameworks like PCI, ISO 27001, Cyber Essentials This company offers structured training, career development opportunities, and competitive compensation including incentives. For more details, call 0161 438 1177 or follow us on Twitter more »
role will play a critical role in enhancing our Web Application Firewall (WAF) across multiple solutions and applications and will be pivotal in crafting, testing, and implementing advanced WAF solutions. This role involves a strong focus on developing robust security measures against web-based attacks, contributing significantly to … the security posture of organization. Experience : 8+ years Key Responsibilities: Develop and refine complex custom WAF rules and features, ensuring mitigation of Minimum Viable Product (MVP) and security posture gaps. Coding expertise to create effective testing mechanisms for baseline and custom WAF rules, integrating these tests seamlessly … into automation pipelines. Offer subject matter expert (SME) support in various securitytesting areas, including WAF Proofs of Concept (PoCs) Provide specialized WAF-focused advice on web and API attack methodologies, evasions, and mitigation techniques, leveraging your ethical hacking background. Contribute to DevSecOps/DevOps with securitymore »
Group Technical Assurance Services is the home of high-end technical excellence in cybersecurity assessment. We employ the world’s sharpest minds to demonstrate security weaknesses to clients before a real attacker can take advantage of them. Through our ‘attacker’s eye view’ we provide unparalleled advice to help … we have been successful in demonstrating CHECK work performed remotely over the last year or so. The role responsibilities includes providing structured programmes of securitytesting, consultancy and research combined with the delivery of informative reports detailing engagement activities and their results with articulation of risk and remediation … NCSC CHECK scheme. Performing technical engagements in-line with NCSC CHECK expectations. Delivering high quality technical reports to clients. Developing self-skills on internal security projects. Conducting focused research when not engaged on client billable projects. Responsible for adhering to all internal policy and procedures in relation to securitymore »
Security Engineer - DevSecOps Location:West London (Hybrid)Salary: 90-110kWhat will you be doing?Your role will work within the DevSecOps areas of Vulnerability Management, Product & Platform Security Engineering.You will be expected to work closely with the Engineering team in helping our developers write secure applications, and … our Platform Engineering Team to embed security into DevOps practices.You will need to have a security mindset - an understanding of system vulnerabilities and how software can be built to fail; ability to think like a bad actor.Secure the cloud and Kubernetes infrastructure while mitigating security and operational … risks and aligning to relevant compliance frameworks.Embed security best practices throughout the Software Development Lifecycle.Support the development of security champion and threat modeling programs.Develop and integrate custom securitytesting into our delivery process with our QA team.Create and deliver security training and awareness programs across more »
Leeds, Horsforth, West Yorkshire, United Kingdom Hybrid / WFH Options
Headway Recruitment
Information Security Consultant – NOT REMOTE We are supporting our client, a global organisation specialising in Professional Services to the natural resources, infrastructure, and property markets worldwide, who due to continued growth of the business and client base are expanding their Information Security Team based in Leeds. Seeking an … experienced Information Security Professional based in Leeds with expertise in Microsoft O365 Security Solutions. The role involves providing guidance on IT security, developing, and enhancing policies, and actively supporting an enterprise with 8300+ staff and 100+ sites globally. The ideal candidate should have a minimum of three … years of hands-on experience in security/infrastructure within an enterprise environment. Requirements: Proficiency in enterprise information security standards, including Cyber Essentials, ISO 27001, 27002, Data Protection Act, and GDPR. In-depth knowledge of the Microsoft O365 environment, threat intelligence analysis, Security Incident Response processes, disaster more »
consultancy well recognised within the industry, seeking a CHECK Team Leader. As a pivotal figure, you will support the growth and refinement of their securitytesting initiatives, you will individually provide and perform securitytesting, analysis, documentation, findings and remediation support to clients. You will also … play a key role in supporting the wider testing team to ensure delivery of assigned tasks.You will not only work on CHECK work but also LOTS of opportunity to support on Red Teaming/CBEST/STAR engagements. *REMOTE WORKING* *Average 3 days p/m Site Travel Required … PACKAGE*Essnetial: CCT-Inf/CCT-App/CSTL-Inf/CSTL-App CTL Penetration Tester - Responsibilities:Lead and oversee a range of penetration testing engagements including web applications, infrastructure, APIs, wireless networks, cloud platforms, and mobile applications.Opportunity to work on Red Team initiatives, orchestrating comprehensive assessments to emulate more »
well recognised within the industry, seeking a CHECK Team Leader . As a pivotal figure, you will support the growth and refinement of their securitytesting initiatives, you will individually provide and perform securitytesting, analysis, documentation, findings and remediation support to clients. You will also … play a key role in supporting the wider testing team to ensure delivery of assigned tasks. You will not only work on CHECK work but also LOTS of opportunity to support on Red Teaming/CBEST/STAR engagements. *REMOTE WORKING* *Average 3 days p/m Site Travel … PACKAGE* Essential : CCT-Inf/CCT-App/CSTL-Inf/CSTL-App CTL Penetration Tester – Responsibilities: Lead and oversee a range of penetration testing engagements including web applications, infrastructure, APIs, wireless networks, cloud platforms, and mobile applications. Opportunity to work on Red Team initiatives, orchestrating comprehensive assessments to more »
Role- Senior Security Tester (Application Security) Location- Across UK Nature- Hybrid Responsible for enabling the delivery of security test engineering at project and programme level, including assurance of third-party testing where required. Ensuring best practice to embed automated securitytesting as early as … and 'automation by default'. Enabling the use and reuse of a broad range of tools, including open source and cloud based. Advising on testing practices to support and work alongside central cyber services, working as part of a multi-disciplinary team. GCS is acting as an Employment Business more »
About The Team The application security team at Miro is responsible for ensuring that security is embedded at every stage of the software development lifecycle, from initial design reviews through to security testing. In addition, this team is responsible for or involved with initiatives like security awareness, security champions, vulnerability management and management of our bug bounty program, all of which contribute to maintaining the high levels of security that we aim to achieve here at Miro. About The Role We are looking for a Senior Security Engineer to join the Miro … application security team. This role will be involved in maturing our security tooling in CI/CD pipelines, assisting with our vulnerability management program as well as playing a key part in our security champions program. What You’ll Do Take our security tooling in our more »
Role Overview: As a Security Engineer, you’ll play a crucial role in identifying vulnerabilities, enhancing security measures, and ensuring the safety of our clients’ digital environments. Your responsibilities will span a wide range of tasks, from vulnerability scanning to technical content creation. Responsibilities: Vulnerability Detection and Automation … Collaborate with our security team to scan customer systems for critical vulnerabilities. Develop new vulnerability checks using tools like Nuclei. Curate crowd-sourced checks for inclusion in our Intruder platform. Automate penetration testing processes to scale across multiple clients simultaneously. Rapid Response and Custom Scanning: Conduct custom scans … on customer targets to identify emerging critical weaknesses. Provide rapid response solutions to address urgent security issues. Technical Content Creation: Write informative and engaging technical content for our website, focusing on the latest vulnerabilities and security trends. Research and Platform Improvements: Collaborate on research projects to enhance the more »
Senior Security Test Engineer - OUTSIDE IR35 Must be SC Cleared (active) Location: fully remote Length of contract: 12-24 months Client: Government Agency Role: Responsible for enabling the delivery of security test engineering at project and programme level, including assurance of third-party testing where required. Ensuring … best practice to embed automated securitytesting as early as possible within the product development lifecycle, typically using agile and CI/CD methods and 'automation by default'. Enabling the use and reuse of a broad range of tools, including open source and cloud based. Advising on … testing practices to support and work alongside central cyber services, working as part of a multi-disciplinary team. If you would like to know more, please apply and I will be in touch asap E: (url removed) GCS is acting as an Employment Business in relation to this vacancy. more »
Coventry, England, United Kingdom Hybrid / WFH Options
Spectrum IT Recruitment
across teams, including development, product management, and customer support, to align quality assurance processes with project objectives and customer expectations. Drive ongoing enhancements in testing strategies and processes, incorporating best practices to ensure optimal outcomes. Provide mentorship and guidance to the QA team members, cultivating a culture of collaboration … documentation and reporting of test results, offering valuable insights and recommendations to senior management for informed decision-making. Requirements: Proven track record in software testing and quality assurance, with experience in a senior or leadership positions. Strong understanding of software development lifecycle (SDLC) and agile methodologies. Proficiency in developing … comprehensive test plans, test cases, and test scripts tailored to bespoke software applications. Exposure to automated testing tools (e.g., Browserstack, Selenium) and continuous integration tools (e.g., Azure DevOps). Exceptional problem-solving abilities and meticulous attention to detail. Strong communication and interpersonal skills, enabling effective collaboration across teams and more »
user journey through the web application. Candidates must have experience with appropriate software development practices such as version control, test-driven development and automated testing platforms. Key requirements: Excellent understanding and experience of full stack web development with Laravel and Livewire. Ability to develop chat/conversation UI for … Side Events Ability to test for Accessibility and compatibility Experience with appropriate software development practices such as version control, test-driven development and automated testing platforms. Good understanding of common security issues and apply good practices and be able to carry out internal securitytesting Working more »
Leeds, England, United Kingdom Hybrid / WFH Options
AppCheck Ltd
Do you have experience in IT/software/cyber security sales? If so we have an exciting new opportunity to join the AppCheck Channel Sales team. If you’re interested in selling a best-in-class SaaS product in the booming cyber industry, we’d love to hear … from malicious hackers are a huge risk for every business. AppCheck offers a SaaS based vulnerability scanning product that lets companies identify and fix security vulnerabilities in their websites, web apps and cloud infrastructure, before hackers can find them! We’ve enjoyed fantastic growth since our inception in 2014. … Our unique and leading-edge approach has meant that some of the world’s largest and most exciting organisations trust us with their securitytesting challenges. AppCheck has capabilities that are years ahead of the competition and there is a high demand so it’s an exciting time more »
Senior Application Security Engineer - Hybrid - £500 Outside IR35 Our client who is a leading fintech are looking for a Senior Application Security Engineer. They are offering hybrid working with their offices located in Central London You will have the opportunity to foster the growth and advancement of team … members within the Application Security domain. You will also lead on threat modeling and conducting comprehensive security reviews of system designs. Skills Previously worked as an Application Security Engineer or similar position. Experience in either C#, Python, .Net, Java and or JavaScript/Typescript. Knowledge of security and compliance frameworks and standards, e.g. OWASP, PCI-DSS, ISO 27001, GDPR. Strong knowledge of GitLab pipelines and Akamai security software is a major advantage. Experience in threat modelling and automated security testing. Senior Application Security Engineer - Hybrid - £500 Outside IR35 more »