Security Engineer - ApplicationSecurity, £90,000 base, 15% bonus, + Great benefit package We're working with a FTSE 100 e-commerce firm that is looking for an experienced ApplicationSecurity expert to enhance its secure software capabilities. This opportunity is ideal for a DevSecOps …/ApplicationSecurity technical consultant or engineer with a proven track record in agile environments. The role involves providing expert guidance and driving improvements to bolster the client's ApplicationSecurity posture. The role involves identifying and managing security toolsets, providing guidance to engineering teams … for our products. Experience & Core Technical Skills: Proficiency in Python, JavaScript, or Java. Experience deploying ApplicationSecurity Tooling (SCA/SAST/DAST/IaC Security) into DevOps environments. Deep understanding of applicationsecurity across Web, API, and Mobile platforms. Knowledge of OWASP Top more »
An exciting opportunity to join a leading company and play an influential part in their continued dedication to Application Security. At Tesco, the applicationsecurity team’s strategy is to provide security tooling that fits seamlessly into software engineering teams ways of working, helping them find … and deal with security problems early within the software development process before it reaches production. In this role you will be responsible for helping to identify appropriate toolsets that fit with the applicationsecurity team’s strategy, provide comprehensive guidance that allow engineering teams to effectively self … (Web, API, Mobile) An understanding of microservices and container orchestration Experience Solid grasp of ApplicationSecurity Tooling (SCA/SAST/DAST/IaC Security) Knowledge of OWASP Top 10, Mitre Top 25 and CVSS frameworks, mapping to business risk Experience in implementing security into more »
Manchester, North West, United Kingdom Hybrid / WFH Options
Erin Associates
Key responsibilities for this IT Security role Code analysis and applicationsecurity reviews. DynamicApplicationSecurityTesting (DAST) Identifying and addressing security vulnerabilities Working with stakeholders to enhance processes. Core skills & experience for this Security Analyst role: Security review methodologies … SAST, DAST, SBOM, SCA Implementing security tooling in CI/CD pipelines Threat modeling Code review (Java or C#) Familiarity with security frameworks like PCI, ISO 27001, Cyber Essentials This company offers structured training, career development opportunities, and competitive compensation including incentives. For more details, call … or follow us on Twitter @erinassociates for similar roles. Key words: Security Reviews, ISO Standards, SBOM, SCA, SAST, DAST, Threat Modelling, Security Tooling, Code Review, Manchester, North West, Java C#, Infosec, IT Security analyst Please get in touch on 0161 438 1177 if you would like further more »
you have Test Lead experience and you’re seeking a new role in London, we want to hear from you. Cognizant is recruiting a Security Test Lead for a Government and Public Sector client, and the role comes with an attractive salary and benefits package. As a Security … you an idea of how this flexible role would look and feel, here are some of the things you could expect to do: Static applicationsecuritytesting using tools like Checkmarx, Veracode Dynamicapplicationsecuritytesting using tools such as AppScan, WebInspect, etc … experience should include: Extensive experience in securitytesting with expertise in SAST using tools like Fortify, App Scan Source, Checkmarx, VeraCode and DAST using AppScan, Burpesuite, Fortify WebInspect, etc. At Cognizant, taking care of employees is a priority: You can pursue innovative career tracks and opportunities here You more »
+ Bonus + Benefits Locke & McCloud are looking for an experienced DevSecOps Engineer to join our client who are actively building out their Security Engineering function. In this role you will be driving the capability and maturity of our clients DevSecOps function and will have the opportunity to lead … hands on experience specifically in the DevSecOps space and are looking to work on some super exciting projects, then please apply! Main responsibilities: Integrate security tools and processes into the DevOps pipeline to ensure secure code deployment and infrastructure management. Design and implement automated securitytesting, including … knowledge of security principles, practices, and technologies, including encryption, authentication, and access control. Experience with security tools and technologies such as SAST, DAST, vulnerability scanners, SIEM, and WAF. Proficiency with CI/CD tools like Jenkins, GitLab, CircleCI, or similar, and infrastructure-as-code tools like Terraform, CloudFormation more »
consistency of service Makes decisions which impact on the success of assigned projects i.e. results, deadlines and budge Act in accordance with Computacenter Information Security Policies and report any potential or actual Security events or other Security risks to the organisation What you’ll need Experience of … working in a team of DevOps or DevSecOps practitioners DevOps Tooling experience (Automation, Orchestration, CI/CD, Testing etc.) An understanding of Agile Delivery (Kanban/SCRUM/XP/Lean/SAFe) An understanding of DevOps Management (JIRA, Confluence) Awareness of CI/CD tooling such as … Jenkins, GitLab or similar Experience of Hashicorp Terraform Experience of Hashicorp Vault Awareness of SAST SecurityTesting - GitLab, Checkmarx, Veracode Awareness of DASTSecurityTesting - GitLab, Veracode Awareness of SCA SecurityTesting - Checkmarx, GitLab, Veracode Awareness of IAST SecurityTesting - Checkmarx Awareness more »
an entirely new network for the world's money. For everyone, everywhere.More about our mission.Job DescriptionAbout the role We are looking for an experienced applicationsecurity engineer with a strong interest in all aspects of cyber security.Our team is the ApplicationSecurity Team, our mission is … to protect Wise application code and data against cyber threats and ensure customer assets are safe. As our estate expands we must continually develop our systems for identifying and reporting vulnerabilities across the company. Moreover we must ensure work alongside product teams to ensure security practices are followed … for example, penetration testing, security researching, red teaming or bug bounty programs;You have experience with security tooling such as SAST, DAST and SCA;Great communication and negotiation skills;Ability to articulate complex technical concepts to other Wisers;Are able to run your projects in collaboration with more »
Technical Information Security Consultant required for market-leading financial services firm. The role will be centred on ensuring security is delivered into a wide range of projects. There will be a focus on working closely with DevOps teams and embedding security throughout a software development life cycle. … Responsibilities: Act as the main security point of contact & SME for required projects Manage security risk for the whole project life cycle Perform security activities, including but not limited to, security design reviews, risk assessments, threat modelling, and vulnerability management and risk mitigation on internally & externally … apps, Containers, Platforms etc Reviewing security assessment reports and create a remediation pipeline Experience in web applicationsecurity assessments like SAST, DAST etc. Act as the Security subject matter expert within Agile/waterfall project planning, development, and execution Obtain and review all required artefacts as more »
What we're looking for Experience of working in a team of DevOps or DevSecOps practitioners DevOps Tooling experience (Automation, Orchestration, CI/CD, Testing etc) Container native technologies and ecosystem experience e.g. Openshift and Kubernetes An understanding of Agile Delivery (Kanban/SCRUM/XP/Lean/… as Jenkins, GitLab or similar. Knowledge of Hashicorp Terraform and Hashicorp Vault Awareness of SAST SecurityTesting - GitLab, Checkmarx, Veracode Awareness of DASTSecurityTesting - GitLab, Veracode Awareness of SCA/IAST SecurityTesting - Checkmarx, GitLab, Veracode Awareness of Vulnerability Management - PA Prisma Awareness … of QA Testing - Selenium Certifications in Gitlab, Terraform and Vault would be preferable more »
A well-known software development company is looking to grow their London based cyber security team with talented ApplicationSecurity Engineers. This will be 3 days per week in the office (central London). Hiring at multiple levels, you can expect a salary anywhere from … than 50% last year and use the most cutting edge technology available. If you're someone who is deeply technical and passionate about implementing security into the SDLC then I would love to speak with you. If you have expertise within software development/engineering and champion security … to be successful. You will be training developers on writing secure code, perform threat modelling and securitytesting of applications, run SAST, DAST, SCA and secret scanning tools, manage the bug bounty program and lead incident response for software bugs. Please apply if you're looking to take more »
Security Operations Analyst Egress Software Technologies, a leading Cyber Security company, is dedicated to your wellbeing and career development. We offer unparalleled work-life balance and transparent career paths, celebrating your unique contributions. Passionate about Cyber Security? Join us to work in a stable yet exciting industry. … Financial Services, Legal, Healthcare, and Government sectors, from advanced threats, ensuring they can achieve their missions safely. At the forefront of the IT Cyber Security industry, Egress can provide an unrivalled career path in Security Operations. The Team The three Egress security teams report to the Chief … after work. The Role Reporting to the Security Operations Manager, your key tasks may involve: Managing vulnerability scanning tools - SAST, SCA, IaC, Containers & DAST for all Egress products Investigate SIEM alerts, working with the Engineering and Operations teams to resolve issues Managing vetting applications, supplier onboarding and securitymore »
We are looking for a highly skilled, highly experienced Senior DevSecOps engineer to join a growing function within the business, focussing on infrastructure, automation, security practices and providing tooling solutions to streamline the path-to-live for development teams. The ideal candidate will be passionate about best practices within … technology teams, fully supportive of what the group is doing and who wishes to make a difference. Responsibilities: Drive shift left security culture uptake by assisting with security training friendly phishing campaigns as well as conducting brown bag sessions with all staff. Assist with the implementation of security … autonomous, proactive, confident, credible, and persuasive team player. Collaborate and support developers, analysts, and data scientists to continually improve and innovate. Conduct SAST and DASTtesting as well as penetration testing and threat simulations to identify potential risks. Have a practical understanding of firewall networking, ingress, VPNs, and more »
Bath, Somerset, United Kingdom Hybrid / WFH Options
Sanderson Recruitment Plc
new permanent opportunity for an experienced Dev SecOps Engineer with fast growing specialist Fintech business. This is a great opportunity to join a new security focussed squad within their forward-thinking engineering team you will have a unique opportunity to shape what security means to the business. As … a passionate security advocate, you will navigate complex challenges and approach platform design pragmatically. Leverage modern tools, languages, and platforms to contribute to efficient, secure, and scalable delivery of high-performance products. Main responsibilities: Work within a newly formed Security squad to continuously improve security posture within … Atlas. Exposure to Audits/Compliance/Security frameworks (ISO27001, SOC2, OWASP, SAMM, DSOMM). Knowledge of Embedded security (IDE plugins, SAST, DAST, SCA). Experience performing vulnerability scanning/penetration testing. Threat detection and prevention (IDS, IPS, SOC, Threat list blocking, WAF/SIEM). Cloud account more »
Devon, South West, United Kingdom Hybrid / WFH Options
Sanderson Recruitment
to contribute throughout the software development lifecycle, including design, development, and testing. Collaborate closely with DevOps engineers to optimize the development process for efficiency, security, and quality. Responsibilities: Develop high-quality, testable code and promote a collaborative team environment. Collaborate across teams to understand requirements and deliver system features. … Investigate and propose solutions for development challenges. Adhere to architecture, design, and security standards. Conduct code reviews and implement best practices. Develop reusable services and improve software performance. Streamline the software development lifecycle and recommend process improvements. Collaborate with DevOps engineers to enhance build and release processes. Partner with … RESTful architecture. Proficient with version control tools like GIT and infrastructure as code (Terraform). Knowledge of CI/CD tools and SAST/DAST tooling. Understanding of networking principles and cloud security frameworks. Experience with identity and access management tools. Familiarity with relational and NoSQL databases. #INDTech more »
/microservices/memory-management/messaging/event-sourcing. on experience on deploying applications on cloud platform like OCP/PCF. in building application Java, Spring boot and Node, Camel. on experience in building API’s/micro services and Event messaging. Elastic and Kafka. in building application … on experience of version control platforms such as GitHub. on experience writing Unit Tests using frameworks like Jest, JUnit etc. and fix SAST and DAST scans (Checkmark, Aqua, NexusIQ, SonarQube). Good to have: Strong troubleshooting skills across the entire application stack. A sound understanding of architecture principles and … disability, gender, age, sexual orientation, or beliefs. If you are an applicant who needs an accommodation due to a disability to complete an employment application, or during any phase of the hiring process, please contact us at elena.cioaca@tcs.com with the subject line: “Disability Accommodation Request”. Due to more »