Static Application Security Testing Jobs in England

1 to 14 of 14 Static Application Security Testing Jobs in England

Application Security Engineer

London Area, United Kingdom
Locke and McCloud
Application Security Engineer - £85,000-£95,000 + 20% Bonus, Extensive Benefits Package & Remote Flex Role Overview: As a Security Engineer at our confidential company, you will play a pivotal role in safeguarding our organization against security threats. You will have the autonomy to implement innovative … solutions that minimize risks and vulnerabilities. Whether you're engineering systems to overcome technical security challenges, protecting sensitive data, or consulting on a broad range of security topics, you will have the opportunity to lead and influence cross-functional teams. About You: You have a background in systems … such as JIRA, Git, GitHub, and Nexus. Good grasp of architecture and design principles. Familiarity with common Application Security Tooling (SCA/SAST/DAST/IaC Security). Knowledge of security frameworks like OWASP Top 10, Mitre Top 25, and CVSS, with the ability to more »
Posted:

Application Security Engineer

St Albans, England, United Kingdom
Locke and McCloud
Application Security Engineer - £75,000-£85,000 + 20% Bonus, Extensive Benefits Package & Remote Flex Role Overview: As a Security Engineer at our confidential company, you will play a pivotal role in safeguarding our organization against security threats. You will have the autonomy to implement innovative … solutions that minimize risks and vulnerabilities. Whether you're engineering systems to overcome technical security challenges, protecting sensitive data, or consulting on a broad range of security topics, you will have the opportunity to lead and influence cross-functional teams. About You: You have a background in systems … such as JIRA, Git, GitHub, and Nexus. Good grasp of architecture and design principles. Familiarity with common Application Security Tooling (SCA/SAST/DAST/IaC Security). Knowledge of security frameworks like OWASP Top 10, Mitre Top 25, and CVSS, with the ability to more »
Posted:

Lead Penetration Tester

London Area, United Kingdom
Xcede
My client requires a Lead Penetration Tester to join an exciting global project. An individual with a passion for cyber security and security testing with prior leadership experience is key for this position. The main objective of this position is to ensure that then organisations security measures are operating as intended. Responsibilities In this role, your main focus will be web and mobile apps, cloud securitytesting, attack simulation to improve the clients security posture Leveraging your prior expertise in application security (using tools such as SAST, DAST and SCA) you will perform dynamic and static code reviews You will also have responsibility over a small team who will rely on more »
Posted:

Senior Technical Architect

England, United Kingdom
Computacenter
What we're looking for Experience of working in a team of DevOps or DevSecOps practitioners DevOps Tooling experience (Automation, Orchestration, CI/CD, Testing etc) Container native technologies and ecosystem experience e.g. Openshift and Kubernetes An understanding of Agile Delivery (Kanban/SCRUM/XP/Lean/… Management (JIRA, Confluence) Awareness of CI/CD tooling such as Jenkins, GitLab or similar. Knowledge of Hashicorp Terraform and Hashicorp Vault Awareness of SAST Security Testing - GitLab, Checkmarx, Veracode Awareness of DAST Security Testing - GitLab, Veracode Awareness of SCA/IAST Security Testing - Checkmarx, GitLab, Veracode Awareness of Vulnerability Management - PA Prisma Awareness of QA Testing - Selenium Certifications in Gitlab, Terraform and Vault would be preferable more »
Posted:

Azure Security Engineer

London, United Kingdom
ECS
Azure Security … Engineer INSIDE IR35- 400-450 Hybrid- London office on required occasions Work Experience needed: Someone has worked extensively on implementing security in SDLC (SAST, SCA , Container Security etc) Someone who can understand what vulnerabilities are, how they are classified, evaluated against an environment etc. Someone who can mitigate … the vulnerabilities and implement best security practices Someone who can look for security potholes in our environment and enhance the security posture Someone who extensively worked on security side, such as Infra Security, Network Security and Application Security Someone who understand regulatory more »
Employment Type: Contract
Rate: £400 - £450 per day
Posted:

Staff Software Security Engineer

Newton, England, United Kingdom
Hybrid / WFH Options
ARM
Job Overview: We are looking for a talented Security Engineer to join Arm’s Product Security team. In this role, you will play a key part in enhancing the security of Arm’s software and processes, while contributing to building a strong security engineering culture across … software. Review and advise on output of various Security Development Lifecycle (SDLC) stages such as threat modeling, security testing, including DAST, SAST, SCA Enable engineering teams to implement various stages of Arm's SDLC independently Provide consultation on specific areas of software security and on the … working with Arm's open source software. Knowledge of Arm assembly. Delivered software security training. Experience in configuration and creation of rules for SAST tools such as Coverity and SonarQube. Experience working with relevant security certification schemes (e.g., PSA Certified, common criteria, SESIP) and international standards (e.g, ISO more »
Posted:

Lead DevOps Engineer

Greater London, England, United Kingdom
Paradigm Tech
Lead DevOps Engineer | Senior DevOps Engineer | Senior DevSecOps Engineer | Senior Security Engineer | Cloud Security Engineer | Cyber Security Engineer | DevOps Engineer | Lead DevOps Engineer | Senior DevOps Engineer Brand new requirement for a company who operate in the Renewable/Sustainability sector who are looking to hire a senior … DevSecOps Specialist to join the Cyber-Security function. This company are growing quickly and are genuinely making very positive changes to our world and its future. The role sits within a new, merged team within the business and will be focussing on developing excellent DevSecOps principles into their projects … Terraform to deploy into the Azure Cloud. You'll also require skills in the likes of SIEM and familiar with the likes of DAST & SAST testing. Finally, strong knowledge of frameworks like ISO & NIST is required. Any experience of the OT/IoT sector would be very welcome too. If more »
Posted:

Lead Security Engineer

Manchester, England, United Kingdom
MRJ Recruitment
One of the UK's leading eCommerce companies, who have recently posted fantastic results in light of the current market, are expanding their Security Team here in Manchester. Role: Lead Security Engineer Core Responsibilities: Contribute to the development of the product security roadmap and strategy. Boost, build … and innovate our security tools in our DevOps pipeline/processes to ensure applications are secure from development to deployment. Educate and empower those around you on security topics, helping to increase understanding of security issues and how to prioritise and remediate them. Develop automation scripts and … working with and securing microservices, API’s and event driven architectures. Advanced understanding of secure coding principles and how to apply them. Experience implementing SAST and/or DAST within a CI/CD environment. Understanding of security tools such as WAFs, SAST, vulnerability scanning tools. Certifications preferred (but more »
Posted:

Cloud Security Engineer

West London, London, United Kingdom
Hybrid / WFH Options
Offer Recruitment
endpoint management using tools such as Microsoft Intune endpoint protection with tools like Crowdstrike and Qualys Data Loss Prevention systems application security; SAST and DAST tools SIEM solutions (Splunk or similar) logging and monitoring best practices cloud infrastructure security and management (AWS or similar) cloud security … CSPM solutions such as Wiz threat intelligence incident management and response regulatory frameworks such as ISO 27001 and how they translate to a successful security strategy Requirements We are looking for a Senior Cloud Security Engineer who is adaptable, able to work independently and mission driven. The candidate … of cloud-native applications, from networking to API level, with a particular emphasis on security. They will be expected to implement the automation of security processes, for example by using CI/CD pipelines. The candidate will be expected to monitor infrastructure using a variety of tools and rapidly more »
Employment Type: Permanent, Work From Home
Posted:

Mid-Level DevSecOps Engineer

London Area, United Kingdom
Harrington Starr
global brokerage firm is seeking a skilled Med-Level DevSecOps Engineer to join their team. This role is ideal for someone passionate about cloud security and looking to make an impact in a dynamic, fast-paced environment. Key Responsibilities: Support the security of CI …/CD pipelines, managing access controls and ensuring secrets are properly handled. Assist in integrating security measures into CI/CD processes, running SAST and DAST, and helping developers address security issues. Monitor cloud environments, identify potential security risks, and implement solutions through Infrastructure as Code (IaC … . Help enforce access controls and automate security testing to ensure consistent protection. Collaborate with teams to develop security best practices and stay informed about new security trends and technologies. Skills & Experience: Experience with coding (Python, PowerShell preferred). Background in DevSecOps or InfoSec, with hands more »
Posted:

Staff Firmware Validation Engineer

Horfield, England, United Kingdom
Hybrid / WFH Options
ARM
of a small group of QA engineers. You will play a key role in developing and using appropriate tooling options for different types of testing and contribute to development of CI pipelines. Required skills and experience: Proven experience in Quality Assurance and Test automation of product quality system software … releases. Line management experience. 'Nice to Have' skills and experience: Experience with Security testing and tools - Fuzzing and penetration testing, SCA & SAST tools, root cause analysis. Exposure to static and dynamic code analysis tools. Familiarity with Arm SystemReady SR Compliance Program. Familiarity with open-source projects more »
Posted:

Senior Firmware Validation Engineer

Horfield, England, United Kingdom
Hybrid / WFH Options
ARM
infrastructure for validating firmware to both Arm internal and customer specified test specifications across various test categories - Compliance, Stress, Accelerated life, Strife, Reliability, Performance, Security, and robustness. You will play a key role in developing and using appropriate tooling options for different types of testing and contribute to … preferably for server ecosystem. 'Nice to Have' skills and experience: Experience with Security testing and tools - Fuzzing and penetration testing, SCA & SAST tools, root cause analysis. System validation experience of platforms utilizing UEFI and ACPI for technologies such as RAS, Virtualization, Power Management, PCI-E and CXL. more »
Posted:

DevSecOps/ Cloud Security Engineer

London Area, United Kingdom
Harrington Starr
Harrington Starr are seeking a Lead Cloud Security/DevSecOps Engineer who can sit across the platform engineering team in a fast moving technical environment. The role is working for an international trading business. The role is based in London (city) with two days a week required in London. … platform – access control, build/deploy agents secured, secrets are encrypted and rotated. • Secure code – add security policies to CI/CD, run SAST and DAST, unencrypted secrets detected and removed from version control. Ensure fast feedback on security issues to developers. • Continuous monitoring of our cloud platforms … identifying security concerns, updating IAC to remediate or feedback to development teams with proposed solution to address. • Tighten access controls on cloud resources following least privilege model, enforce permission boundaries on resources. • Write automated tests to test the security of the platform and applications that run on it. more »
Posted:

Senior DevSecOps Engineer

London Area, United Kingdom
Harrington Starr
leading global brokerage firm is seeking a skilled Senior DevSecOps Engineer to join their team. This role is ideal for someone passionate about cloud security and looking to make an impact in a dynamic, fast-paced environment. Key Responsibilities: Secure CI/CD platforms by managing … access control, securing build/deploy agents, and ensuring secrets are encrypted and rotated. Integrate security policies into CI/CD pipelines, run SAST and DAST, and provide developers with fast feedback on security issues. Continuously monitor cloud platforms, address security concerns, and implement secure Infrastructure as … Code (IaC) solutions. Enforce strict access controls based on the least privilege model and automate penetration testing and reporting. Develop and promote security best practices, standards, and guidelines across the organization. Collaborate on architectural design and stay informed about emerging security threats. Skills & Experience: Proficiency in coding more »
Posted:
Static Application Security Testing
England
25th Percentile
£60,000
Median
£68,750
75th Percentile
£102,813
90th Percentile
£116,125