StaticCodeAnalysis Engineer - £145k p/a , 5 days on-site We are working with a Creandum backed stealth start-up who are looking for a StaticCodeAnalysis Engineer Creandum have backed the companies of tomorrow before it's obvious. They invest … vision a reality. The role is paying between £110-145k p/a + Stocks and requires 5 days on-site in London. StaticCodeAnalysis Engineer - £145k p/a , 5 days on-site more »
With hundreds of products spanning many different vertical markets, your next project could be anything from static and dynamic analysis of a multi-node Java infrastructure, to writing a fuzzer for an undocumented network protocol or the grammar of a new programming language, to analysis and reverse … world. Role’s core responsibilities: Scope and execute security assessments across a broad range of on-premise and cloud services; develop proof-of-concept code or end-to-end exploits for bugs you’ve identified. Create testing tools to help engineering teams identify weaknesses in their own code. Collaborate … States Affirmative Action Employer Target profile and skillset: 8+ years industry experience in a software/product assessment or penetration testing role. Proficiency reviewing code written in a variety of programming languages, including at least one of C, C++, Java or JavaScript. Extensive experience of vulnerability research and exploit more »
identification and analysis. You will be responsible for finding new and novel ways to identify and resolve security vulnerabilities in our products. This includes static and dynamic codeanalysis, security scanning, investigation of security reports from InfoSec, our bug bounty program, or other trusted partners, and direct … team.Core ResponsibilitiesPerform deep architecture and security reviews on highly complex products to identify vulnerabilitiesLead engineering teams in feature design, threat modeling, and security-critical code and architectureDevelop and implement automation to eliminate entire classes of weaknesses across the organizationDrive decision-making by determining the tradeoffs between security and product … experience and a deep passion for information securityExperience with a modern high-level programming language (e.g. Java, Golang, Javascript, Python, etc.)Demonstrated experience evaluating code for vulnerabilities and weaknessesExperience with complex architectures and codebases (e.g. SOA or micro-services)Experience utilizing/with CodeQL or other staticcodemore »
across Oracle’s entire product and service portfolio. With hundreds of products spanning many different vertical markets, your next project could be anything from static and dynamic analysis of a multi-node Java infrastructure, to writing a fuzzer for an undocumented network protocol or the grammar of a … new programming language, to analysis and reverse engineering of firmware used in the thousands of servers supporting our cloud services. Creativity is highly valued; being able to find novel bugs and stitch them together to create something greater than the sum of their parts is essential in this role. … world. Role’s core responsibilities: Scope and execute security assessments across a broad range of on-premise and cloud services; develop proof-of-concept code or end-to-end exploits for bugs you’ve identified. Create testing tools to help engineering teams identify weaknesses in their own code. Collaborate more »
With hundreds of products spanning many different vertical markets, your next project could be anything from static and dynamic analysis of a multi-node Java infrastructure, to writing a fuzzer for an undocumented network protocol or the grammar of a new programming language, to analysis and reverse … world. Role’s core responsibilities: Scope and execute security assessments across a broad range of on-premise and cloud services; develop proof-of-concept code or end-to-end exploits for bugs you’ve identified. Create testing tools to help engineering teams identify weaknesses in their own code. Collaborate … chain. Career Level - IC4 Target profile and skillset: 8+ years industry experience in a software/product assessment or penetration testing role. Proficiency reviewing code written in a variety of programming languages, including at least one of C, C++, Java or JavaScript. Extensive experience of vulnerability research and exploit more »
to work on some super exciting projects, then please apply! Main responsibilities: Integrate security tools and processes into the DevOps pipeline to ensure secure code deployment and infrastructure management. Design and implement automated security testing, including staticcodeanalysis, dynamic application security testing, and vulnerability scanning. … practices. Monitor security metrics and logs to detect and respond to security incidents. Lead and participate in security incident response activities, including root cause analysis and remediation efforts. To be considered for this role, you should have: Must have hands on experience in DevSecOps Engineering. Strong knowledge of security … such as SAST, DAST, vulnerability scanners, SIEM, and WAF. Proficiency with CI/CD tools like Jenkins, GitLab, CircleCI, or similar, and infrastructure-as-code tools like Terraform, CloudFormation, or Ansible. Hands-on experience with cloud platforms, AWS, Azure, or GCP, and securing cloud-based environments. Solid understanding of more »
to work on some super exciting projects, then please apply! Main responsibilities: Integrate security tools and processes into the DevOps pipeline to ensure secure code deployment and infrastructure management. Design and implement automated security testing, including staticcodeanalysis, dynamic application security testing, and vulnerability scanning. … practices. Monitor security metrics and logs to detect and respond to security incidents. Lead and participate in security incident response activities, including root cause analysis and remediation efforts. To be considered for this role, you should have: Must have hands on experience in DevSecOps Engineering. Strong knowledge of security … such as SAST, DAST, vulnerability scanners, SIEM, and WAF. Proficiency with CI/CD tools like Jenkins, GitLab, CircleCI, or similar, and infrastructure-as-code tools like Terraform, CloudFormation, or Ansible. Hands-on experience with cloud platforms, AWS, Azure, or GCP, and securing cloud-based environments. Solid understanding of more »
City Of London, England, United Kingdom Hybrid / WFH Options
i3
concepts from LEAN to enhance productivity. The existing team of Cloud Engineers are responsible for delivering Cloud-native solutions that are fully automated through code, are scalable, and maximise availability and reliability 24 x 7. Your key responsibilities will be as follows: Have broad responsibilities to engineer and secure … testing and vulnerability assessments. Experience with SIEM tools, such as Splunk, ELK stack, or Azure Sentinel. Understanding of secure coding practices and experience with staticcodeanalysis tools. Incident response and forensics skills. Relevant security certifications, such as CISSP, CCSP, or cloud platform-specific certifications Infrastructure as … code: use Terraform and Azure DevOps CI/CD for automation, containerise environments (Kubernetes), and leverage Cloud technologies to meet the firms’ goals. Senior Cloud Security Engineer Azure Security Center, Terraform, Azure DevOps Financial Services Permanent West End, London/Hybrid (2 days a week in the office) Circa more »
West London, London, United Kingdom Hybrid / WFH Options
Investigo
/or DevSecOps environment, including unit testing, behaviour driven development, and continuous integration/continuous deployment Demonstrable experience in defining software metrics and using StaticCodeAnalysis (eg. SonarCloud) or similar tools (eg. CodeScene, Compass) to identify and improve software quality. Proven application of a variety of more »
met. Basic Qualifications: Proficient software development skills in at least one of the following languages: C/C++, or C# Experience with Object-Oriented Analysis (OOA), Object-Oriented Design (OOD), and implementation Experience in debugging, unit testing, and integration testing Experience working with a team, as well as independently … environment Experience with modern DevOps tools and principles Strong Knowledge of signal processing/algorithm and RF technique development high performance computing Experience with StaticCodeAnalysis tools. If interested in this role, please send across you latest CV. more »
Start-up La Fosse is currently working with a cutting-edge artificial intelligence and cyber security start-up company specialising in AI for binary analysis, who are looking to hire a talented Senior Machine Learning Engineer into their high performing team. If you’re looking for an opportunity where … you will develop AI that fundamentally understands computer software at the binary level, then this is for you! You will combine static and dynamic program analysis with state-of-the-art AI models, to assist their customers in binary reverse engineering, vulnerability detection, exploit generation, software supply chain … of-the-art machine learning techniques into the product pipeline. You will contribute to the development of their foundational large language model (LLM) binary code embeddings and research new methods using graph-based models for segment classification. Key Responsibilities: Implement state-of-the-art ML techniques and integrate them more »