SCA for large, complex organizations. This includes deep expertise with SCA and a strong understanding of its integration capabilities; Proven experience with other SAST tooling (e.g., Checkmarx, SonarQube, Fortify, Veracode) and a strong understanding of their principles and challenges; Hands-on experience integrating security tools into CI/CD pipelines (e.g., Jenkins, Azure DevOps, GitLab CI, GitHub Actions); Strong understanding More ❯
Edinburgh, Midlothian, United Kingdom Hybrid/Remote Options
Kosli Enterprise
in Edinburgh or are within commutable distance Solid experience in DevOps and Platform Engineering Git and version control workflows Security engineering tools and practices: SAST/DAST tools (Checkmarx, Veracode, SonarQube) Container security (Aqua, Snyk, Anchore) Programming and scripting languages (Python, Go, YAML, JSON etc.) A background in financial services or similar regulated industries. Familiarity with compliance frameworks, and security More ❯
in creating and executing comprehensive threat and vulnerability management programmes, including vulnerability scanning, penetration testing, and security awareness training. Proficiency in using vulnerability scanning tools (e.g. Tenable, Qualys, Rapid7, Veracode, JFrog Xray), threat intelligence platforms, and incident response tools. Prior experience implementing automated solutions for vulnerability scanning, threat detection, and incident response, with a focus on continuous process improvement. Risk More ❯
