1 to 25 of 73 Static Application Security Testing Jobs in England

London, United Kingdom Posted on 24/02/2025 Job Description: Security Testing Engineer Location: Remote with occasional travel as required Employment Type: Permanent About the Role Scrumconnect Consulting is looking for a Security Testing Engineer to ensure the security, resilience, and compliance of … GOV.UK digital services . This role involves identifying vulnerabilities, mitigating security risks, and ensuring adherence to government security policies and DDAT frameworks . You will work closely with developers, security architects, and business stakeholders to embed security testing into Agile development workflows and DevSecOps pipelines. … comprehensive security test plans for GOV.UK digital services. Identify security vulnerabilities through static and dynamic application security testing (SAST & DAST) . Ensure security testing is seamlessly integrated into CI/CD pipelines and DevSecOps processes. Define security requirements and best practices More ❯

SOFTWARE APPLICATION SECURITY ENGINEER £90,000 + 15% Bonus + Excellent Staff Benefits including Strong Pension, Life Assurance Hybrid Working ( 2 Days per Week Onsite ) An interesting opportunity has presented itself within one of the UKs largest Independent Software Based Organisations who are one of a major driving … forces behind Innovative Development of Enterprise-Led Internet Technology. They are now looking for an Application Security Engineer to join their existing & high performing In - House Security Team of 35 Staff including SOC & Cyber Analysts through to Experienced Cyber Security Engineers & Security Architects. As an … AppSec Engineer you will focus on the technical side of IT Security, specifically looking at Application Security & Code Analysis, ensuring their Applications are Built Securely. The Information & Cyber Security Team deal with the Security of Closed-Sourced, Open-Source & In-House Developed Applications ensuring that More ❯

We are seeking a Principal Security Engineer to lead and drive security engineering efforts across our cloud and application environments. This strategic, hands-on role requires expertise in cloud security, secure development practices, and the implementation of advanced security controls. You will serve as a … leader within the Consumer Security Engineering team, driving security initiatives across cloud platforms, microservice architectures, digital products, application security, and enterprise security. You will define and build comprehensive security strategies in collaboration with developers, DevSecOps engineers, ensuring that security is seamlessly integrated into our … in DevSecOps, with experience in integrating security into CI/CD pipelines using tools like Jenkins, GitLab, or similar. Experience implementing and managing SAST/DAST tools and processes to secure application development. Deep understanding of application security, including secure coding practices, OWASP Top 10, and More ❯

Senior Security Engineer, Application Security Blockchain.com is the world's leading software platform for digital assets, powering the largest production blockchain platform globally. We are driven by a passion to code, create, and ultimately build an open, accessible, and fair financial future—one line of code at … a time. As we scale our platform to serve millions of people each day, we seek a Senior Application Security Engineer to join our dedicated security team. At Blockchain.com, security is more than a set of policies—it's a core mindset. As we continue to … with previous involvement in cryptocurrency-related projects being a strong plus. Strong knowledge of OWASP standards, Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Software Composition Analysis (SCA) tools. Familiarity with integrating these tools into CI/CD pipelines is More ❯

You will need to login before you can apply for a job. We are seeking a Principal Security Engineer to lead and drive security engineering efforts across our cloud and application environments. This strategic, hands-on role requires expertise in cloud security, secure development practices, and … the implementation of advanced security controls. You will serve as a leader within the Consumer Security Engineering team, driving security initiatives across cloud platforms, microservice architectures, digital products, application security, and enterprise security. You will define and build comprehensive security strategies in collaboration with … in DevSecOps, with experience in integrating security into CI/CD pipelines using tools like Jenkins, GitLab, or similar. Experience implementing and managing SAST/DAST tools and processes to secure application development. Deep understanding of application security, including secure coding practices, OWASP Top 10, and More ❯

Senior Security Engineer, Application Security Blockchain.com is the world's leading software platform for digital assets, powering the largest production blockchain platform globally. We are driven by a passion to code, create, and ultimately build an open, accessible, and fair financial future—one line of code at … a time. As we scale our platform to serve millions of people each day, we seek a Senior Application Security Engineer to join our dedicated security team. At Blockchain.com, security is more than a set of policies—it's a core mindset. As we continue to … with previous involvement in cryptocurrency-related projects being a strong plus. Strong knowledge of OWASP standards, Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Software Composition Analysis (SCA) tools. Familiarity with integrating these tools into CI/CD pipelines is More ❯

Application Security Engineer UK or Europe Remote This range is provided by Infused Solutions. Your actual pay will be based on your skills and experience — talk with your recruiter to learn more. Base pay range $150,000.00/yr - $180,000.00/yr Job Title: Application Security Engineer Job Type: Permanent Location: UK or Europe (Remote) Salary: $150,000 - $180,000 About the Role My client is seeking an Application Security Engineer to strengthen our security posture by identifying vulnerabilities, integrating best practices into CI/CD pipelines , and ensuring compliance with PCI … Conduct security reviews and threat modeling during the application design phase. Perform static and dynamic application security testing (SAST/DAST) on internal and third-party applications. Define and maintain security standards for software development. Integrate security tools and processes into CI More ❯

Cyber Security Architect - SC Cleared, DevSecOps, CI/CD Up to £750 per day (Inside IR35) London/Hybrid 6 Months My client is a high profile consultancy who require a Cyber Security … Architect with Active SC Clearance and strong knowledge of DevSecOps and CI/CD tooling along with Application Security Scanning (SCA/SAST/DAST) to work closely with an end customer. Key Requirements: Proven experience as a Cyber Security Architect Active SC Clearance (Security Clearance … ie Jenkins, GitLab, or GitHub Actions for integrating security practices. Good understanding of Application Security Scanning ie SCA (Software Composition Analysis), SAST (Static Application Security Testing) and DAST (Dynamic Application Security Testing) Familiarity with Data Security, Data Loss Prevention More ❯

financing in their customer journeys, and we are building the solutions that will power that future. The Role: We are seeking a seasoned Platform Security & Observability Senior Engineer to join our IT Security team. This role is crucial in enhancing our security posture and ensuring operational excellence … GitOps principles and tools such as Jenkins or other continuous deployment services Apply best practices in static application security testing (SAST), dynamic application security testing (DAST), software composition analysis (SCA), pre-commit container scanning, and shift-left approaches to ensure early detection of … Proven expertise in securing CI/CD pipelines and integrating security practices in DevOps processes Strong background in application security, including SAST, DAST, and container security practices Hands-on experience with Kubernetes and Docker, focusing on securing containerized environments Proficient in scripting and automation with languages More ❯

Description Senior Security Engineer We are seeking an experienced Senior Security Engineer to join our dynamic Security Team. In this key role, you will be a key contributor to Funding Circle's cloud and application security posture. You will leverage your deep expertise in AWS … security, secure software development lifecycle (SSDLC) practices, and CI/CD security to implement and champion robust security solutions. You will act as a subject matter expert and mentor, collaborating closely with engineering and product teams to embed security seamlessly into our cloud infrastructure and development … designing, implementing, securing, and managing a wide range of AWS security services. Proven, hands-on experience architecting, building, and integrating security tooling (SAST, DAST, SCA, secrets management, IAST) and automated security controls within CI/CD pipelines (e.g., GitLab CI, Jenkins, GitHub Actions). Strong track record More ❯

Principal Security Engineer Joining Capco means joining an organisation that is committed to an inclusive working environment where you're encouraged to #BeYourselfAtWork. We celebrate individuality and recognize that diversity and inclusion, in all forms, is critical to success. It's important to us that we recruit and develop … strategies to fortify infrastructure, networks, and cloud environments. Lead security initiatives across the SDLC, integrating Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Software Composition Analysis (SCA), and Container scanning using tools such as CheckmarxOne, Prisma Cloud, or equivalents. Collaborate … threats. Skills & Expertise Strong knowledge of application security, secure coding practices, and tools like CheckmarxOne, Prisma Cloud, or similar platforms. Proficiency in SAST, DAST, SCA, and Container scanning, with hands-on experience integrating these tools into development pipelines. Extensive experience in endpoint security, cloud security, and More ❯

Senior Security Engineer Joining Capco means joining an organisation that is committed to an inclusive working environment where you're encouraged to #BeYourselfAtWork. We celebrate individuality and recognize that diversity and inclusion, in all forms, is critical to success. It's important to us that we recruit and develop … strategies to fortify infrastructure, networks, and cloud environments. Lead security initiatives across the SDLC, integrating Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Software Composition Analysis (SCA), and Container scanning using tools such as CheckmarxOne, Prisma Cloud, or equivalents. Collaborate … threats. Skills & Expertise Strong knowledge of application security, secure coding practices, and tools like CheckmarxOne, Prisma Cloud, or similar platforms. Proficiency in SAST, DAST, SCA, and Container scanning, with hands-on experience integrating these tools into development pipelines. Extensive experience in endpoint security, cloud security, and More ❯

Security Engineer (Mid Level) Joining Capco means joining an organisation that is committed to an inclusive working environment where you're encouraged to #BeYourselfAtWork. We celebrate individuality and recognize that diversity and inclusion, in all forms, is critical to success. It's important to us that we recruit and … strategies to fortify infrastructure, networks, and cloud environments. Lead security initiatives across the SDLC, integrating Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Software Composition Analysis (SCA), and Container scanning using tools such as CheckmarxOne, Prisma Cloud, or equivalents. Collaborate … threats. Skills & Expertise Strong knowledge of application security, secure coding practices, and tools like CheckmarxOne, Prisma Cloud, or similar platforms. Proficiency in SAST, DAST, SCA, and Container scanning, with hands-on experience integrating these tools into development pipelines. Extensive experience in endpoint security, cloud security, and More ❯

Your expertise in DevOps, combined with your deep understanding of security, will help us incorporate Static Application Security Testing (SAST) scanning and other security measures throughout our development lifecycle. Engaging with colleagues across Gallagher Re, you'll have an inquisitive approach to your work … travel to this will be required. How you'll make an impact Design, implement, and maintain secure and efficient CI/CD pipelines, integrating SAST scanning and other security tools Collaborate with development, operations, and security teams to ensure security best practices are followed throughout the development … on security, preferably in a Senior DevSecOps Engineer or similar role Hands-on experience with Static Application Security Testing (SAST) tools and their integration into CI/CD pipelines Deep understanding of security concepts, practices, and technologies, such as access control, encryption, and vulnerability More ❯

Experience in the following types of Security Testing: - Security Analysis and Consulting - Static Application Security Testing (SAST) - Dynamic Application Security Testing (DAST) - Infrastructure Vulnerability Assessment - Mobile Application Penetration testing OWASP More ❯

Experience in the following types of Security Testing: - Security Analysis and Consulting - Static Application Security Testing (SAST) - Dynamic Application Security Testing (DAST) - Infrastructure Vulnerability Assessment - Mobile Application Penetration testing OWASP JBG81_UKTJ click apply for full job details More ❯

Summary The Specialist Application Security Engineer will play a pivotal role in ensuring the integrity and security of our applications across various platforms. You will lead the charge in implementing robust security measures, collaborating closely with cross-functional teams to fortify our defences against cyber threats. … ll do Focused on application security initiatives across cloud and on-premises environments, employing a diverse suite of tools including Semgrep for SAST, Snyk for SCA, GHAS for secret scanning, Burp Suite for DAST, and scripting for automation. Forge partnerships with external vendors to optimize and seamlessly integrate … hands-on experience in application security, with a track record of leadership or significant contributions in similar roles. Proficiency in Semgrep for SAST, Snyk for SCA, GHAS for secret scanning, Burp Suite for DAST, and automation scripting. Understanding of application security principles and best practices. Experience More ❯

Your new company - Specialist Global Financial Services Your new role - Permanent - ON SITE 5 Days per week. - UK Only Job Title: IT Security Engineer Job Brief: As the first line of defence in the IT department, the purpose of this role focuses on information security, cybersecurity and data … security, including a wide scope of physical security operating systems … such as Windows and Linux, network security, firewall and other security devices, application security both development and testing phases SAST & DAST, terminal security, backup security, third party and supply chain security. We are seeking a skilled IT Security Engineer to identify, investigate More ❯

for new talent to join us on our journey! As an Application Security Engineer, you'll strengthen application security using SAST, DAST, and SCA, automate tasks with Python, Bash, and Go, and manage infrastructure with Terraform and Ansible. You'll collaborate with pentesters, handle vulnerabilities, and … Ensure strong application security by overseeing the security framework and mitigating vulnerabilities; Automate security in CI/CD pipelines, integrating SAST, DAST, and SCA for seamless protection; Provide expert guidance to product engineers, enhancing application security with best practices; Manage penetration testing and … innovative solutions to enhance secure development processes. What we expect from you At least 5 years of experience in cybersecurity engineering; Expert knowledge of SAST, DAST, and SCA; Proficient in scripting and automation, using languages like Python, Bash, and Go; Experience with infrastructure management, including Terraform and Ansible; Strong knowledge More ❯

for new talent to join us on our journey! As an Application Security Engineer, you'll strengthen application security using SAST, DAST, and SCA, automate tasks with Python, Bash, and Go, and manage infrastructure with Terraform and Ansible. You'll collaborate with pentesters, handle vulnerabilities, and … Ensure strong application security by overseeing the security framework and mitigating vulnerabilities; Automate security in CI/CD pipelines, integrating SAST, DAST, and SCA for seamless protection; Provide expert guidance to product engineers, enhancing application security with best practices; Manage penetration testing and … innovative solutions to enhance secure development processes. What we expect from you At least 5 years of experience in cybersecurity engineering; Expert knowledge of SAST, DAST, and SCA; Proficient in scripting and automation, using languages like Python, Bash, and Go; Experience with infrastructure management, including Terraform and Ansible; Strong knowledge More ❯

The Security Architect reports to the Chief Information Security Officer. The Chief Information Security Officer determines the activities due by the Security Architect based on evolving needs to improve the company’s security posture and to secure CHAMP assets. Examples of the Security Architect … s responsibilities and duties include: Document and address information security, cybersecurity architecture, and systems security engineering requirements throughout the application acquisition or development life cycle. Ensure that acquired or developed system(s) and architecture(s) are consistent with the security policies. Establish a strategy to implement … content, data anonymization, data loss protection scanning, accelerated cryptographic operations, SSL security, REST/JSON processing). Ability to drive strategy to establish SAST and DAST framework. Knowledge of the enterprise information technology (IT) architectural concepts and patterns. Knowledge of installation, integration, and optimization of system components. Knowledge of More ❯

Your new company - Specialist Global Financial Services Your new role - Permanent - ON SITE 5 Days per week. - UK Only Job Title: IT Security Engineer Job Brief: As the first line of defence in the IT department, the purpose of this role focusses on information security, cybersecurity and data … security, including a wide scope of physical security operating systems … such as Windows and Linux, network security, firewall and other security devices, application security both development and testing phrases SAST & DAST, terminal security, backup security, third party and supply chain security. We are seeking a skilled IT Security Engineer to identify, investigate More ❯

regulated by the Financial Conduct Authority in the UK. We are looking for a skilled and proactive DevSecOps Engineer to take ownership of our security frameworks, testing, and hands-on implementation of secure systems. You will join our Engineering team to play a pivotal role in integrating security … approach. Perform regular automated security assessments, including vulnerability scans, assist penetration testing, and remediation planning. Automate security testing processes, including SAST, DAST, and IAST tools, to identify and remediate vulnerabilities earlier in the SDLC. Work closely with Development and Platform teams to promote a DevSecOps culture … or similar programming languages. Understanding of secure coding practices, application security principles, and compliance frameworks. Expertise in implementing security tools (e.g., SAST, DAST, vulnerability scanners, OWASP ZAP, SonarQube, Snyk, Elastic Security, tfsec AWS Inspector or Trivy). Experience with monitoring and logging tools like ELK or More ❯

Application Security Consultant (AppSec) Permanent Role Fully Remote Up to £80K per annum Are you a skilled application security professional with a strong grasp of cloud-native development and a passion for safeguarding software systems? Join an innovative cyber security consultancy working at the forefront … of resilience, supporting clients across the military, government, finance, and tech sectors. As an Application Security Consultant, you'll be the go-to expert on software-level threats and controls. You'll play a key role in embedding security within cloud-native development environments-particularly AWS-by … development teams in secure coding best practices through workshops, threat modelling, and code reviews. Define and enforce security checkpoints across the DevOps lifecycle (SAST, DAST, SCA). Champion secure API design, including robust authentication, authorisation, and validation techniques. Identify and mitigate security vulnerabilities through reviews and penetration test More ❯

UK based, primarily remote working with some travel required to our London Office. Sponsorship is not available for this role. What you will do: Security Integration in CI/CD Pipelines: Implement security controls within CI/CD pipelines using automation and best practices, ensuring vulnerabilities are caught … Incident Response: Develop and maintain monitoring systems and respond to security incidents quickly and effectively. Automated Security Testing: Integrate and manage SAST, DAST, and other security testing tools to identify security issues in code and applications. Compliance and Governance: Develop and manage Azure policies … such as vulnerability scanners, intrusion detection systems, & security information & event management (SIEM) solutions. Knowledge of container management with Azure Container Registry. Experience in SAST, DAST & other techniques to improve code security Desirable: Proficiency in scripting, preferably with PowerShell. Understanding of DotNet development and deployment pipelines. Experience working with More ❯