1 to 25 of 26 Static Code Analysis Jobs in England

Job Description: We are seeking a motivated Application Security Code Reviewer to join our team. The ideal candidate will be responsible for ensuring the security and integrity of our software applications using comprehensive code review tools and security testing. This role involves performing static code analysis, dynamic code analysis, and software composition analysis to identify and mitigate security vulnerabilities. The role could also include other tasks such as penetration tests and retests, automations, pipeline configurations, and more. Contract Duration: 12 MONTH CONTRACT Key Responsibilities: Configure and manage automated security testing tools to … perform regular scans of the codebase in static code analysis, dynamic, and API tests. Analyze the results of security scans and identify true positive findings. Collaborate with the development team to provide detailed feedback and recommendations for remediation of identified security issues. Document and report security findings More ❯

teams in developing, maintaining, and improving their applications. Work with the Cloud Platform team to implement Cloud Infrastructure for application deploying using Infrastructure as Code (IaC). Implement and maintain DevOps tooling for Artifact Management, Static Code Analysis & Software Composition Analysis and more. Design and … an agile based product delivery environment. Experience building re-usable CI/CD pipelines with enforced DevSecOps practices/tooling. Experience with infrastructure as code (Terraform). Strong understanding of the fundamentals of networks, data storage, and other application-specific technologies (databases, service bus, queues, storage, event messaging etc More ❯

following: Programming in one or more of JavaScript, Java, .Net, Python Collaboratively designing and building Proof of Concept or Production systems Source controlling your code with Version Control Systems, for example Git, Mercurial, Perforce Utilising CI/CD tools, such as Bamboo, Jenkins, TeamCity, Bitbucket, in order to streamline … delivery of new features and fixes Continual testing of code using Automated Testing Frameworks Ensuring code consistency and quality by utilising static code analysis tools e.g. SonarQube Team working inside an agile environment e.g. Scrum, Lean, Kanban Common software design patterns Using precedent and your More ❯

following: Programming in one or more of JavaScript, Java, .Net, Python Collaboratively designing and building Proof of Concept or Production systems Source controlling your code with Version Control Systems, for example Git, Mercurial, Perforce Utilising CI/CD tools, such as Bamboo, Jenkins, TeamCity, Bitbucket, in order to streamline … delivery of new features and fixes Continual testing of code using Automated Testing Frameworks Ensuring code consistency and quality by utilising static code analysis tools e.g. SonarQube Team working inside an agile environment e.g. Scrum, Lean, Kanban Common software design patterns Using precedent and your More ❯

following: Programming in one or more of JavaScript, Java, .Net, Python Collaboratively designing and building Proof of Concept or Production systems Source controlling your code with Version Control Systems, for example Git, Mercurial, Perforce Utilising CI/CD tools, such as Bamboo, Jenkins, TeamCity, Bitbucket, in order to streamline … delivery of new features and fixes Continual testing of code using Automated Testing Frameworks Ensuring code consistency and quality by utilising static code analysis tools e.g. SonarQube Team working inside an agile environment e.g. Scrum, Lean, Kanban Common software design patterns Using precedent and your More ❯

following: Programming in one or more of JavaScript, Java, .Net, Python Collaboratively designing and building Proof of Concept or Production systems Source controlling your code with Version Control Systems, for example Git, Mercurial, Perforce Utilising CI/CD tools, such as Bamboo, Jenkins, TeamCity, Bitbucket, in order to streamline … delivery of new features and fixes Continual testing of code using Automated Testing Frameworks Ensuring code consistency and quality by utilising static code analysis tools e.g. SonarQube Team working inside an agile environment e.g. Scrum, Lean, Kanban Common software design patterns Using precedent and your More ❯

About you You will have experience in many of the following: Collaboratively designing and building Proof of Concept or Production systems Source controlling your code with Version Control Systems, for example Git, Mercurial, Perforce Utilising CI/CD tools, such as Bamboo, Jenkins, TeamCity, Bitbucket, in order to streamline … delivery of new features and fixes Continual testing of code using Automated Testing Frameworks Ensuring code consistency and quality by utilising static code analysis tools e.g. SonarQube Team working inside an agile environment e.g. Scrum, Lean, Kanban Using precedent and your own creativity to solve More ❯

supported by dedicated UI/UX, PMO and DevOps roles. Key Responsibilities Software Development: Design and develop software solutions: Write clean, maintainable, and efficient code for our platform and applications. This includes developing new features, fixing bugs, and optimising existing code. Implement features and enhancements: Collaborate with product managers … Ensure security by design: Integrate security best practices into the development process to ensure that software is secure from the ground up. Conduct regular code reviews and security assessments to identify and mitigate potential vulnerabilities. Optimise for performance and scalability: Design and implement solutions that can dynamically scale to … meet varying demands and ensure high performance and availability. Use profiling tools to identify performance bottlenecks and optimise code accordingly. Develop APIs and microservices: Design and implement APIs and microservices to support the platform's functionality. Ensure that APIs are secure, scalable, and well-documented. Experience with CI/ More ❯

Bash and PowerShell Strong Linux administration skills and experience in administering VMs Use of tools such as Ansible or Puppet to implement infrastructure as Code Experience of using static code analysis tools, such as BlackDuck Able to use and manage other monitoring tools, such as Nagios More ❯

Bash and PowerShell * Strong Linux administration skills and experience in administering VMs * Use of tools such as Ansible or Puppet to implement infrastructure as Code * Experience of using static code analysis tools, such as BlackDuck * Able to use and manage other monitoring tools, such as Nagios More ❯

building components of powerful payment technology, you will get to see your efforts shaping the digital future of monetary transactions. The Work itself: Design code and systems that touch 40% of the world population while influencing Visa's internal standards for scalability, security, and reusability. Collaborate multi-functionally to … mentorship and continued learning opportunities. Essential Functions: Takes a hands-on approach in designing and developing software while simultaneously guiding the team in developing code that adheres to design specifications and meets security best practices. Proactively proposes automation to improve effectiveness and efficiencies of systems and tools and supports … yield the greatest efficiencies. Leverages back-end technical expertise on underlying systems/platforms across teams and telemetry analyses to propose scalable improvements in code, processes, and designs with an emphasis on customer/business objectives. Engages with product engineering teams and product owners across teams by leading code More ❯

building components of powerful payment technology, you will get to see your efforts shaping the digital future of monetary transactions. The Work itself: Design code and systems that touch 40% of the world population while influencing Visa's internal standards for scalability, security, and reusability Collaborate multi-functionally to … mentorship and continued learning opportunities Essential Functions: Takes a hands-on approach in designing and developing software while simultaneously guiding the team in developing code that adheres to design specifications and meets security best practices. Proactively proposes automation to improve effectiveness and efficiencies of systems and tools and supports … yield the greatest efficiencies. Leverages back-end technical expertise on underlying systems/platforms across teams and telemetry analyses to propose scalable improvements in code, processes, and designs with an emphasis on customer/business objectives. Engages with product engineering teams and product owners across teams by leading code More ❯

Python, but also Bash and PowerShell. You have strong Linux administration skills. You have experience in administering VMs. You have experience implementing Infrastructure as Code, preferably using tools such as Ansible or Puppet. You have experience using static code analysis tools, such as BlackDuck. You have More ❯

Python, but also Bash and PowerShell. You have strong Linux administration skills. You have experience in administering VMs. You have experience implementing Infrastructure as Code, preferably using tools such as Ansible or Puppet. You have experience using static code analysis tools, such as BlackDuck. You have More ❯

based infrastructure built on JavaScript-driven applications. In this role you will act as the lead architect for all security, automation, and infrastructure-as-code initiatives, playing a pivotal role in bridging the gap between development, security, and operations. This is an individual contributor role, where you will spearhead … team on best practices without direct management responsibilities. Key Responsibilities: Design, implement, and maintain secure cloud infrastructure in GCP. Develop and manage infrastructure as code (Terraform, Kubernetes) to ensure repeatable, scalable, and secure environments. Automate workflows, build scripts, and operational tasks to improve efficiency and scalability. Ensure compliance with … . Automate security processes, such as key management, vulnerability scanning, and incident response. Lead the response to security breaches or system failures, including incident analysis, mitigation, and recovery. Own the continuous integration and delivery (CI/CD) pipelines, ensuring rapid, secure, and reliable deployment of JavaScript applications. Develop and More ❯

fostering innovation within your team. Responsibilities: Design, implement, and manage scalable cloud infrastructure on Google Cloud Platform (GCP). Develop and maintain Infrastructure as Code (IaC) using Terraform to automate the provisioning and management of cloud resources. Ensure high availability, scalability, and security of cloud environments. Continuous Integration and … Continuous Deployment (CI/CD): Implement and manage CI/CD pipelines using GitHub Actions. Integrate and configure tools for code quality analysis and static code analysis. Use relevant tools to identify and remediate security vulnerabilities in the codebase. Monitoring and Logging: Configure and manage comprehensive … Strong experience with Google Cloud Platform (GCP) and Terraform. Proficiency in setting up and managing CI/CD pipelines using GitHub Actions. Familiarity with code quality tools like SonarCloud and security tools like Snyk. Extensive experience with monitoring tools such as Datadog or NewRelic. Knowledge of containerization technologies (e.g. More ❯

I Apply: At Sonar, we’re a group of brilliant, motivated, and driven professionals working hard to help organizations build responsible, secure, high-quality code quickly and systematically. We build solutions that don’t just solve symptoms of problems – we fix problems at the source – source code, to … Actively listen to customers to identify technical challenges or adoption barriers and develop actionable plans to address them. Educate customers on the value of static code analysis and the unique benefits of the Sonar ecosystem. Hand off completed onboarding engagements to Account Managers, Technical Advisors, and/ More ❯

working experience with Microsoft Azure Cloud services (IaaS, PaaS and SaaS), Security, Networking and Azure DevOps Pipelines. Hands-on working knowledge of Infrastructure as Code using Ansible, Packer, Terraform and programming and/or scripting language such as PowerShell, Bash, SQL, KQL. Hands-on knowledge on the usage of … CI/CD processes including the integration of security & code quality tools. Hands-on experience in engineering and automation of container orchestration with Kubernetes and Docker. Hands-on experience in designing, implementing, testing, and securing APIs. Hands-on experience implementing security controls across data, infrastructure, and applications primarily in … Good understanding of information security principles, cloud security and best practices. Good working knowledge of Azure DevOps Boards. Good knowledge of security scanning tools (Static Code Analysis, Dynamics Security Testing, Open source and Container Scanning tools). Good working knowledge in building solutions on and developing integrations More ❯

is desirable: PHP, AWS, Web, APIs, Node, Python Assistance with design activities and prototyping Design and implement software, based on requirements and/or analysis artefacts Implement and perform unit tests reflecting system specifications Implement and maintain the necessary software development lifecycle artefacts Working experience in using static code analysis software and addressing violations raised by the product is desirable Working experience in using defect tracking software and addressing defects Capacity to assist the support team with training the users of the system Assistance with operational support of software produced Capacity to assist with evaluating More ❯

systems/technologies (Azure Data Lake/Data Bricks, Azure Service Bus, Kafka, …) Run Braze projects to direct the technical approach and enforce good code quality Work closely with Project Managers and Business Analysts on the projects to make sure that developers have tickets to work on, and lead … and will be doing Be aware of all KPI's for a project to ensure there isn’t degradation between releases, these include Sonar static code analysis, unit testing, performance testing, integration testing, runtime error reporting Communicate regularly with other team leads WHAT YOU NEED Extensive experience More ❯

empowered engineering teams. Promote a healthy SRE culture by providing expertise and help create secure by design products. Implement state of the art secure code pipelines, to empower automation through all environments and minimize human effort. Proactively collaborate across teams to share, advise and re-utilise best security practice … and technology stack. Skills: Strong experience in SRE practice with knowledge of conducting security checks and mitigation (static and dynamic code analysis, SAST, DAST, IAST, vulnerability analysis/penetration tests, security component analysis). Hands on experience with Azure DevOps is a must, including Repos More ❯

practices, and providing direct input to project teams and business stakeholders is essential. Experience working with security issues in software architecture, software development, e.g. static and/or dynamic code analysis and tools, software dependency check, OWASP Top10 testing, application threat modelling. In-depth experience working in … an Agile software development environment, with classic applications as well as microservices, using modern code processing and continuous integration and delivery tools (e.g. GitHub, Jenkins, Bamboo). Good expertise in taking security policy statements and translating them into actual, implementable, security controls and techniques that can make our software … Senior Software Security Architect, Senior Application Security Architect, SDLC, Secure by Design, Architecture, Software Development, Engineering, DevOps, InfoSec, Security, Security Strategy, Best Practice, Programming, Code, C++, C#, C, .NET Core, Java, JavaScript, Node.js, Angular, React, OWASP, Agile, Application Threat Modelling, Security Policy, Security Controls, ISO 27001, NIST, GDPR, Cloud More ❯

practices, and providing direct input to project teams and business stakeholders is essential. Experience working with security issues in software architecture, software development, e.g. static and/or dynamic code analysis and tools, software dependency check, OWASP Top10 testing, application threat modelling. In-depth experience working in … an Agile software development environment, with classic applications as well as microservices, using modern code processing and continuous integration and delivery tools (e.g. GitHub, Jenkins, Bamboo). Good expertise in taking security policy statements and translating them into actual, implementable, security controls and techniques that can make our software More ❯

practices, and providing direct input to project teams and business stakeholders is essential. Experience working with security issues in software architecture, software development, e.g. static and/or dynamic code analysis and tools, software dependency check, OWASP Top10 testing, application threat modelling. In-depth experience working in … an Agile software development environment, with classic applications as well as microservices, using modern code processing and continuous integration and delivery tools (e.g. GitHub, Jenkins, Bamboo). Good expertise in taking security policy statements and translating them into actual, implementable, security controls and techniques that can make our software More ❯

Fortinet's Code Security team is responsible for shipping a suite of products that can be used to help secure customer codebases. The technology involves static and dynamic program analysis and their combination, used to find, as well as prevent, threats and to understand risk, and serves … personnel ranging from developers to security engineers to VP+C-suite. The Code Security offering which was recently announced integrates with the Fortinet CNAPP platform providing end-to-end security from code to cloud in a way where insights from different points in the software lifecycle work together to … holistic view of security. We are looking for candidates to work on both the underlying analyses and on the platform for deploying them. The Analysis roles involve Programming Language technologies, such as build systems, compilers, formal methods, or static or dynamic program analysis. The Platform roles involve a More ❯