Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Join us as a Test Engineer to secure applications and tackle real-world security challenges.
- Company: Market-leading software house with a focus on innovation and security.
- Benefits: Earn up to £70k, enjoy hybrid working, and access great perks like gym memberships.
- Why this job: Make a difference in application security while working with cutting-edge tools and technologies.
- Qualifications: Experience with DAST, IAST, and coding skills in languages like Java or Python.
- Other info: Collaborative environment with opportunities for continuous learning and career growth.
The predicted salary is between 42000 - 84000 £ per year.
Are you a security focussed Test Engineer? You could be joining a market leading software house that’s remote access product is used by hundreds of millions of users worldwide.
What’s in it for you:
- Salary to £70k
- Bonus
- Hybrid working
- Pension, Private Medical Care, Life Assurance, Travel Insurance
- Subsidised gym membership and a range of other perks
Your role:
As a Test Engineer you’ll play a key role in building security into applications, carrying out threat modelling and risk assessments during the design phase to ensure solutions are secure by default. You’ll help define security requirements for new features and take part in architecture reviews to spot and address potential risks early.
Working closely with development teams, you’ll carry out secure code reviews and provide guidance on best practices, including alignment with CIS Critical Security Controls and the OWASP Top 10, collaborating with engineers to embed security into development workflows rather than treating it as an afterthought.
You’ll be hands-on with security testing across a range of environments, running Dynamic Application Security Testing (DAST) against live applications, focusing on issues such as cross-site scripting, SQL injection and broken access control. You’ll also use Interactive Application Security Testing (IAST) tools for runtime analysis, including tools such as Burp Suite, OWASP ZAP and Frida, alongside Static Application Security Testing (SAST) and software composition analysis to assess source code, binaries, and third-party dependencies.
Location / WFH:
You can work from home most of the time, meeting up with colleagues in the Cambridge office on a weekly / monthly basis.
About you:
- You have a strong understanding of the secure software development lifecycle and DevSecOps principles
- You have a good knowledge of Application Security principles and common vulnerabilities (e.g., XSS, SQL Injection, Broken Access Control)
- You have hands-on experience with DAST, IAST and Penetration Testing tools (e.g., Burp Suite, OWASP ZAP, Frida) and Static Application Security Testing (SAST)
- You can read and understand code (e.g. Java, Python, C++ or similar)
- You’re familiar with using software composition analysis (SCA) tools such as Blackduck, Mend / Whitesource, Snyk or similar
- You’re collaborative and pragmatic with great communications skills
Apply now to find out more about this opportunity. At Client Server we believe in a diverse workplace that allows people to play to their strengths and continually learn. We’re an equal opportunities employer whose people come from all walks of life and will never discriminate based on race, colour, religion, sex, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. The clients we work with share our values.
Test Engineer DAST IAST Application Security in Cambridge employer: Client Server
Contact Detail:
Client Server Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Test Engineer DAST IAST Application Security in Cambridge
✨Tip Number 1
Network like a pro! Reach out to folks in the industry on LinkedIn or at local meetups. You never know who might have the inside scoop on job openings or can put in a good word for you.
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your projects, especially those related to DAST, IAST, and application security. This gives potential employers a taste of what you can do.
✨Tip Number 3
Prepare for interviews by brushing up on common security vulnerabilities and testing tools. Be ready to discuss how you've tackled issues like SQL injection or cross-site scripting in past roles.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who are proactive about their job search.
We think you need these skills to ace Test Engineer DAST IAST Application Security in Cambridge
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights your experience with DAST, IAST, and application security. We want to see how your skills align with the role, so don’t be shy about showcasing relevant projects or tools you've used!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you’re passionate about application security and how your background makes you a perfect fit for our team. Keep it engaging and personal!
Showcase Your Technical Skills: When filling out your application, be specific about your hands-on experience with tools like Burp Suite and OWASP ZAP. We love seeing candidates who can demonstrate their technical prowess in real-world scenarios.
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for this exciting opportunity. Don’t miss out!
How to prepare for a job interview at Client Server
✨Know Your Security Stuff
Make sure you brush up on your knowledge of application security principles and common vulnerabilities like XSS and SQL Injection. Be ready to discuss how you've applied DAST and IAST tools in your previous roles, as this will show your hands-on experience.
✨Showcase Your Collaboration Skills
Since the role involves working closely with development teams, be prepared to share examples of how you've successfully collaborated in the past. Highlight any experiences where you’ve embedded security into development workflows and how you communicated best practices.
✨Familiarise Yourself with Tools
Get comfortable with the specific tools mentioned in the job description, like Burp Suite and OWASP ZAP. If you can, try to demonstrate your knowledge of these tools during the interview by discussing how you've used them for secure code reviews or testing.
✨Prepare for Technical Questions
Expect technical questions that assess your understanding of the secure software development lifecycle and DevSecOps principles. Practice explaining complex concepts in simple terms, as this will showcase your communication skills and ability to convey important information effectively.