1 to 25 of 91 Permanent Application Security Jobs in the UK

I am currently working with an exciting Software business looking for an Application Security Engineer in the UK to support a wider global security team. Working closely with the Application Security Manager and Engineering teams, we are looking for someone to provide expertise on a … range of services including secure coding techniques & reviews, Application Security awareness, integration of security into development lifecycles and more. Other responsibilities include: Provide guidance on Application Security & DevSecOps best practices Develop security testing plans and integrate security into the software development lifecycle Help … to deliver overall Application Security strategy Work closely with the develop team to identify, communicate and remediate vulnerabilities in code Perform and oversee security testing and manage remediation of identified vulnerabilities. Collaborate with the architecture and development teams to review the design and code for security more »

AppSec Security Engineer Location: Remote (Europe-based) Role: Senior Application Security Engineer (AppSec) Up to €130K Plus Equity Options (At a company that was valued at over a billion last year? Yes please!) About Us: Join our client's dynamic Security Team as a crucial member … of their Application Security (AppSec) team. A B2B AI company That have recently raised $90 million in their latest funding round (Series C). Their mission is to ensure our products are secure by default, identifying and mitigating application security risks. They partner with Product, Engineering … iterative improvements to production code, identifying and fixing security vulnerabilities. Automation: Proven track record of implementing automation in a security context. Scaling AppSec: Experience in scaling AppSec programs in hyper-growth startups. Communication Skills and Empathy: Ability to build strong relationships with internal engineering teams and provide empathetic more »

Application Security Specialist Security | Application | DevSecOps | CI/CD | Burp Suite | Penetration Testing | Vulnerability Management | Fin-Tech An Application Security Specialist is required by a rapidly growing consumer Fin-Tech business who are based in London. The Application Security Specialist will need … to have advanced knowledge of secure software development methodologies as well as understanding of IDE's & CI/CD solutions. The Application Security Specialist will have experience with application security assessment, penetration testing, and vulnerability management. Application Security Specialist Requirements: Experience with Application … Security. Experience with SDLC and DevSecOps. Penetration Testing and Vulnerability Management experience. Used to a fast based working environment. Knowledge of the Financial Sector. Application Security Specialist Desirables: Fintech experience UK Based (Remote) If you are an Application Security Specialist with extensive experience in application more »

Security Engineer - Application Security, £70,000 - £90,000 base, 15% bonus, + Great benefit package We're working with a FTSE 100 e-commerce firm that is looking for an experienced Application Security expert to enhance its secure software capabilities. This opportunity is ideal for … a DevSecOps/Application Security technical consultant or engineer with a proven track record in agile environments. The role involves providing expert guidance and driving improvements to bolster the client's Application Security posture. The role involves identifying and managing security toolsets, providing guidance to … engineering teams, and maintaining solutions to prevent security issues early in development. You will be responsible for assisting in the identification of appropriate toolsets that align with the application security team’s strategy, offering comprehensive guidance to enable engineering teams to effectively self-serve with the toolsets more »

Application Security Consultant - Web App Testing - Penetration Testing - Contract Outside IR35 - London - Hybrid Application Security Consultant is urgently sought by a leading Financial Services customer within a Trading environment. The successful candidate will have an expertise in Application Security with a key focus on … Web App and Penetration Testing. This is a critical role that will enhance the business's Security Testing program. You will be pivotal in ensuring secure applications that are resilient against the threats to the company. The successful candidate will come from a Banking/Financial Services background and … comfortable working in a complex and fast paced trade environment. ***Hybrid Work location*** Role: Penetration Testing: Web Application Testing - end-end including engagement with app owners through to final retesting Maintain and update testing tools Maintain and update necessary testing tools. Provide report of findings process improvements for the more »

An exciting opportunity to join a leading company and play an influential part in their continued dedication to Application Security. At Tesco, the application security team’s strategy is to provide security tooling that fits seamlessly into software engineering teams ways of working, helping them find … and deal with security problems early within the software development process before it reaches production. In this role you will be responsible for helping to identify appropriate toolsets that fit with the application security team’s strategy, provide comprehensive guidance that allow engineering teams to effectively self … serve with our toolsets and help manage and maintain the chosen solutions. You are an application security expert with a strong engineering background and a curiosity about working collaboratively with the engineering teams. You communicate clearly, present reasonable security trade-offs to the business, and work to more »

London hybrid - £80,000 - £95,000 + Bonus + Benefits Locke & McCloud are looking for an experienced DevSecOps Specialist with a strong background in security architecture, cloud security, application security, and DevSecOps to join our client as they look to expand their cyber security engineering … function. This opportunity will allow you to step into an established, but growing security engineering function, lead and own various engineering initiatives, and work with some of the UK’s very best cyber security professionals! Main responsibilities: Design and implement security architecture for systems and applications. Develop … and maintain security policies, procedures, and standards. Implement and manage security controls and monitoring tools to detect and respond to security incidents. Work closely with development and operations teams to integrate security into the CI/CD pipeline and automate security testing and compliance checks. more »

a global provider of information-based analytics and decision tools for professional and business customers About the Role We are looking for an experienced Application Security Leader to lead the Application Security discipline across RX Global. The Security Application Leader will play a critical … role in ensuring that all applications are developed, deployed, and maintained with security as a top priority, helping to protect sensitive data, mitigate risks, and maintain the trust of customers and stakeholders Responsibilities Conducting assessments of applications (web, cloud, mobile, API) using range of manual and automated source code … review techniques (PASTA and STRIDE) Working with development teams to analyse,evaluate and enhance the effectiveness of their application/product security posture at all levels. Owning and administration of security tooling such as Sonarcube, Acunetix, Dtrack, and others Collaborating with respective peer groups to safeguard company more »

Senior Application Security Engineer, strategy, stakeholder conversations, thought leader, proactive, identity management, consulting, influencing, forward thinking, autonomy, code review, audits, pen testing, application reviews A fantastic opportunity has arisen for a skilled Senior Application Security Engineer with excellent communication skills to join a global cloud … company who develop cutting-edge solutions for an impressive portfolio of UK and International clients – clients that will accept nothing less than first-class security for their confidential information, so this is an exceptional opportunity to use your application security skills to provide forward thinking solutions and … background (.Net, Java or C++ or similar OO languages ideally)as you will be fully embedded into their world class technology team, ensuring the security of applications that are built specifically for needs. These clients will need constant re-assurance of your ability to provide secure solutions and high more »

Join our dynamic team as a Security Operations Manager, where you'll lead and enhance our security strategies to protect critical assets and ensure operational resilience. WHO ARE WE? Privately owned and independently minded, Creditsafe operates with the singular vision of powering business decisions. We do this by … decisions for companies by turning their data into actionable insights that help them become stronger, grow faster and thrive. THE TEAM Creditsafe’s Information Security and Compliance team are motivated by protecting company reputation, safeguarding existing revenue, and supporting the generation of future revenue. We realise that security … so our approach is enabling new and existing customers to interact with our products and services, and we pride ourselves on balancing a positive security culture with a robust control environment. Our responsibilities include setting security policies, educating users on good security practices, managing security risks more »

Job Title: Mobile/Web Application Security Test Engineer Location: Hemel Hempstead/Hybrid Job Type : Permanent, Full-Time, Mon-Fri BSI have a fantastic career opportunity for an individual looking to undertake a rewarding career within the cyber security regulatory industry. Our testing teams are responsible … for testing a wide range of products to ensure they meet stringent security standards and certification requirements. In this role you will have the opportunity to test a wide range of products from our global clients, including big tech. Working within the regulatory landscape you will also have the … to keep abreast of the latest regulatory requirements, develop your expertise, and research new testing techniques to further expand our testing capabilities. As our Application Security Test Engineer, you be responsible for testing client mobile and web software applications in accordance to OWASP (ASVS/MASVS) frameworks. To more »

Positions: 1 Role Description: We are looking for an experienced ZTA Architect with 8 to 10 years of technical experience in two or three security domains (Network Security, IT Security, Cloud Security, Identity and Access Management, Application Security, Data Security, PKI & Encryption) at … the enterprise level. This role will have a significant impact by ensuring the implementation of key security projects using cutting-edge technologies. Key Responsibilities: Review and validate the architecture and design of new and existing projects (IT Infrastructure Projects, Applications) against industry standards, organization’s architecture principles, and design … patterns. Highlight risks and areas for improvement. Ensure adherence to applicable compliances, security policies, and regulatory requirements. Understand and document business requirements for cybersecurity projects, map them to functional/non-functional requirements, identify appropriate technologies, and evaluate market tools to meet business needs. Utilize knowledge of Secure Design more »

Application Security Tester - Leading Equity Trading Firm (Contract) Our client, a leading equity trading firm are looking to bring on an experienced Application Security Tester to join their team. They are running a Vulnerability Management and Application Security Testing program in which they are … looking to identify, and prioritise for remediation, security vulnerabilities in their IT infrastructure and applications. Key responsibilities: - Web Application Penetration Testing - Bespoke Thick Client Penetration Testing - Documentation - Automation - Secure Code Review - Security Tooling in CI/CD PLEASE REACH OUT IF THIS IS A ROLE THAT YOU … MIGHT BE INTERESTED IN Application Security Tester - Leading Equity Trading Firm (Contract more »

Elevate your career in Application Security with a leading software company in the heart of London. This esteemed organisation is seeking a dedicated professional to join their team on a flexible, three-day work week schedule, allowing for an enviable work-life balance. Role: The successful candidate will … company's software applications from potential threats and vulnerabilities. The position entails a blend of strategic thinking and hands-on technical work, ensuring the security integrity of software applications throughout the development lifecycle. Responsibilities: - Design, implement, and maintain application security measures - Conduct code reviews and vulnerability assessments … Collaborate with development teams to integrate security practices - Develop and enforce application security policies and procedures - Stay abreast of emerging security threats and countermeasures - Provide training and guidance to staff on security best practices Skills & Experience Required: - Proven experience in application security or more »

NO SPONSORSHIPS AT THIS TIME************* Role: Sr. Security Engineer with Architecture Knowledge Location: London, UK Experience: 7-10 years Salary: 60k – 70k GBP/year –Security Architect Service - Work with Architects to deliver Security designs/assurance for Projects –Manage escalations or guidance on extremely complex issues. … tasks to ensure the programme delivers against its’ commitments to key internal and external stakeholder groups Key Responsibilities Design and Implementation:  Develop and implement security architecture strategies and frameworks to protect organizational assets.  Design security solutions, including firewalls, IDS/IPS, VPNs, endpoint protection, and encryption systems.  Ensure … security architecture aligns with industry best practices and compliance requirements (e.g., GDPR, HIPAA, PCI-DSS) Risk Assessment and Management:  Conduct security risk assessments and vulnerability assessments to identify and mitigate security risks.  Develop and enforce security policies, standards, and guidelines.  Monitor and analyse security threats more »

Are you an accomplished Senior Security Engineer , with experience in a modern software-based platform environment? Would you relish the opportunity to work with one of the UK's leading independent Software houses , with a global footprint (but UK HQ), 500 staff & a focus on technical excellence? If so … we are looking for an experienced Senior Security Engineer to join our growing Security Ops team, working closely with DevOps teams, Dev' team & Product Engineering, to make sure security is at the heart of our technical process'. This role will cover a wide array of security … private and public cloud environments, as well as corporate domains and will require a skilled individual to spearhead efforts in fortifying both infrastructure and application platforms, against potential threats. Job title: Senior Security Engineer. Application Engineer, Cloud Security Engineer or similar! Salary: £85K – 90K Basic + more »

Overview: As a Senior Security Engineer for MUFG Pension & Market Services you will be part of the Global Security Architecture and Engineering team, helping to drive the Cybersecurity team and the business in current information security challenges across security technology control assessment, design, configuration, integration, documentation … make sure you know it’s the right role for you too. This means you’ll need the following skills: • A strong understanding of Application Security concepts and best practices, including agile methodologies and coding languages • Demonstrable experience in DevSecOps transformation, with experience in Security Operations, and … as a Security Engineer or similar technical role • Excellent knowledge of integration concepts, patterns and technologies • Experience with both successful and unsuccessful project implementations • Extensive experience across infrastructure domains (network, compute and storage) • Demonstrable experience across Cloud and infrastructure components (service, storage, network, data and applications), to deliver end more »

relationships. As the local Cyber management presence, provide guidance and support for the area. Key Tasks and Responsibilities: Review, analyze, design, and advise on security controls, configurations, and implementations for IT projects Continuously improve the integration and effectiveness of implemented technologies Maintain awareness of cybersecurity threats, events, tactics, techniques … tracking, remediation for identified cybersecurity operational weaknesses Identify, create and mature cybersecurity operations processes Work with IT risk assessment function to ensure the proper security configurations and controls are implemented for IT projects Provide pros/cons of security solutions impact business strategies Create documentation of findings and … CIRT) activities. Assign work to Cyber SOC for remediation Escalate pertinent findings in a timely manner Leverage vendors and internal resources to interface various security tools to automate critical response tasks Support Compliance managers in providing Cybersecurity artifacts Align information cybersecurity operations with NIST, and ISO 27001 requirements Establish more »

Title: Lead Product Security Engineer Location: Hybrid Remote (Central London Office); Sector: Finance/Retail, Apparel and Fashion Salary: Banding of £85,000 - 115,000 per year plus package (to be discussed during vetting call). Please note that to apply for this opportunity, you must be a British … may arise. Demonstrate exceptional communication skills, capable of effectively conveying information to both technical and non-technical key stakeholders. Own and manage the Information Security relationship with an identified portfolio of change initiatives within the organisation. Identify situations where additional Information Security support is required from areas such … as Security Architecture, Security Design, or Security Engineering, and facilitate the necessary engagement. Provide comprehensive security requirements and guidance to support the change activities within the assigned portfolio. Collaborate with the Governance, Risk, and Compliance (GRC) team to inform on risk, compliance, and assurance matters related more »

Microsoft Security Consultant Location:- Remote, visits to office locations/customers when required. Salary:- £60-70k + 10% Bonus + Bens dep on exp and certifications Environment:- Architecture, LLD, Implementation, Microsoft Defender, Microsoft Azure Security Centre, Azure, Intune, Endpoint Protection Platforms, EDR, SIEM, SOC, Risk Assessments, MDM … IAM, Customer Facing, Configuration. My client, a prestigious provider of managed services is looking to hire at Microsoft Security Consultant/Architect with strong LLD and Implementation skills. The ideal candidate will have a deep understanding of security principles, excellent problem-solving skills, and a proactive approach to … identifying and mitigating security risks. Day to Day Duties Include:- As a Security Consultant/Architect you will liaise with customers on a consultancy basis, designing bespoke solutions for communicated problems. Working with the wider Security team, you will oversee the implementation of solutions and will provide more »

Technical Information Security Consultant required for market-leading financial services firm. The role will be centred on ensuring security is delivered into a wide range of projects. There will be a focus on working closely with DevOps teams and embedding security throughout a software development life cycle. … Responsibilities: Act as the main security point of contact & SME for required projects Manage security risk for the whole project life cycle Perform security activities, including but not limited to, security design reviews, risk assessments, threat modelling, and vulnerability management and risk mitigation on internally & externally … developed software Embedding security within DevOps (eg CI/CD pipelines), developing security requirements On-demand Security assessment of various components like Web apps, Containers, Platforms etc Reviewing security assessment reports and create a remediation pipeline Experience in web application security assessments like SAST more »

Who we are looking for An Information Security Specialist who will focus on the technical side of IT Security, specifically looking at application security and code analysis to ensure applications are built securely. The Information Security team deal with the security of closed-sourced … open-source and in-house written applications. The objective is to ensure that systems and services are built with privacy and security by design. You will be working closely with the Software Development team, to confirm that application based vulnerabilities are understood and mitigated. This is done from … a security assessment point of view rather than code QA, therefore code reading skills are desirable. The team comprises of a variety of individuals, ranging from graduates to time served engineers with backgrounds as sys-admin, networks, service operation as well as security. We use first-class, enterprise-level more »

Who we are looking for An Information Security Specialist who will focus on the technical side of IT Security, specifically looking at application security and code analysis, ensuring applications are built securely. The Information Security team deal with the security of closed-sourced, open … source and in-house written applications. The objective is to ensure that systems and services are built with privacy and security by design. You will be working closely with the Software Development team, to confirm that application based vulnerabilities are understood and mitigated. This is done from a … security assessment point of view rather than code QA, therefore code reading skills are desirable. The team comprises of a variety of individuals, ranging from graduates to time served engineers with backgrounds as sys-admin, networks, service operation as well as security. We use first class, enterprise level tools more »

Who we are looking for An Information Security Specialist who will focus on the technical side of IT Security, specifically looking at application security and code analysis, ensuring applications are built securely. The Information Security team deal with the security of closed-sourced, open … source and in-house written applications. The objective is to ensure that systems and services are built with privacy and security by design. You will be working closely with the Software Development team, to confirm that application based vulnerabilities are understood and mitigated. This is done from a … security assessment point of view rather than code QA, therefore code reading skills are desirable. The team comprises of a variety of individuals, ranging from graduates to time served engineers with backgrounds as sys-admin, networks, service operation as well as security. We use first class, enterprise level tools more »

Who we are looking for A Senior Information Security Specialist to focus on the technical side of IT Security, specifically looking at application security and code analysis to ensure applications are built securely. The Information Security team deal with the security of closed sourced … open source and in house written applications. The objective is to ensure that systems and services are built with privacy and security by design. You will work closely with the Software Development team to confirm that application based vulnerabilities are understood and mitigated. This is done from a … security assessment point of view rather than code QA, therefore code reading skills are desirable. The team comprises of graduates to time served engineers with backgrounds as sys-admin, networks, service operation as well as security. We use first-class, enterprise-level tools to identify threats to the systems more »