1 to 25 of 99 Permanent Application Security Jobs in the UK

London, United KingdomInformation Security/Full-time/HybridOur Product Security team works on secure-by-design and deep product partnership. We build strong relationships with other teams and help them build secure software. This includes reviewing early-stage designs, helping develop threat models.A World-Changing CompanyAt Palantir … applications. We are trusted by our customers to protect their mission-critical information in the face of advanced persistent threats. The mission of the Application Security Team is to enable developers to be highly productive, agile, and produce the most secure software possible. Given the mission critical work … that Palantir does, investments in application security have never been more important.As an Application Security Engineer, you will be hands-on and have wide-ranging impact for the security of Palantir:• Product security reviews. You will perform full-scope security reviews of our more »

and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments. Technical Security Consultant - International Travel - Middle East BAE Systems Digital Intelligence has been contracted to deliver a National Cyber Security Programme in the Middle East … is an exciting opportunity to join a best of breed capability delivery team that will deliver a National Programme to enhance a Nations Cyber Security posture. The role of 'Technical Security Consultant' is based in the UK with frequent business trips to the Middle East for … to 70% of effort could be required to be in company offices the remaining could be home working. About the job: As a 'Technical Security Consultant' you will be responsible for supporting the production of the technology design and the High Level Design for this National Cyber Security more »

connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments. Security Consultant - Policy Lead - Middle East BAE Systems Digital Intelligence has been contracted to deliver a National Cyber Security Programme in the Middle East … is an exciting opportunity to join a best of breed capability delivery team that will deliver a National Programme to enhance a Nations Cyber Security posture. The role is based in the Middle East on assignment for 12 months so there are no options for hybrid working as the … be spend on client site. As Policy Lead you will be responsible for the production and authoring of a range of National Level Cyber Security Policies including skills frameworks, certification and accreditation standards and the production of National Cyber Security Strategy. Other responsibilities include: The development of Key more »

connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments. Security Consultant - Workforce Architecture & Skills Lead - Middle East BAE Systems Digital Intelligence has been contracted to deliver a National Cyber Security Programme in the … is an exciting opportunity to join a best of breed capability delivery team that will deliver a National Programme to enhance a Nations Cyber Security posture. The role is based in the Middle East on assignment for 12 months so there are no options for hybrid working as the … client site. As Workforce Architecture and Skills Lead you will be responsible for the production and authoring of a range of National Level Cyber Security Policies including skills frameworks, certification and accreditation standards and the production of National Cyber Security Strategy. About the job: The Workforce Architecture Lead more »

relationships. As the local Cyber management presence, provide guidance and support for the area. Key Tasks and Responsibilities: Review, analyze, design, and advise on security controls, configurations, and implementations for IT projects Continuously improve the integration and effectiveness of implemented technologies Maintain awareness of cybersecurity threats, events, tactics, techniques … tracking, remediation for identified cybersecurity operational weaknesses Identify, create and mature cybersecurity operations processes Work with IT risk assessment function to ensure the proper security configurations and controls are implemented for IT projects Provide pros/cons of security solutions impact business strategies Create documentation of findings and … CIRT) activities. Assign work to Cyber SOC for remediation Escalate pertinent findings in a timely manner Leverage vendors and internal resources to interface various security tools to automate critical response tasks Support Compliance managers in providing Cybersecurity artifacts Align information cybersecurity operations with NIST, and ISO 27001 requirements Establish more »

Security Engineer - Cloud/Appsec £600-£650 p.d Outside IR35 Occasional Travel to Leeds Office 3 Months + Likely extension Start Date - ASAP Key Responsibilities: Secure Configurations & Compliance Implementation: Planning and implementation of the Center for Internet Security Microsoft Dynamics 365 Power Platform benchmark. Planning and implementation of … the Center for Internet Security Microsoft 365 Foundations Benchmark. Collaborating with cloud and DevOps engineers to refactor Terraform code for secure configurations and compliance with the Center for Internet Security Microsoft Azure Foundations Benchmark. Work with colleagues to raise any required exceptions with Information Security Governance Risk … and Compliance so that any associated operational risk is identified, assessed and managed. Work with Security Operations to onboard Azure Landing Zones into Qualys Total Cloud and address any findings relating to non-compliance. Auditing configurations in order to plan remediations and verify compliance requirements are met. SIEM Integration more »

Lead Security Architect - Application £80,000 - £95,000 + 10% bonus + benefits West Yorkshire/Hybrid Fruition IT are partnering with a UK national services provider who are going through change, and looking to bring in a skilled Architect to help them set direction and architecture roadmaps … Security. This is a newly created role within a structure of SME domain specialists. This a fantastic opportunity to really take ownership of the application security domain and really be autonomous within that space, own the process and the business unit. The role: Setting the direction and implementing … architecture roadmaps. Be the SME specialist for Application Security. Be autonomous within Application Security, take true ownership! Establish and advocate for security best practices. Take a lead, own the process and business unit. Act as the go-to expert, leveraging internal and external resources to deliver more »

Senior Security Engineer Remote - occasional travel into London (need to be based in the UK) Up to 85,000 BOE + 9% bonus We are looking for a highly skilled and experienced Senior Security Engineer to join a dynamic and growing team for a leading SaaS technology company … customer conversations. About you You will play a crucial role in securing the organisations infrastructure, systems, and data against cyber threats. As a Senior Security Engineer, you will be responsible for designing, innovating, deploying, and maintaining security measures to safeguard their information assets. What you will be doing … You will be securing the existing infrastructure/application architecture. -You will act as a advocate for infrastructure/application Security Design. -You will be collaborating within cross-functional teams to lead security system design and deployment. (DevSecOps approach). -You will be reviewing new technologies more »

A well-known software development company is looking to grow their London based cyber security team with talented Application Security Engineers. This will be 3 days per week in the office (central London). Hiring at multiple levels, you can expect a salary anywhere from … than 50% last year and use the most cutting edge technology available. If you're someone who is deeply technical and passionate about implementing security into the SDLC then I would love to speak with you. If you have expertise within software development/engineering and champion security … within your current role, you're very likely to be successful. You will be training developers on writing secure code, perform threat modelling and security testing of applications, run SAST, DAST, SCA and secret scanning tools, manage the bug bounty program and lead incident response for software bugs. Please more »

Information Security Officer (ISO) Location: Farnborough Salary: £45,000 DOE The Role The Information Security Officer (ISO) will be responsible for policies, standards and procedures that fall within the scope of the ISO27001 accreditation. The ISO will continually develop, implement, and oversee the organization's information security strategy, policies, and practices. The ISO also oversees security awareness training programs and manages security audits and compliance assessments. This role requires a deep understanding of information security principles, regulations, and best practices, as well as the ability to communicate and collaborate effectively with stakeholders across … the organization. Accountability The Information Security Officer (ISO) is accountable for maintaining the company ISMS and onward maintenance of ISO27001 certification. This includes keeping policies current and evidence up to date and involves marshalling other departments to ensure required procedures are followed and evidence provided, as well as organising more »

APIs such as Mapbox, Turf.js, QGIS, GDAL, and PostGIS. Familiarity with Docker, Microsoft Azure, CI/CD pipelines, and Kubernetes. Strong understanding of web application security practices. Proficient in using Git in a team environment and familiar with agile project management tools like Jira, Trello, Azure DevOps, etc. more »

Our client is looking for a Product Security Engineer to help ensure their range of software and hardware products continue to meet the latest security requirements. Key responsibilities: Drive security by design principles into the product development and deployment to help deliver more secure solutions. Contribute to … the strategy for how the products will continue to meet the latest security and privacy requirements. Identify and mitigate potential security vulnerabilities and threats as part of the SSDLC. Conduct security risk evaluation of the products and features. Conduct application security reviews and support the … wider team with security best practice, testing and troubleshooting. Own the security posture of the solution, overseeing application vulnerability management, incident response and recovery process, and ensuring mitigation and escalation approaches are in place. Skill & Experience Minimum of 3 years’ experience in a security engineering role more »

in the UK. This is an exclusive opportunity to play a pivotal role in building secure, scalable infrastructure and pipelines, ensuring seamless integration of security measures throughout their web and mobile application development lifecycle. Key Responsibilities: Architect and maintain robust CI/CD pipelines for web and mobile … iOS and Android) applications, incorporating industry-leading security practices Champion Infrastructure as Code (IaC) principles to automate cloud-based infrastructure provisioning and management Collaborate with cross-functional teams to embed security controls into the SDLC, mitigating risks early in the development process Monitor and analyse security logs … respond promptly to potential threats, safeguarding applications and infrastructure Stay ahead of the curve by researching emerging technologies and trends in DevSecOps, continuously enhancing security posture Ideal Candidate: Proven track record as a DevSecOps Engineer or similar role, with expertise in web and mobile application security Proficiency more »

Security Business analyst 6 month initial contract Remote working - UK Based Purview are currently recruiting for a Business Analyst for one of our large banking clients within the financial sector. Position Overview: We are seeking a skilled Security Business Analyst with extensive experience in Web Application Firewalls … WAF) to join our cybersecurity team. The ideal candidate will possess a deep understanding of security protocols, risk management, and compliance requirements, with a particular focus on web application security. This role involves analysing security needs, developing strategic plans, and implementing WAF solutions to protect our digital … assets. Key Responsibilities: Security Analysis and Risk Management: Conduct comprehensive security assessments and risk analysis to identify potential vulnerabilities and threats to web applications. Collaborate with stakeholders to define security requirements and develop robust security policies and procedures. Web Application Firewall (WAF) Management: Design, deploy more »

Account Executive - £100k Base Salary + OTE 5 days a week in South Manchester office. The Role Selling enterprise web vulnerability scanning software to application security teams at some of the largest organizations in the world. Being the primary contact for qualified and non-qualified inbound leads and … scale sales operations, showcasing your mastery of the sales process needed to sell a market leading SaaS product. The Company A leading global cyber security company. Operating for over 2 decades and showing no signs of slowing down. You'll be working in a close knit team of … demonstrated through their quartely fine dining and social activitie such as Roxy's and Go Ape. Role Requirements 3+ years experience selling web and application security at enterprise level. Technical experience selling application and web based security. Proven record of exceeding targets within the SaaS, technology, or more »

a global provider of information-based analytics and decision tools for professional and business customers About the Role We are looking for an experienced Application Security Leader to lead the Application Security discipline across RX Global. The Security Application Leader will play a critical … role in ensuring that all applications are developed, deployed, and maintained with security as a top priority, helping to protect sensitive data, mitigate risks, and maintain the trust of customers and stakeholders Responsibilities Conducting assessments of applications (web, cloud, mobile, API) using range of manual and automated source code … review techniques (PASTA and STRIDE) Working with development teams to analyse,evaluate and enhance the effectiveness of their application/product security posture at all levels. Owning and administration of security tooling such as Sonarcube, Acunetix, Dtrack, and others Collaborating with respective peer groups to safeguard company more »

Senior IT Security Analyst Up to £60,000 Hybrid – 2 days per week at either the London, Weymouth, or Newcastle offices We are representing a leading B2C retailer who are in the process of modernising their technology estate, with significant investment in IT. As the Senior IT Security Analyst, you will report to the Head of Information Security, whilst leading a team of two IT Security Analysts. You will be the SME for technical security, have the responsibility for the managed SOC and associated vendor relationships, as well as the vulnerability, penetration, and application security testing. We are looking for: Proven experience with incident management and the ability to lead on this Experience leading and managing a team Prior experience managing a 3rd party It would be a bonus if you had: Previous experience/knowledge of the Retail or eCommerce space more »

Positions: 1 Role Description: We are looking for an experienced ZTA Architect with 8 to 10 years of technical experience in two or three security domains (Network Security, IT Security, Cloud Security, Identity and Access Management, Application Security, Data Security, PKI & Encryption) at … the enterprise level. This role will have a significant impact by ensuring the implementation of key security projects using cutting-edge technologies. Key Responsibilities: Review and validate the architecture and design of new and existing projects (IT Infrastructure Projects, Applications) against industry standards, organization’s architecture principles, and design … patterns. Highlight risks and areas for improvement. Ensure adherence to applicable compliances, security policies, and regulatory requirements. Understand and document business requirements for cybersecurity projects, map them to functional/non-functional requirements, identify appropriate technologies, and evaluate market tools to meet business needs. Utilize knowledge of Secure Design more »

THE COMPANY: Our client is a leading international banking group based in the City. They are looking for an Information Security Assistant Manager to join the Business. THE RESPONSIBILITIES: Support for the oversight of the state of information security and cybersecurity and provide periodic reports (at least annually … on the state of information security to/Top management Adopt, implement and update Cybersecurity policies, rules, processes and procedures in line with Head Office regulatory Framework In reporting to the Top Management, considers to the extent applicable the confidentiality of Non-public Information and the integrity and security of Information Systems, the cybersecurity policies and procedures, the material cyber risks, the overall effectiveness of information security and cybersecurity program and possible material cybersecurity events involving the branch Work strategically with Head Office to ensure that all aspects of information security and cybersecurity are properly monitored more »

+ Bonus + Benefits Locke & McCloud are looking for an experienced DevSecOps Engineer to join our client who are actively building out their Security Engineering function. In this role you will be driving the capability and maturity of our clients DevSecOps function and will have the opportunity to lead … hands on experience specifically in the DevSecOps space and are looking to work on some super exciting projects, then please apply! Main responsibilities: Integrate security tools and processes into the DevOps pipeline to ensure secure code deployment and infrastructure management. Design and implement automated security testing, including static … code analysis, dynamic application security testing, and vulnerability scanning. Collaborate with development and operations teams to identify and mitigate security risks throughout the software development lifecycle. Implement and manage security controls for cloud environments in AWS and Azure, ensuring compliance with best practices and industry standards. more »

Lead Security Software Engineer We are seeking a software-focused Lead Security Engineer to join a 1Billion user social media giant, dealing with the complexity of mega scale systems and infrastructure. The Security group come from diverse technical backgrounds, Reliability, Software Engineering and Security Engineering, and … have a broad remit ensuring high availability and performance, and currently have a particular focus on security system efficiency, monitoring and sustainability, looking at threat intelligence, IAM, data and application security across the Kubernetes and Linux based environments. They are very open to background, but tend to … worked in securing large scale post-production container based environments, and who are comfortable with complex Linux challenges. We are looking for a Lead Security Engineer with: A background in Cybersecurity, anywhere ranging from system level to the application layer Strong software engineering experience, with proficiency in at more »

+ Bonus + Benefits Locke & McCloud are looking for an experienced DevSecOps Engineer to join our client who are actively building out their Security Engineering function. In this role you will be driving the capability and maturity of our clients DevSecOps function and will have the opportunity to lead … hands on experience specifically in the DevSecOps space and are looking to work on some super exciting projects, then please apply! Main responsibilities: Integrate security tools and processes into the DevOps pipeline to ensure secure code deployment and infrastructure management. Design and implement automated security testing, including static … code analysis, dynamic application security testing, and vulnerability scanning. Collaborate with development and operations teams to identify and mitigate security risks throughout the software development lifecycle. Implement and manage security controls for cloud environments in AWS and Azure, ensuring compliance with best practices and industry standards. more »

Spring boot, Micro-services, Kubernetes/Docker and Authorization The candidate should be able to demonstrate experience with: • Minimum 7 year experience with strong application development on Java/JEE platform, open-source technologies with any cloud background (GCP/AWS/Azure) • 3+ years of experience in a … spring framework, spring boot and REST API development with data processing and storage solutions on GCP/AWS/Azure • Hands on experience on application security implementation, SAML, OAuth 2.0 API Security and fair understanding of deployments on POD. · Fair understanding of web frameworks, java script technologies more »

you have Test Lead experience and you’re seeking a new role in London, we want to hear from you. Cognizant is recruiting a Security Test Lead for a Government and Public Sector client, and the role comes with an attractive salary and benefits package. As a Security … you an idea of how this flexible role would look and feel, here are some of the things you could expect to do: Static application security testing using tools like Checkmarx, Veracode Dynamic application security testing using tools such as AppScan, WebInspect, etc False positive analysis … and working with Developers fixing security vulnerabilities End-to-end security testing. To apply for this Security Test Lead role, your soft skills, expertise and experience should include: Extensive experience in security testing with expertise in SAST using tools like Fortify, App Scan Source, Checkmarx, VeraCode more »

Elevate your career in Application Security with a leading software company in the heart of London. This esteemed organisation is seeking a dedicated professional to join their team on a flexible, three-day work week schedule, allowing for an enviable work-life balance. Role: The successful candidate will … company's software applications from potential threats and vulnerabilities. The position entails a blend of strategic thinking and hands-on technical work, ensuring the security integrity of software applications throughout the development lifecycle. Responsibilities: - Design, implement, and maintain application security measures - Conduct code reviews and vulnerability assessments … Collaborate with development teams to integrate security practices - Develop and enforce application security policies and procedures - Stay abreast of emerging security threats and countermeasures - Provide training and guidance to staff on security best practices Skills & Experience Required: - Proven experience in application security or more »