1 to 25 of 46 Permanent Application Security Jobs in the UK excluding London

An exciting opportunity to join a leading company and play an influential part in their continued dedication to Application Security. At Tesco, the application security team’s strategy is to provide security tooling that fits seamlessly into software engineering teams ways of working, helping them find … and deal with security problems early within the software development process before it reaches production. In this role you will be responsible for helping to identify appropriate toolsets that fit with the application security team’s strategy, provide comprehensive guidance that allow engineering teams to effectively self … serve with our toolsets and help manage and maintain the chosen solutions. You are an application security expert with a strong engineering background and a curiosity about working collaboratively with the engineering teams. You communicate clearly, present reasonable security trade-offs to the business, and work to more »

Job Title: Mobile/Web Application Security Test Engineer Location: Hemel Hempstead/Hybrid Job Type : Permanent, Full-Time, Mon-Fri BSI have a fantastic career opportunity for an individual looking to undertake a rewarding career within the cyber security regulatory industry. Our testing teams are responsible … for testing a wide range of products to ensure they meet stringent security standards and certification requirements. In this role you will have the opportunity to test a wide range of products from our global clients, including big tech. Working within the regulatory landscape you will also have the … to keep abreast of the latest regulatory requirements, develop your expertise, and research new testing techniques to further expand our testing capabilities. As our Application Security Test Engineer, you be responsible for testing client mobile and web software applications in accordance to OWASP (ASVS/MASVS) frameworks. To more »

Positions: 1 Role Description: We are looking for an experienced ZTA Architect with 8 to 10 years of technical experience in two or three security domains (Network Security, IT Security, Cloud Security, Identity and Access Management, Application Security, Data Security, PKI & Encryption) at … the enterprise level. This role will have a significant impact by ensuring the implementation of key security projects using cutting-edge technologies. Key Responsibilities: Review and validate the architecture and design of new and existing projects (IT Infrastructure Projects, Applications) against industry standards, organization’s architecture principles, and design … patterns. Highlight risks and areas for improvement. Ensure adherence to applicable compliances, security policies, and regulatory requirements. Understand and document business requirements for cybersecurity projects, map them to functional/non-functional requirements, identify appropriate technologies, and evaluate market tools to meet business needs. Utilize knowledge of Secure Design more »

Microsoft Security Consultant Location:- Remote, visits to office locations/customers when required. Salary:- £60-70k + 10% Bonus + Bens dep on exp and certifications Environment:- Architecture, LLD, Implementation, Microsoft Defender, Microsoft Azure Security Centre, Azure, Intune, Endpoint Protection Platforms, EDR, SIEM, SOC, Risk Assessments, MDM … IAM, Customer Facing, Configuration. My client, a prestigious provider of managed services is looking to hire at Microsoft Security Consultant/Architect with strong LLD and Implementation skills. The ideal candidate will have a deep understanding of security principles, excellent problem-solving skills, and a proactive approach to … identifying and mitigating security risks. Day to Day Duties Include:- As a Security Consultant/Architect you will liaise with customers on a consultancy basis, designing bespoke solutions for communicated problems. Working with the wider Security team, you will oversee the implementation of solutions and will provide more »

Who we are looking for An Information Security Specialist who will focus on the technical side of IT Security, specifically looking at application security and code analysis to ensure applications are built securely. The Information Security team deal with the security of closed-sourced … open-source and in-house written applications. The objective is to ensure that systems and services are built with privacy and security by design. You will be working closely with the Software Development team, to confirm that application based vulnerabilities are understood and mitigated. This is done from … a security assessment point of view rather than code QA, therefore code reading skills are desirable. The team comprises of a variety of individuals, ranging from graduates to time served engineers with backgrounds as sys-admin, networks, service operation as well as security. We use first-class, enterprise-level more »

Who we are looking for An Information Security Specialist who will focus on the technical side of IT Security, specifically looking at application security and code analysis, ensuring applications are built securely. The Information Security team deal with the security of closed-sourced, open … source and in-house written applications. The objective is to ensure that systems and services are built with privacy and security by design. You will be working closely with the Software Development team, to confirm that application based vulnerabilities are understood and mitigated. This is done from a … security assessment point of view rather than code QA, therefore code reading skills are desirable. The team comprises of a variety of individuals, ranging from graduates to time served engineers with backgrounds as sys-admin, networks, service operation as well as security. We use first class, enterprise level tools more »

Who we are looking for An Information Security Specialist who will focus on the technical side of IT Security, specifically looking at application security and code analysis, ensuring applications are built securely. The Information Security team deal with the security of closed-sourced, open … source and in-house written applications. The objective is to ensure that systems and services are built with privacy and security by design. You will be working closely with the Software Development team, to confirm that application based vulnerabilities are understood and mitigated. This is done from a … security assessment point of view rather than code QA, therefore code reading skills are desirable. The team comprises of a variety of individuals, ranging from graduates to time served engineers with backgrounds as sys-admin, networks, service operation as well as security. We use first class, enterprise level tools more »

IT Security Engineer Glasgow - Hybrid working 3 days per week in the office £60,000 - £70,000 + benefits Fantastic new permanent opportunity for an experienced IT Security Engineer with a broad background within IT Infrastrucutre and security engineering and operations for this specialist financial services analytics … business based in Glasgow. As a specialist Security Engineer, you will work as part of their DevSecOps team based in Glasgow. The role will involve working closely with the wider technology teams to enhance their cyber maturity. Furthermore, it provides the opportunity to contribute towards the implementation and management … of various security technologies. Main responsibilities: Analysing security events and incidents relating to internal and customer assets. Designing and developing SIEM security use cases. Designing and implementing security controls and secure configurations. Maintaining proactive vulnerability scanning ensuring that all known vulnerabilities are addressed in line with more »

Who we are looking for A Senior Information Security Specialist to focus on the technical side of IT Security, specifically looking at application security and code analysis to ensure applications are built securely. The Information Security team deal with the security of closed sourced … open source and in house written applications. The objective is to ensure that systems and services are built with privacy and security by design. You will work closely with the Software Development team to confirm that application based vulnerabilities are understood and mitigated. This is done from a … security assessment point of view rather than code QA, therefore code reading skills are desirable. The team comprises of graduates to time served engineers with backgrounds as sys-admin, networks, service operation as well as security. We use first-class, enterprise-level tools to identify threats to the systems more »

Who we are looking for An Information Security Specialist who will focus on the technical side of IT Security, specifically looking at application security and code analysis to ensure applications are built securely. The Information Security team deal with the security of closed-sourced … open-source and in-house written applications. The objective is to ensure that systems and services are built with privacy and security by design. You will be working closely with the Software Development team, to confirm that application based vulnerabilities are understood and mitigated. This is done from … a security assessment point of view rather than code QA, therefore code reading skills are desirable. The team comprises of a variety of individuals, ranging from graduates to time served engineers with backgrounds as sys-admin, networks, service operation as well as security. We use first-class, enterprise-level more »

Are you a dynamic and adaptable professional with a passion for cyber security? Do you excel in providing expert guidance and innovative security solutions? If so, We are looking for you! The position is working for a high profile company and offers great benefits which include a car … allowance and bonus scheme along with much more. What the role will be doing: As a Cyber Security Consultant, you will have a diverse and challenging remit. Your flexibility and agility will be key as you switch between various security disciplines within the team. You will: Actively represent … the security organisation in business project initiatives, ensuring security requirements are considered throughout the project lifecycle. Collaborate with a broad range of stakeholders to articulate the security vision, principles, and governance/assurance standards. Provide security requirements and design input across multiple projects within Network and more »

in the UK. This is an exclusive opportunity to play a pivotal role in building secure, scalable infrastructure and pipelines, ensuring seamless integration of security measures throughout their web and mobile application development lifecycle. Key Responsibilities: Architect and maintain robust CI/CD pipelines for web and mobile … iOS and Android) applications, incorporating industry-leading security practices Champion Infrastructure as Code (IaC) principles to automate cloud-based infrastructure provisioning and management Collaborate with cross-functional teams to embed security controls into the SDLC, mitigating risks early in the development process Monitor and analyse security logs … respond promptly to potential threats, safeguarding applications and infrastructure Stay ahead of the curve by researching emerging technologies and trends in DevSecOps, continuously enhancing security posture Ideal Candidate: Proven track record as a DevSecOps Engineer or similar role, with expertise in web and mobile application security Proficiency more »

Cyber Security Engineer – Reading/Hybrid – Up to £50k + Benefits Cyber Security Engineer required to join the growing cyber security team at a large enterprise serving millions of customers! This organisation is making a big investment in cyber and there are lots of initiatives and projects … where you can make an impact and have your voice and opinions heard, then look no further! In this challenging and varied role Cyber Security Engineer role, you will be responsible for implementing and maintaining security solutions, controls and processes across this large-scale business which has over … users! This is a role where you will be able to fully utilise your good understanding of security engineering concepts, technologies and best practices, deploy tools and build and deliver capability. This role will also see you collaborate effectively with colleagues across a number of different teams. Amongst your more »

Security Engineer - Cloud/Appsec £600-£650 p.d Outside IR35 Occasional Travel to Leeds Office 3 Months + Likely extension Start Date - ASAP Key Responsibilities: Secure Configurations & Compliance Implementation: Planning and implementation of the Center for Internet Security Microsoft Dynamics 365 Power Platform benchmark. Planning and implementation of … the Center for Internet Security Microsoft 365 Foundations Benchmark. Collaborating with cloud and DevOps engineers to refactor Terraform code for secure configurations and compliance with the Center for Internet Security Microsoft Azure Foundations Benchmark. Work with colleagues to raise any required exceptions with Information Security Governance Risk … and Compliance so that any associated operational risk is identified, assessed and managed. Work with Security Operations to onboard Azure Landing Zones into Qualys Total Cloud and address any findings relating to non-compliance. Auditing configurations in order to plan remediations and verify compliance requirements are met. SIEM Integration more »

Henderson Scott has an urgent contract role for a Cyber Security Architect/Consultant. This is a long-term role and it's to support our clients flagship IT change initiatives that are currently under way. To apply we are looking for someone with the following expertise: - Conducting security … assessments and recommending appropriate controls to ensure services and systems operate within acceptable risk levels. Evaluating the impact of change initiatives and issuing necessary security requirements to ensure compliance with security policies and standards. Advising on the implementation of security controls, ensuring their design and approach achieve … the desired security outcomes and are operationally viable. Supporting change initiatives in utilising central security services, such as security monitoring, penetration testing, and access management. Ensuring security control requirements are met throughout the project life cycle, in collaboration with our Application Security Testing team. more »

Account Executive - £100k Base Salary + OTE 5 days a week in South Manchester office. The Role Selling enterprise web vulnerability scanning software to application security teams at some of the largest organizations in the world. Being the primary contact for qualified and non-qualified inbound leads and … scale sales operations, showcasing your mastery of the sales process needed to sell a market leading SaaS product. The Company A leading global cyber security company. Operating for over 2 decades and showing no signs of slowing down. You'll be working in a close knit team of … demonstrated through their quartely fine dining and social activitie such as Roxy's and Go Ape. Role Requirements 3+ years experience selling web and application security at enterprise level. Technical experience selling application and web based security. Proven record of exceeding targets within the SaaS, technology, or more »

Account Executive - £100k Base Salary + OTE 5 days a week in South Manchester office. The Role Selling enterprise web vulnerability scanning software to application security teams at some of the largest organizations in the world. Being the primary contact for qualified and non-qualified inbound leads and … scale sales operations, showcasing your mastery of the sales process needed to sell a market leading SaaS product. The Company A leading global cyber security company. Operating for over 2 decades and showing no signs of slowing down. You'll be working in a close knit team of … demonstrated through their quartely fine dining and social activitie such as Roxy's and Go Ape. Role Requirements 3+ years experience selling web and application security at enterprise level. Technical experience selling application and web based security. Proven record of exceeding targets within the SaaS, technology, or more »

The Fortune Group our recruiting for a Lead Security Engineer to join a FinTech organisation based in London to help implement multiple projects and create a first class secure environment. Suitable Lead Security Engineers will work remotely or in the London office. Projects that need to be completed … Security Awareness OpenSource Software scanning Automated Vulnerability Scanning Kubernetes Vulnerability Scanning Supply Chain monitoring (container images etc.) SIEM and Monitoring/Alerting service AntiVirus/AntiMalware for End User devices Antivirus/Malware/Ransomware etc for Product/Platform DDos Protection Access Management/Review (IAM) Threat modelling … Setup Bug Bounty program Application Security/Testing Brand monitoring (domans etc) Whitelist client access Encryption in Transit (confirm 100%) Social Engineering testing Spear Phishing Secure Code Training Pre-Release code analysis IDS/IPS Application/Infrastructure Hardening Advanced Penetration testing Essential experience Previous experience in more »

Information Security Officer (ISO) Location: Farnborough Salary: £45,000 DOE The Role The Information Security Officer (ISO) will be responsible for policies, standards and procedures that fall within the scope of the ISO27001 accreditation. The ISO will continually develop, implement, and oversee the organization's information security strategy, policies, and practices. The ISO also oversees security awareness training programs and manages security audits and compliance assessments. This role requires a deep understanding of information security principles, regulations, and best practices, as well as the ability to communicate and collaborate effectively with stakeholders across … the organization. Accountability The Information Security Officer (ISO) is accountable for maintaining the company ISMS and onward maintenance of ISO27001 certification. This includes keeping policies current and evidence up to date and involves marshalling other departments to ensure required procedures are followed and evidence provided, as well as organising more »

IAM Systems Security Engineer (digital) ABJ6891 South East c £49 to £61K + Bonus As an Identity and Access Management (IAM) engineer working a with a global digital technology you will support the planning, design, development, and deployment of centralized IAM solutions for the organization. As an IAM systems … digital technology team manages the entire IT business landscape from research and development through procurement, supply chain, manufacturing, HR and finance capabilities, Project Management, Application Maintenance and Support, Infrastructure Management, Cyber Security, and a range of enablement functions for IT including Budgeting, Finance, Vendor Management and Governance. The … operational procedures around PAM. Design and implement IAM solutions that ensure appropriate controls and tools are selected and then put into operation. Work with application owners to integrate application security and application roles with PAM. Qualifications/Experience Demonstratable experience in Identity and Access Management (IAM more »

Information Security Analyst required by an established technology company located in Farnborough. Having recently become ISO270001 accredited they are looking for an Information Security Analyst to take responsibility for the policies, standards and procedures that fall within the scope of the ISO27001 accreditation. The Information Security Analyst … will be responsible for Developing, maintaining and improving information security policies, procedures and standards Leading future ISO27001 audits both internal and external to ensure compliance Managing an annual penetration test via an external supplier Internal information security training including "lunch & learns" and onboarding new employees Key experience Proven … and maintaining the accreditation within an organisation Risk management Any experience in the following areas would be advantageous but is not essential OWASP DevSecOps Application security Cloud security Any other relevant standards ie ISO22301, ISO310000 etc If you are seeking a role of this nature please get more »

ongoing maturing and automation of foundation DevOps services provided for wider consumption across the organisation. Key Responsibilities: Work closely with the development teams, Operations, Security and Architects to build and maintain the Application deployment pipelines and to ensure all solutions are Secure by Design and Secure in Practice. … POCs and feasibility studies to validate next-gen product concepts and technologies leveraging results to guide business and technology decisions. Work closely with IT Security, Compliance, and Risk Teams to ensure all solutions are Secure by Design and Secure in Practice. Work with Scrum masters and product owners and … Services and Single -Sign on, Azure Virtual Networks, Subnet, Azure hybrid environment, Azure express route, Azure Routing, Azure Policy. Knowledge of Azure Administrator, Network security groups, Application Security Groups, Virtual Machine, Virtual machine scale sets, Backup and Restore for Virtual Machine, Recovery Services vaults, Azure Storage Account more »

Pro, Wireshark, Kali, C/C++, Cryptography Who are we? We are seeking a dynamic and resourceful individual to join our team as a Security Researcher. The ideal candidate will possess a unique blend of pragmatism, logical reasoning, creativity, and motivation to tackle complex problems in the field of … Demonstrate understanding of simple attacks such as buffer overflow and string format vulnerabilities. Explain mitigations and defences against these techniques. Desirable experience in web application security testing, iOS or Android system internals, and a solid grasp of cryptography. Enthusiastic about technology and actively pursues the field outside standard … of my colleagues will respond. By applying for this role, you give express consent for us to process & submit (subject to required skills) your application to our client in conjunction with this vacancy only. Also feel free to connect with me on LinkedIn, just search for Henry Clay-Davies. more »

Role: Application Manager Location: Birmingham Salary: £60,000 to £70,000/annum Are you ready to lead and innovate a team in the dynamic world of IT applications support? A large-scale engineering business in Birmingham is urgently seeking a new Application Manager to join their team. … You would be responsible for improving application support all across the business. In addition the organisation has a culture that encourages a healthy work/life balance through home working/hybrid working options and extended holidays. Experience/Knowledge: Previous experience as an Application Manager/Application Support Manager or similar Experience of leading and developing a team of applications support engineers Experience of application service improvement projects. A track record of improving application support levels and ensuring compliance with Service Level Agreements and KPIs. Able to maintain application security, compliance, and more »

Job Title - IT Infrastructure & Security Technician Location - Devizes, Wiltshire Salary - £45-50K DOE, plus bonuses Type - Permanent Hours - Fulltime, based onsite The Company My client is a leading manufacturing business located in the Southwest, and they manufacture precision parts, primarily serving the automotive, aerospace and power generation industries … be located within the Devizes sites but also covering the Bath site as and when required. The role: Within the role of IT Infrastructure & Security Technician, you will support all areas of the business, providing technical support and expertise to resolve IT issues, ensuring the smooth operation and the … new servers (Virtual and Physical) Secure access and availability to cloud-based systems (IAAS, PAAS, SAAS) Maintain patching of firmware, driver, operating system, and application security updates for the above technologies Routinely test and document the recovery process of implemented technologies. Manage the Endpoint security suite, including more »