26 to 50 of 101 Application Security Jobs in the UK

Who we are looking for A Senior Information Security Specialist to focus on the technical side of IT Security, specifically looking at application security and code analysis to ensure applications are built securely. The Information Security team deal with the security of closed sourced … open source and in house written applications. The objective is to ensure that systems and services are built with privacy and security by design. You will work closely with the Software Development team to confirm that application based vulnerabilities are understood and mitigated. This is done from a … security assessment point of view rather than code QA, therefore code reading skills are desirable. The team comprises of graduates to time served engineers with backgrounds as sys-admin, networks, service operation as well as security. We use first-class, enterprise-level tools to identify threats to the systems more »

Who we are looking for An Information Security Specialist who will focus on the technical side of IT Security, specifically looking at application security and code analysis to ensure applications are built securely. The Information Security team deal with the security of closed-sourced … open-source and in-house written applications. The objective is to ensure that systems and services are built with privacy and security by design. You will be working closely with the Software Development team, to confirm that application based vulnerabilities are understood and mitigated. This is done from … a security assessment point of view rather than code QA, therefore code reading skills are desirable. The team comprises of a variety of individuals, ranging from graduates to time served engineers with backgrounds as sys-admin, networks, service operation as well as security. We use first-class, enterprise-level more »

Established financial services firm seeks a Security specialist to join their product-focused security team as a Lead. In this role, you will be aligned to a product area and will be responsible for embedding security, including into projects and change programmes. This is a varied role … which will see you carrying out threat modelling, reviewing solution designs and challenging everything to uncover security issues. The role will require you to regularly engage and challenge key senior stakeholders. This is a hands on role which will see you considering aspects such as how the configuration and … build spec impact security. The successful candidate will have an excellent understanding of AWS cloud and will have worked in a relevant security role previously, such as cloud security engineering, product security, DevSecOps, application security, security architecture, or internal security consultancy. You should more »

Lead Security Architect - Application £80,000 - £95,000 + 10% bonus + benefits West Yorkshire/Hybrid Fruition IT are partnering with a UK national services provider who are going through change, and looking to bring in a skilled Architect to help them set direction and architecture roadmaps … Security. This is a newly created role within a structure of SME domain specialists. This a fantastic opportunity to really take ownership of the application security domain and really be autonomous within that space, own the process and the business unit. The role: Setting the direction and implementing … architecture roadmaps. Be the SME specialist for Application Security. Be autonomous within Application Security, take true ownership! Establish and advocate for security best practices. Take a lead, own the process and business unit. Act as the go-to expert, leveraging internal and external resources to deliver more »

of value to our 16.3 million Members and engage our 18,000 colleagues around new ways of working. We are looking for a (Senior) Security Consultant (dependant on skills and experience) to work in our Security Consultancy team. This role sits within our Security & Resilience function where … least two days per week, or if part time you'll spend 40% of your working time, at one of our offices. If your application is successful, your hiring manager will provide further details on how this works. You can also find out more about our approach to hybrid … working here. What you'll be doing As a Security Consultant you will be accountable for ensuring that services and change initiatives in the business areas you are aligned to are delivered in a secure and compliant manner. You’ll be working in a matrix manner with our business more »

Security Engineer/Terraform/KQL/Powershell/Azure/Security/DevSecOps/Application/Microsoft Defender Lead Security Engineer (Application) Salary: Up to £95,000 Location: Fully Remote (there is an office in zone 1 Central London if you prefer) Company: HealthTech … Lead Security Engineer/Terraform/KQL/Powershell/Azure/Security/DevSecOps/Application/Microsoft Defender An exciting opportunity for an experienced Application Security Engineer to work in a scale-up environment with a genuine tech for good client. This is … a brand-new team & a Greenfield project, you will Work alongside and provide security subject matter expertise to our development teams to ensure we design and develop secure systems. Role Description - Work with the development teams, across architecture, engineering and cloud, provide expert advice on embedding security in more »

is a leading bank who are looking to add a senior business analyst with a strong banking background, and experience with WAF and strong application security experience. The role: Work on projects related to Web Application Firewall (WAF), application security, or cyber security. Collaborate with … and contribute to successful project delivery. Good to have skills: Proven experience as a Business Analyst in the banking sector. Expertise in WAF projects, application security, or cyber security. Strong analytical and problem-solving skills. Excellent communication and stakeholder management abilities. Ability to work independently and as part more »

strong commitment to sustainability and good corporate citizenship, we have over 250,000 dedicated employees serving clients across 66 countries. About the role: Experienced Security Engineer - Cloud WAF who has expertise in web application security, content distribution and other IT infrastructure services. We expect the candidate to … experience with cloud services and their WAF controls, ideally including one or more of the following: AWS, Azure, and GCP Strong understanding of Web Application security attack methods and mitigations Proficiency in WAF tuning and configuration, coupled with a strong foundation in web security principles and practices. … Develop custom WAF rules and features, addressing gaps and enhancing overall security measures Capability to design and implement bespoke WAF processes and documentation, underpinned by a thorough understanding of web application security. Analytical skills to review and align platforms with MVP and Baseline Configurations, leveraging a deep knowledge more »

+ Bonus + Benefits Locke & McCloud are looking for an experienced DevSecOps Engineer to join our client who are actively building out their Security Engineering function. In this role you will be driving the capability and maturity of our clients DevSecOps function and will have the opportunity to lead … hands on experience specifically in the DevSecOps space and are looking to work on some super exciting projects, then please apply! Main responsibilities: Integrate security tools and processes into the DevOps pipeline to ensure secure code deployment and infrastructure management. Design and implement automated security testing, including static … code analysis, dynamic application security testing, and vulnerability scanning. Collaborate with development and operations teams to identify and mitigate security risks throughout the software development lifecycle. Implement and manage security controls for cloud environments in AWS and Azure, ensuring compliance with best practices and industry standards. more »

+ Bonus + Benefits Locke & McCloud are looking for an experienced DevSecOps Engineer to join our client who are actively building out their Security Engineering function. In this role you will be driving the capability and maturity of our clients DevSecOps function and will have the opportunity to lead … hands on experience specifically in the DevSecOps space and are looking to work on some super exciting projects, then please apply! Main responsibilities: Integrate security tools and processes into the DevOps pipeline to ensure secure code deployment and infrastructure management. Design and implement automated security testing, including static … code analysis, dynamic application security testing, and vulnerability scanning. Collaborate with development and operations teams to identify and mitigate security risks throughout the software development lifecycle. Implement and manage security controls for cloud environments in AWS and Azure, ensuring compliance with best practices and industry standards. more »

Senior Security Engineer Remote - occasional travel into London (need to be based in the UK) Up to 85,000 BOE + 9% bonus We are looking for a highly skilled and experienced Senior Security Engineer to join a dynamic and growing team for a leading SaaS technology company … customer conversations. About you You will play a crucial role in securing the organisations infrastructure, systems, and data against cyber threats. As a Senior Security Engineer, you will be responsible for designing, innovating, deploying, and maintaining security measures to safeguard their information assets. What you will be doing … You will be securing the existing infrastructure/application architecture. -You will act as a advocate for infrastructure/application Security Design. -You will be collaborating within cross-functional teams to lead security system design and deployment. (DevSecOps approach). -You will be reviewing new technologies more »

in the UK. This is an exclusive opportunity to play a pivotal role in building secure, scalable infrastructure and pipelines, ensuring seamless integration of security measures throughout their web and mobile application development lifecycle. Key Responsibilities: Architect and maintain robust CI/CD pipelines for web and mobile … iOS and Android) applications, incorporating industry-leading security practices Champion Infrastructure as Code (IaC) principles to automate cloud-based infrastructure provisioning and management Collaborate with cross-functional teams to embed security controls into the SDLC, mitigating risks early in the development process Monitor and analyse security logs … respond promptly to potential threats, safeguarding applications and infrastructure Stay ahead of the curve by researching emerging technologies and trends in DevSecOps, continuously enhancing security posture Ideal Candidate: Proven track record as a DevSecOps Engineer or similar role, with expertise in web and mobile application security Proficiency more »

Our client is looking for a Product Security Engineer to help ensure their range of software and hardware products continue to meet the latest security requirements. Key responsibilities: Drive security by design principles into the product development and deployment to help deliver more secure solutions. Contribute to … the strategy for how the products will continue to meet the latest security and privacy requirements. Identify and mitigate potential security vulnerabilities and threats as part of the SSDLC. Conduct security risk evaluation of the products and features. Conduct application security reviews and support the … wider team with security best practice, testing and troubleshooting. Own the security posture of the solution, overseeing application vulnerability management, incident response and recovery process, and ensuring mitigation and escalation approaches are in place. Skill & Experience Minimum of 3 years’ experience in a security engineering role more »

Security Business analyst 6 month initial contract Remote working - UK Based Purview are currently recruiting for a Business Analyst for one of our large banking clients within the financial sector. Position Overview: We are seeking a skilled Security Business Analyst with extensive experience in Web Application Firewalls … WAF) to join our cybersecurity team. The ideal candidate will possess a deep understanding of security protocols, risk management, and compliance requirements, with a particular focus on web application security. This role involves analysing security needs, developing strategic plans, and implementing WAF solutions to protect our digital … assets. Key Responsibilities: Security Analysis and Risk Management: Conduct comprehensive security assessments and risk analysis to identify potential vulnerabilities and threats to web applications. Collaborate with stakeholders to define security requirements and develop robust security policies and procedures. Web Application Firewall (WAF) Management: Design, deploy more »

Cyber Security Engineer – Reading/Hybrid – Up to £50k + Benefits Cyber Security Engineer required to join the growing cyber security team at a large enterprise serving millions of customers! This organisation is making a big investment in cyber and there are lots of initiatives and projects … where you can make an impact and have your voice and opinions heard, then look no further! In this challenging and varied role Cyber Security Engineer role, you will be responsible for implementing and maintaining security solutions, controls and processes across this large-scale business which has over … users! This is a role where you will be able to fully utilise your good understanding of security engineering concepts, technologies and best practices, deploy tools and build and deliver capability. This role will also see you collaborate effectively with colleagues across a number of different teams. Amongst your more »

Job Description: Cloud Security Engineer £450 - £500 Per Day Inside IR35 1 day per week on site in Central London Candidate MUST BE UK BASED & HAVE FULL UK RIGHT TO WORK SPONSORSHIP IS NOT PROVIDED FOR THIS ROLE Purpose of the Job As a Cloud Security Engineer, your … mission is to enhance and maintain the security posture of our Cloud environments, ensuring they are secure and compliant with industry best practices. In this key role, you will: Drive Strategic Projects: Collaborate on essential initiatives that shape the Cloud security landscape of our organization. Architect Security Solutions: Design and implement robust security measures to protect our Cloud infrastructure. Manage Risks: Identify, assess, and effectively manage Cloud security risks. Collaborate on Application Security: Partner with our Software Engineering teams to explore opportunities for enhanced security. Cross-Functional Cooperation: Work closely with other more »

Job Title: Principal Cyber Security Consultant Location: Remote (Occasional Client Visits) Salary: Up to £90,000 Clearance: Active SC required (DV is greatly desired, but not essential) F5 are delighted to be partnering with an award winning Cyber Security Consultancy that services within Defence & Security, Healthcare, Law … Enforcement, and Critical National Infrastructure. They are seeking an Principal level Cyber Security Consultant to join their rapidly growing team, with the ideal candidate having excellent technical knowledge & understanding of areas such as Cloud Security, Application Security, IDAM, and Network Security. Key Responsibilities: Building and managing … and expertise to enhance delivery output Act as a Subject Matter Expert across the client base Experience Required: Proven experience in delivering Technical Cyber Security Services within the Public Sector Excellent Security Architecture experience Knowledge of Secure Development practices (e.g. Secure By Design) Hold Active CISSP, CISM or more »

you have Test Lead experience and you’re seeking a new role in London, we want to hear from you. Cognizant is recruiting a Security Test Lead for a Government and Public Sector client, and the role comes with an attractive salary and benefits package. As a Security … you an idea of how this flexible role would look and feel, here are some of the things you could expect to do: Static application security testing using tools like Checkmarx, Veracode Dynamic application security testing using tools such as AppScan, WebInspect, etc False positive analysis … and working with Developers fixing security vulnerabilities End-to-end security testing. To apply for this Security Test Lead role, your soft skills, expertise and experience should include: Extensive experience in security testing with expertise in SAST using tools like Fortify, App Scan Source, Checkmarx, VeraCode more »

Your new company Opportunity to join a large Public Sector organisation within Manchester. Your new role Currently looking for a Security Architect with experience of working on Applications and Data Integrations to work on an IT Change initiatives programme. Will have a broad range of security knowledge and … best practice across multiple security domains including network security, identity and access management, data protection, application security and endpoint security. As well as experience in securing the delivery of IT change initiatives, an advantage would be experience of application delivery, business analytics, CRM tooling, IT … automation, App & Data integration and CMDB tooling. The right candidate will be able to identify the unique security requirements of change initiatives, communicate security needs effectively with a wide set of stakeholders and apply the concept of traceability in the work they deliver. What you'll need to more »

Cyber Security Architect On site in Manchester Inside IR35 6 Months Contract Overall Purpose of the Job The Security Architect is responsible for designing and implementing comprehensive and scalable security architectures for technology transformation initiatives. These architectures must embed and ensure that the concept of security by design is both visible and achievable in the IT projects delivered. The Security Architect will demonstrate how threats are mitigated, regulatory requirements are met, and that the delivered security controls are maintainable throughout the life of the project deliverables. The Person: The ideal candidate will possess … a broad range of security knowledge and best practices across multiple security domains, including network security, identity and access management, data protection, application security, and endpoint security. Experience in securing the delivery of IT change initiatives is essential, with additional experience in application delivery more »

Cyber Security Architect On site in Manchester Inside IR35 6 Months Contract Overall Purpose of the Job The Security Architect is responsible for designing and implementing comprehensive and scalable security architectures for technology transformation initiatives. These architectures must embed and ensure that the concept of security by design is both visible and achievable in the IT projects delivered. The Security Architect will demonstrate how threats are mitigated, regulatory requirements are met, and that the delivered security controls are maintainable throughout the life of the project deliverables. The Person: The ideal candidate will possess … a broad range of security knowledge and best practices across multiple security domains, including network security, identity and access management, data protection, application security, and endpoint security. Experience in securing the delivery of IT change initiatives is essential, with additional experience in application delivery more »

F5 Start date: ASAP Duration: £600--680 a day (deemed Inside IR35) Location: UK based - remote work Reference: 17687 Contract for an experienced WAF Security Engineer who can set up and configure rules, read and write policies using F5 and F5 technologies . Working for a consultancy providing WAF … and other stakeholders to resolve any issues so that implementation can be as seamless as possible. Ideal Engineer skills: Need extensive experience with Web Application Security log analysis and that is derived from a Cyber SOC/CSIRT work background who is willing to up-skill into a … CSPs (AWS/Azure/GCP) CORE SKILLS/TECHNICAL REQUIREMENT Strong experience with multiple WAF solutions for edge, cloud, and on-premise WAF security - set up rules, read and write policies usinf F5 and F5 technologies. Strong experience with cloud services and their WAF controls, ideally including one more »

A well-known software development company is looking to grow their London based cyber security team with talented Application Security Engineers. This will be 3 days per week in the office (central London). Hiring at multiple levels, you can expect a salary anywhere from … than 50% last year and use the most cutting edge technology available. If you're someone who is deeply technical and passionate about implementing security into the SDLC then I would love to speak with you. If you have expertise within software development/engineering and champion security … within your current role, you're very likely to be successful. You will be training developers on writing secure code, perform threat modelling and security testing of applications, run SAST, DAST, SCA and secret scanning tools, manage the bug bounty program and lead incident response for software bugs. Please more »

Security Engineer - Cloud/Appsec £600-£650 p.d Outside IR35 Occasional Travel to Leeds Office 3 Months + Likely extension Start Date - ASAP Key Responsibilities: Secure Configurations & Compliance Implementation: Planning and implementation of the Center for Internet Security Microsoft Dynamics 365 Power Platform benchmark. Planning and implementation of … the Center for Internet Security Microsoft 365 Foundations Benchmark. Collaborating with cloud and DevOps engineers to refactor Terraform code for secure configurations and compliance with the Center for Internet Security Microsoft Azure Foundations Benchmark. Work with colleagues to raise any required exceptions with Information Security Governance Risk … and Compliance so that any associated operational risk is identified, assessed and managed. Work with Security Operations to onboard Azure Landing Zones into Qualys Total Cloud and address any findings relating to non-compliance. Auditing configurations in order to plan remediations and verify compliance requirements are met. SIEM Integration more »

Henderson Scott has an urgent contract role for a Cyber Security Architect/Consultant. This is a long-term role and it's to support our clients flagship IT change initiatives that are currently under way. To apply we are looking for someone with the following expertise: - Conducting security … assessments and recommending appropriate controls to ensure services and systems operate within acceptable risk levels. Evaluating the impact of change initiatives and issuing necessary security requirements to ensure compliance with security policies and standards. Advising on the implementation of security controls, ensuring their design and approach achieve … the desired security outcomes and are operationally viable. Supporting change initiatives in utilising central security services, such as security monitoring, penetration testing, and access management. Ensuring security control requirements are met throughout the project life cycle, in collaboration with our Application Security Testing team. more »