1 to 25 of 114 Application Security Jobs in the UK

and forward-thinking company based in Greater London. We are dedicated to helping organizations protect their systems from cyber threats by providing effective cyber security solutions. Our approach involves challenging assumptions, verifying information, and delivering pragmatic and results-driven solutions. With a proven track record and strong client relationships … we are trusted by our clients to meet their goals. Role Description This is a full-time hybrid role for a Security Penetration Tester at Risk Crew. As a Security Penetration Tester, you will be responsible for conducting security assessments, performing vulnerability assessments and penetration testing, and … and network infrastructure. This role will be based in Greater London but will offer flexibility for some remote work. Qualifications Experience in Reverse Engineering, Application Security, and Red Teaming Knowledge of Malware Analysis and Cybersecurity Strong problem-solving and analytical skills Excellent communication and teamwork skills Relevant certifications more »

LEAD CYBER SECURITY CONSULTANT – READING – CONTRACT- HYBRID Lead Cyber Security Consultant Contract – 6 Months - Inside IR35 Location: Reading – 2 days onsite/week must The role of Cyber Security Consultant sits within the Cyber Security team which is responsible for providing subject matter expertise and guidance … building customer trust in a reliable network which matches the best, whilst ensuring compliance to regulatory requirements, company policy and standards. Experience with information security management frameworks (NIST, PCI, GDPR, ISO, OWASP, ITIL, ISF SoGP, COBIT) is essential. The role will involve supporting project managers in risk and issue … Experience in documenting and implementing processes, procedures, and architecture/design/decision templates is vital. Expertise and experience in technical domains ie hybrid security, infrastructure and data centre security, network security, application security, identity and access management, and vulnerability management are important. Experience of more »

Cyber Security Engineer - Remote - £110K Our client is a growing FinTech who are looking to hire an experienced Cyber Security Engineer. They are offering remote working . You will play a pivotal role in safeguarding their digital environment, employing advanced methods to fortify the security of financial … data and defend against cyber threats. You'll have the opportunity to own the security of the platform and cloud resources, including all applications and infrastructure. Requirements You'll need to work as a Cyber Security Engineer or similar role. Hands-on experience implementing security in the … of cryptographic standards, encryption protocols for example TLS, SSL, Symmetric, Hashing. Great stakeholder management Experience implementing compliance standards e.g.ISO27001 and or SOC2 Experience with application security and security operations. Cyber Security Engineer - Remote- £110K more »

Security Engineer/Terraform/KQL/Powershell/Azure/Security/DevSecOps/Application/Microsoft Defender Lead Security Engineer (Application) Salary: Up to £95,000 Location: Fully Remote (there is an office in zone 1 Central London if you prefer) Company: HealthTech … Lead Security Engineer/Terraform/KQL/Powershell/Azure/Security/DevSecOps/Application/Microsoft Defender An exciting opportunity for an experienced Application Security Engineer to work in a scale-up environment with a genuine tech for good client. This is … a brand-new team & a Greenfield project, you will Work alongside and provide security subject matter expertise to our development teams to ensure we design and develop secure systems. Role Description - Work with the development teams, across architecture, engineering and cloud, provide expert advice on embedding security in more »

experience with cloud services and their WAF controls, ideally including one or more of the following: AWS, Azure, and GCP • Strong understanding of Web Application security attack methods and mitigations • Proficiency in WAF tuning and configuration, coupled with a strong foundation in web security principles and practices. … Develop custom WAF rules and features, addressing gaps and enhancing overall security measures • Capability to design and implement bespoke WAF processes and documentation, underpinned by a thorough understanding of web application security. • Analytical skills to review and align platforms with MVP and Baseline Configurations, leveraging a deep knowledge … Providing DevSecOps pipeline maintenance support for the automation works • Familiarity with IDAM protocols and access control measures for WAF management, informed by strong web security knowledge. • Understanding of HTTPS inspection, including Termination and Certificate management, grounded in robust web security practices. • Experience in rate limiting techniques and their more »

You embrace ambiguity and enjoy exploring new technologies delivering robust, scalable solutions. Who are we? We are a world class team of high calibre security tool services Site Reliability Engineers. We are an inclusive and diverse team with a full spectrum of experience distributed globally. We have the resources … on a critical greenfield software assurance project collaboratively with our cloud and mobile engineering teams. The Software Assurance organisation has the mission to make application security and software assurance, at scale, a reality. We are a dedicated team, leveraging each other’s insights and abilities to produce cutting … product management and engineering requirements within a globally distributed team · Design, develop, implement and operate a third-party artifact repository · Evaluate and improve the security of the repository · Performance tune software application security tools to scale to application codebases with millions of lines of source code more »

on a wide variety of testing engagements with business across multiple industries. You will perform and support the main activities of my client's security testing services. You will individually provide and perform security testing, analysis, documentation, findings and remediation support to clients. You will also play a … assigned tasks. *REMOTE WORKING* *Client Site Travel Required* *£45,000 - £60,000 + benefits – DOE* Penetration Tester – Responsibilities: Delivery of high quality penetration testing, application security testing and red-team engagements Working on client site occasionally to deliver Internal Infrastructure, Wifi and Physical Testing engagements Assisting in proposal … engagements Using dedicated upskilling time to prepare for certifications the company will put you through including CTL Penetration Tester – Requirements: Excellent general penetration and application security testing skills, with some commercial experience in a similar role Must have CTM (Check Team Member) Certification Active SC clearance or above more »

and more than 300 SAP S/4HANA clients. Our clients trust our deep experience and proven approaches - all around the world. Our SAP Application Security team sits within the Value Acceleration Practice, one of the fastest growing practices in NTT DATA Business Solutions AG (NDBS). In … concepts and realise these together with an international and interdisciplinary team. You will advise our customers on the redesign and transformation of their existing security architecture and develop SAP security strategies together with them. You will design and implement modern and innovative security architecture solutions based on … SAP technologies (SAP Cloud and SAP S/4), which can also be part of hybrid architectures. You will analyse security and compliance gaps in SAP environments and develop solutions. You will support the implementation and use of Governance, Risk and Compliance (GRC solutions) in the customer’s IT more »

I am currently working with an exciting Software business looking for an Application Security Engineer in the UK to support a wider global security team. Working closely with the Application Security Manager and Engineering teams, we are looking for someone to provide expertise on a … range of services including secure coding techniques & reviews, Application Security awareness, integration of security into development lifecycles and more. Other responsibilities include: Provide guidance on Application Security & DevSecOps best practices Develop security testing plans and integrate security into the software development lifecycle Help … to deliver overall Application Security strategy Perform and oversee security testing and manage remediation of identified vulnerabilities. Collaborate with the architecture and development teams to review the design and code for security vulnerabilities. Manage aspects of an existing bug bounty program working with Security researchers more »

Senior Application Security Engineer - Hybrid - £125K One of our clients are on the search for a Senior Application Security Engineer, to join their expanding security function. They are based in Central London and are offering hybrid working. You are the ideal candidate if you: You … will have worked as a Application Security Engineer, preferably in the fintech industry. Have a deep understanding of web application security vulnerabilities, attack vectors, and mitigation strategies. Master the art of penetration testing with tools like Burp Suite, OWASP ZAP, and/or Kali Linux. Experience … with secure coding practices, threat modeling, and API security is highly desirable. Are a skilled communicator and collaborator, able to bridge the gap between technical and non-technical audiences. Senior Application Security Engineer - Hybrid - £125K more »

Senior Application Security Engineer - Hybrid - £500 Outside IR35 Our client who is a leading fintech are looking for a Senior Application Security Engineer. They are offering hybrid working with their offices located in Central London You will have the opportunity to foster the growth and advancement … of team members within the Application Security domain. You will also lead on threat modeling and conducting comprehensive security reviews of system designs. Skills Previously worked as an Application Security Engineer or similar position. Experience in either C#, Python, .Net, Java and or JavaScript/… Typescript. Knowledge of security and compliance frameworks and standards, e.g. OWASP, PCI-DSS, ISO 27001, GDPR. Strong knowledge of GitLab pipelines and Akamai security software is a major advantage. Experience in threat modelling and automated security testing. Senior Application Security Engineer - Hybrid - £500 Outside IR35 more »

London hybrid - £80,000 - £95,000 + Bonus + Benefits Locke & McCloud are looking for an experienced DevSecOps Specialist with a strong background in security architecture, cloud security, application security, and DevSecOps to join our client as they look to expand their cyber security engineering … function. This opportunity will allow you to step into an established, but growing security engineering function, lead and own various engineering initiatives, and work with some of the UK’s very best cyber security professionals! Main responsibilities: Design and implement security architecture for systems and applications. Develop … and maintain security policies, procedures, and standards. Implement and manage security controls and monitoring tools to detect and respond to security incidents. Work closely with development and operations teams to integrate security into the CI/CD pipeline and automate security testing and compliance checks. more »

excellent working knowledge of Windows server OS’s, Microsoft Exchange, virtualisation technologies, server applications, server hardware and cloud technologies. Provide technical leadership to infrastructure, application, and information security teams, ensuring best practices implementation and technological advancement alignment. You will oversee the design of IT Infrastructure including hardware, networking … storage, and virtualisation, ensuring infrastructure security, resilience and high performance and availability. You'll provide strategic oversight in the implementation of integrated applications and collaborate with application providers to align systems with business needs – introducing continuous improvements to enhance system robustness. You will build strong relationships with stakeholders … Licenses understanding and managing. Server Hardware configuration and builds both on premise and in the cloud. Mimecast design and implementation. FortiGate administration. Network and application security – best practice, RADIUS, ACL, IAM Wireless network design and implementation Miraki and Cisco switches administration. Manage solution design with 3rd party suppliers more »

Security Engineer/Terraform/KQL/Powershell/Azure/Security/DevSecOps/Application/Microsoft Defender Lead Security Engineer (Application) Salary: Up to £100,000 Location: Fully Remote (there is an office in zone 1 Central London if you prefer) Company: HealthTech … An exciting opportunity for an experienced Application Security Engineer to work in a scale-up environment with a genuine tech for good client. This is a brand-new team & a Greenfield project, you will Work alongside and provide security subject matter expertise to our development teams to … ensure we design and develop secure systems. Role Description - Work with the development teams, across architecture, engineering and cloud, provide expert advice on embedding security in our code and securing our development activities, Kubernetes and containers - Encourage a "shift-left mindset". - Implement and oversee Microsoft Defender - Utilise Terraform more »

key part within their Vulnerability Management division. Responsibilities Engineer a robust and proactive approach within the Vulnerability Management division of our client's Information Security team. Identify strategic risks and devise controls to mitigate external threats. Provide vital oversight to identify and manage critical risks. Step in to enhance … your PowerBI skills to the fore. Primarily focus on the physical infrastructure, with future opportunities targeting cloud environment advancements. Develop and implement measures ensuring application security. Foster an agile mindset and continuous improvement within the team. Master and utilise a suite of tools, including Qualys, PowerBI, and Veracode, to … need to have: Good understanding of frameworks such as OWASP, CVSS etc. Command a solid grasp of on-premise and cloud networking and network security devices. Exhibit a keen understanding of DDoS and WAF protection measures. Certified in CISM, CISSP, CSSLP or equivalent. Show ability to track, report on more »

Architecture Review, Threat modelling, Residual Risk assessments Provide secure solutions and mitigation controls for the identified risk for the development of new features within product, customer implementation and development platform Support for SAST and DAST and provide requirements for penetration more »

Senior Pen Tester/Application Security Tester 6 Month Contract Hybrid (occasional trips to the London office) Financial Services ASAP Start Date My Financial Services client is currently seeking for a Senior Penetration Tester to join the team. Responsibilities/Requirements: - Manually conduct application security testing … on web applications on prem and AWS cloud reporting issues - Manage DAST ans SAST scanning tools - 6 years + experience within the security testing field - Hands on experience testing and explaining OWASP top 10 vulnerabilities - Previously worked within the financial services industry Logistics: - 6 Month Rolling Contract more »

devices. Collaborate on the team's technical direction and refine its tools and processes. Enhance data monitoring and alerting systems while contributing to client application security. Requirements: Strong experience in development with Kotlin and Golang Strong understanding of development best practices (pair programming, TDD, CI/CD). Familiarity more »

materials, providing Power BI training, and championing adoption. * Hands-on experience with SQL querying and using APIs to retrieve data. * Experience implementing row-level security and understanding application security models in Power BI. * Proficient in implementing advanced calculations on datasets. * Microsoft certified Power BI data analyst associate more »

Are you an accomplished Senior Security Engineer , with experience in a modern software-based platform environment? Would you relish the opportunity to work with one of the UK's leading independent Software houses , with a global footprint (but UK HQ), 500 staff & a focus on technical excellence? If so … we are looking for an experienced Senior Security Engineer to join our growing Security Ops team, working closely with DevOps teams, Dev' team & Product Engineering, to make sure security is at the heart of our technical process'. This role will cover a wide array of security … private and public cloud environments, as well as corporate domains and will require a skilled individual to spearhead efforts in fortifying both infrastructure and application platforms, against potential threats. Job title: Senior Security Engineer. Application Engineer, Cloud Security Engineer or similar! Salary: £85K – 90K Basic + more »

Hi all, I'm helping helping a well established FS organisation find a talented AppSec engineer interested in joining a well-funded security function! The company is responsible for c.£80 billion in assets so security is seen as a true necessity and business enabler. Top be successful … in this role you will need experience with: Security engineering Working with dev teams Project work OWASP principles This is a FULLY REMOTE role, salary up to £70,000 + bonus & benefits (including 10% pension contribution!) If you could be interested please email your cv to and APPLY NOW more »

Security Architect/Consultant 6 months Remote £700 - £900 per day inside ir35 Common skill requirements: Work with internal application development and change teams to: Produce Threat models. Review and or input security to solution architecture and high level designs Advise and consult with development teams on … security matters Ensure compliance to internal standards and use of approved patterns Production of patterns or internal technical security standards as required Experience and background: Experience working in financially regulated enterprises and things like PCI Previous exposure to working with Developers, ie helping, understanding their problems, facing off … to them etc Previous experience of assuring and advising on secure systems design Common patterns and security design etc Good grasp of application security issues, knowing XSS vs SSRF for example. Know their way around OWASP T10 + API etc Good knowledge of cryptography (more than an more »

supporting SCADA systems and knowledge of MS SQL Server? We're looking for a SCADA Systems Support Engineer to ensure the availability, performance and security of a SCADA system controlling critical national rail infrastructure. The position will preferably be based in Warwick, but location can be flexible if the … and that all departmental Key Performance Indicators (KPIs) and Service Level Agreements (SLAs) are met. Maintaining a detailed understanding of how the SCADA system application operates and communicates with its controlled assets. Maintaining an up to date application user interface by providing live deployments to the application. Being … when required (enhanced payment is offered for this) Engaging with key stakeholders and suggest improvements to support capabilities. Proactively monitor the availability, performance, and security of a SCADA system. Addressing SCADA system issues either by resolving the issue, working with internal teams or external providers (such as suppliers of more »

Pro, Wireshark, Kali, C/C++, Cryptography Who are we? We are seeking a dynamic and resourceful individual to join our team as a Security Researcher. The ideal candidate will possess a unique blend of pragmatism, logical reasoning, creativity, and motivation to tackle complex problems in the field of … Demonstrate understanding of simple attacks such as buffer overflow and string format vulnerabilities. Explain mitigations and defences against these techniques. Desirable experience in web application security testing, iOS or Android system internals, and a solid grasp of cryptography. Enthusiastic about technology and actively pursues the field outside standard … of my colleagues will respond. By applying for this role, you give express consent for us to process & submit (subject to required skills) your application to our client in conjunction with this vacancy only. Also feel free to connect with me on LinkedIn, just search for Henry Clay-Davies. more »

up to £54,000 base + 40 days annual leave and a 14.5% pension. Hybrid working. Role Summary The primary responsibility of the Lead Application Analyst is to provide Application Management and Support for the business systems. As Service Owner for one or more services will be responsible … the acceptance criteria for service transition. The postholder will actively engage with project managers to ensure quality outputs within the agreed acceptance criteria. Manage application enhancements designed to improve business performance, maintain all associated documentation, investigates issues, and provides advice on application security, licensing, upgrades, backups, and more »