1 to 25 of 34 Application Security Jobs in the South East

heart of our digital transformation. As we continue to grow and innovate, securing our applications and protecting customer data is a top priority. We are looking for a Senior Application Security Engineer to lead our efforts in strengthening application security, mitigating risks, and ensuring best-in-class security practices. If you are passionate about cybersecurity … and eager to make a real impact, we want you on our team! Key Responsibilities: Security Strategy: Help define and execute the Holland & Barrett application security strategy. Collaborate with both tech and non-tech teams to integrate security principles into the early stages of product design and development. Secure SLDC: Establish a secure Software Development Lifecycle … software integrity, authenticity, and third-party library management. Risk Assessments: Conduct risk assessments, threat modeling, and architecture reviews alongside development teams, producing artifacts to drive the implementation of effective security controls. Standards Development: Own the creation and maintenance of tailored security standards and guidelines, developing reusable resources for various development teams. Team Support: Provide guidance and support to More ❯

touch millions and get the opportunity to build the future of finance with Citi Tech. Description: The position is a cross-functional role that will be responsible for various Application Security program initiatives. The position reports directly to the Application Security Program Director. The successful candidate must be an individual who understands modern software development trends … understands engineering-led software security practices, and keeps up with the evolving cyber security threat landscape. Key Responsibilities: The candidate will be responsible for the aspects of the Application Security Program initiatives including but not limited to the following: Establish/manage multiple security programs that support the security testing requirements at the bank … Forging and maintaining strong working relationships with development functions/teams, product delivery teams, project management, third party management, enterprise architecture, audit teams, etc. Participate in security and technology strategic planning to ensure identified risk governance is incorporated into the CISO enterprise strategy. In partnership with business sectors, run delegate action groups to provide recommendations to strengthen development processes More ❯

Principle Security Architect £120000 GBP Onsite WORKING Location: Chelmsford, East of England - United Kingdom Type: Permanent Application Security Architect UK-Wide (London optional) Up to £120,000 + Package - Permanent We're looking for a seasoned Security Architect with a strong focus on application security and a proven track record in consulting. This is … an opportunity to work across complex public sector programmes, helping organisations design secure applications while influencing strategy and best practice across the practice. What you'll be doing: Leading application security architecture for high-profile public sector clients. Advising on and implementing secure development practices aligned with OWASP, threat modelling, and secure SDLC frameworks. Supporting pre-sales, solution … design, and client engagements across consulting projects. Mentoring and upskilling client teams and internal consultants on application security. Experience required: Consulting experience in application security architecture, preferably with exposure to public sector clients. Deep knowledge of OWASP Top 10, secure coding practices, threat modelling, and vulnerability management. Experience influencing design and security strategy across large programmes. More ❯

Senior Application Security Engineer | Permanent | UK (Hybrid - a few times per month) | £84k We're working with a forward-thinking professional services firm on a key hire to embed security into every part of their digital product journey. They're looking for a Senior Application Security Engineer to drive secure-by-design principles across new … and evolving applications and act as a Subject Matter Expert for software security across the business. This is a high-impact role in a collaborative, ambitious, and people-focused IT team. You'll play a hands-on role, shaping security culture, guiding engineering teams, and ensuring that security is integrated into every stage of the software development … lifecycle. What you'll be doing: Leading the cultural shift towards secure software development across product teams Defining and implementing the software security strategy in line with business goals Collaborating with developers to automate security testing and embed security requirements into the SDLC Supporting penetration testing, vulnerability management, and remediation efforts Acting as a software security More ❯

the impregnability of the clients critical digital assets. This includes securing public-facing portals, safeguarding the vital infrastructure links between Aramco and Saudi government projects, and developing a proactive security posture that anticipates future threats. You are not just a manager; you are a player-coach and a strategic thinker. We are looking for someone currently in a Team … Responsibilities: Practice Leadership: Define the strategic vision, methodologies, and service offerings for our cybersecurity vertical. Hands-On Technical Delivery: Lead the architecture, design, and hands-on implementation of robust security solutions for critical systems. This includes application security, network security, and infrastructure hardening. Client Liaison: Act as a trusted security advisor to our key stakeholders … of experience in cybersecurity, with at least 2+ years in a Team Lead or Manager capacity. You possess deep, hands-on expertise in areas like Application Security (AppSec), Cloud Security, and DevSecOps. You have experience with security frameworks (NIST, ISO 27001) and a proven track record of securing large-scale, high-availability systems. You are adept More ❯

Infosum is looking for a Junior Application Security Engineer with a keen interest in application and cloud security. This role is perfect for someone early in their career who wants to develop hands-on experience in securing SaaS platforms. You'll be supported by senior engineers while learning how to test applications, uncover vulnerabilities, and embed secure … by-design practices into products. This position is based in Basingstoke with two days a week onsite. What you'll do Assist with application security testing across web apps, APIs, and cloud infrastructure. Support penetration testing and help document findings and recommendations. Work closely with developers to learn how to identify and remediate security issues. Contribute to … threat modeling and risk assessments under the guidance of senior engineers. Gain practical experience with security testing tools and automation. Stay up to date with emerging application and cloud security threats and share insights with the team. Requirements What we're looking for Some exposure to application or cloud security (through university, training or internships More ❯

Job Description CISO Solution Architect Division: Chief Information Security Office (CISO) Location: London Office Employment Type: Permanent, Full-Time Department: Security Architecture – CISO Reports To: Principal Architect About Euroclear's CISO Division As a global financial infrastructure, Euroclear places information security at the heart of its operations. The CISO division is responsible for implementing controls that protect … digital assets, ensuring resilience, compliance, and innovation across all business and IT domains Role Overview The CISO Solution Architect plays a pivotal role in designing and implementing enterprise-wide security architecture. This position bridges technical and business teams, translating security requirements into actionable designs that support secure development lifecycles. The architect ensures that solutions are scalable, compliant, and … aligned with Euroclear's strategic goals Key Responsibilities Design and implement security solutions aligned with enterprise architecture frameworks. Provide technical security guidance to IT and business teams. Collaborate with Security Engineering to develop high-level security designs for new applications and platforms. Define architecture principles, tools, and standards for the assigned security domain (e.g., Cloud More ❯

About the Company Page Outsourcing is partnered with a fast-growing financial services organisation to recruit an Information Security Manager. This is an exciting opportunity to shape and strengthen the organisation's security posture, working in a highly regulated environment at the cutting edge of cross-border payments and financial technology. About the Role As Information Security … secure solutions. This is both a hands-on technical role and a strategic leadership position, ideal for someone who thrives on balancing detail with big-picture thinking. Responsibilities Embed security best practices into business and technology projects. Manage penetration testing and vulnerability assessments, ensuring remediation. Drive application security standards and work closely with engineering teams. Conduct risk … assessments across new initiatives, threats, and changes. Lead third-party vendor risk assessments and ongoing reviews. Support security incident response and continuous process improvement. Align policies and controls with industry frameworks such as ISO 27001, Cyber Essentials, NIST CSF, and SWIFT. Communicate effectively with senior stakeholders, technical teams, and auditors. Qualifications Strong background in information security, ideally within More ❯

Role: Senior Cyber Security Engineer (Cyber SME) Salary: Up to £70,000 Location: Reading/Birmingham - Hybrid (1 day/week in office) Be the Cyber Security Subject Matter Expert protecting the backbone of our business.Are you a highly skilled cyber security professional ready to take ownership of security engineering and infrastructure hardening? We're looking … for a Senior Cyber Security Engineer to join our team and act as the go-to expert for all things security.Reporting to the head of security, you'll play a critical role in protecting our infrastructure, networks, and data, while guiding teams across the business with your deep technical expertise. What You'll Do Serve as the Cyber … Security Subject Matter Expert, advising on secure systems design, change control, and implementation of robust security controls. Lead the technical vulnerability management programme, with a strong focus on application security, web application firewalls, and secure DevOps pipelines. Provide security leadership and mentoring , supporting colleagues and enhancing security awareness across the business. Actively contribute More ❯

About the role: Join Our Team at Holland & Barrett! Are you passionate about cloud security and looking to make a significant impact? Holland & Barrett is seeking a Cloud Security Specialist to help us define and implement our cloud security strategy. If you're an experienced professional eager to work with cutting-edge technology and collaborate with diverse … teams, we want to hear from you! Key Responsibilities: Security Strategy: Help define and execute the Holland & Barrett cloud security strategy, partnering with platform and Site Reliability Engineering (SRE) teams to build robust infrastructure that supports our business. Perimeter Security: Establish platform perimeter security by implementing controls at ingress and egress points, including creating and maintaining … an edge network with a Web Application Firewall (WAF), Distributed Denial of Service (DDoS) protection, and a Content Delivery Network (CDN). Access Control: Establish an access control baseline focusing on the principle of least privilege and segregation of duties. Monitor and enforce these controls once roles and permissions are set. Security Controls: Design, implement, and maintain security More ❯

Technical Azure Security Engineer - Audit Technology £60,000 - £70,000 GBP Hybrid WORKING Location: Central London, Greater London - United Kingdom Type: Permanent Location: London Salary: £70,000 Contract Type: Permanent, Full-Time Shape the future of audit through secure cloud engineering. Join a high-impact technology team delivering secure, scalable solutions for a leading audit platform. This is a … hands-on, delivery-focused role embedded within a cloud-native engineering group, with a dotted-line relationship to a central security architecture function to ensure alignment with governance and standards. Your Impact As a trusted security engineer, you will: Secure CI/CD pipelines and infrastructure-as-code (IaC) deployments across Azure. Lead container, API, and web application security initiatives, including code reviews. Support threat modelling, vulnerability management, and penetration testing activities. Drive logging integration with SIEM tools, enabling SOC monitoring and incident response. Coach engineering teams on cloud security principles and manage audit-related actions. What You'll Bring Essential Skills: Deep expertise in Azure security controls and cloud-native security practices. More ❯

DevSecOps Engineer | Permanent | UK (Hybrid - A few times per month) | £84k We're working with a highly respected, forward-thinking professional services firm on a mission to embed security into every part of their digital transformation journey. This is a key hire within their growing tech function - they're looking for a DevSecOps/Lead Software Security Engineer … its people, with a collaborative culture and real investment in development. They're agile, ambitious, and looking for someone who wants to play a hands-on role in moving security left - bringing DevSecOps to life and guiding engineering teams with confidence and clarity. What you'll be doing: Leading the cultural shift towards DevSecOps across multiple product teams Embedding … security requirements and tooling into the SDLC from the ground up Defining and implementing a product security strategy aligned with business goals Collaborating with developers to automate and streamline security testing Supporting pen test activity and guiding secure remediation efforts Serving as an internal SME on application and cloud security matters Keeping documentation, training, and More ❯

As a Control Testing Lead, you will play a key role within the Information Security team, supporting the Control Test and Assurance Manager in the delivery a robust and forward-looking Cybersecurity Control Testing & Assurance Programme. This role requires strong cybersecurity expertise combined with hands-on experience in control testing, particularly in evaluating the effectiveness of security controls … Assurance Manager, with whom you will work to deliver the goals of the company to have a stable and fit-for-purpose control testing environment that supports the organisations security and compliance objectives. What youll be doing as a Control Testing Lead Support the implementation and continuous improvement of the Cybersecurity Control Testing Framework Execute control testing in line … role To thrive in this role, the essential criteria youll need is Proven experience in performing cybersecurity control assessments, including evaluating design and operational effectiveness Strong understanding of information security principles, cyber risk management, and control frameworks Experience in IT, OT and Cloud environments, with a focus on cybersecurity controls Clear and professional verbal and written communication, including the More ❯

Pre Sales Application Architect Salary: £70k basic + £6k car allowance + 15% bonus + 10% DV allowance (£83k - £93k total comp) Basingstoke: Hybrid circa 2/3 days a week on site Security Clearance: Needs SC Clearance to start and willingness to go through DV Clearance A global IT Consultancy are looking for a Pre Sales Application Architect to work on delivery opportunities taking place within their secure Defence and National Security sector. You will be responsible for the creation of design artefacts that enable the provision of Applications using industry standard methodologies. You will work closely with Solution Owners and Project Managers to ensure that solutions are in-line with approved designs and meet … Capture techniques such as User Stories and Use Cases. AWS General/Usage Azure Cloud General/Usage VMWare General/Usage Technical Leadership & Design DevSecOps tooling and practices Application Security Testing SAFe (scaled agile) Processes Data Integration Focused Data Pipeline Orchestration, and ELT tooling such as Apache Airflow, Apark, NiFi, Airbyte and Singer. Message Brokers, streaming data More ❯

global, market-leading insurance organisation that's shaping the future of digital health and technology. This is your opportunity to be part of an innovative, forward-thinking environment where security, engineering excellence, and customer impact are at the heart of everything we do! What you'll do: Provide hands-on technical expertise in secure software development within a product … team. Guide and improve secure CI/CD pipelines and modern security practices. Ensure risk management, security, and quality are embedded in software delivery. Implement and manage security tooling (SAST, DAST) to support development and testing. Adhere to best practices in architecture, design, coding standards, and SDLC. Managing risk and security in our software estate through … implementation of technology tooling Demonstrate expert understanding of modern security practices and standards. What you'll bring: Technical leadership with strong decision-making and prioritisation skills. Expertise in secure systems design and infrastructure. Experience securing CI/CD pipelines and using security tools. Expertise in key technologies such as .NET/C#, Azure PaaS, Javascript, and Salesforce APEX More ❯

+ £5k Car Allowance + 20% Bonus About Our Client Join a global technology services leader at the forefront of digital transformation. This organisation delivers customised end-to-end application services that empower businesses to remain resilient and thrive in today's competitive landscape. They specialise in transforming client ideas into real-world products and platforms that unlock new … value streams and enable technology-driven growth. Their Application Services division helps clients modernise legacy applications, reduce technical debt, and establish continuous innovation pathways leading to genuine business transformation. Within their Applications Engineering practice, they enable clients to escape outdated application estates and harness the power of modern software development, accelerating business value delivery through multidisciplinary teams spanning … Architecture, Development, Platforms, and DevOps. The company is pioneering the application of AI technologies to drive improvements in software engineering, development outcomes, and overall quality - positioning them as true innovators in the space. The Opportunity We're seeking an exceptional Pre-Sales Solution Architect to join their dynamic team, working closely with sales and business development throughout the entire More ❯

ability to build scalable microservices, SaaS platforms, and AI-powered applications. You should be proficient in cloud platforms such as AWS and GCP, and experienced in API-first design, security best practices, and observability tools to ensure reliable, high-performing systems. On the AI side, you have practical experience working with large language models (LLMs), prompt engineering, and frameworks … Key Skills & Competencies Core Development: Hands-on experience in taking solutions from concept to production, with strong expertise in Java (Spring Boot) and Python for backend and AI-driven application development. Proficiency in building microservices, SaaS solutions, and API-first architectures to enable scalable, interoperable systems. Frameworks & Tools: Backend: Spring Boot (web, data, cloud, security), JUnit 5, Mockito … workflow/orchestration engines and agent-based architectures. Scalability, Data & Observability: Expertise in designing for scalability, performance, and extensibility across structured, semi-structured, and unstructured data. Strong foundation in security best practices, with practical knowledge of logging, metrics, tracing, distributed debugging, and performance monitoring. Awareness of AI application security and model safety considerations. AI Development: End-to More ❯

ability to build scalable microservices, SaaS platforms, and AI-powered applications. You should be proficient in cloud platforms such as AWS and GCP, and experienced in API-first design, security best practices, and observability tools to ensure reliable, high-performing systems. On the AI side, you have practical experience working with large language models (LLMs), prompt engineering, and frameworks … Key Skills & Competencies Core Development:Hands-on experience in taking solutions from concept to production, with strong expertise in Java (Spring Boot) and Python for backend and AI-driven application development. Proficiency in building microservices, SaaS solutions, and API-first architectures to enable scalable, interoperable systems. Frameworks & Tools:Backend: Spring Boot (web, data, cloud, security), JUnit 5, Mockito … workflow/orchestration engines and agent-based architectures. Scalability, Data & Observability:Expertise in designing for scalability, performance, and extensibility across structured, semi-structured, and unstructured data. Strong foundation in security best practices, with practical knowledge of logging, metrics, tracing, distributed debugging, and performance monitoring. Awareness of AI application security and model safety considerations. AI Development: End-to More ❯

ability to build scalable microservices, SaaS platforms, and AI-powered applications. You should be proficient in cloud platforms such as AWS and GCP, and experienced in API-first design, security best practices, and observability tools to ensure reliable, high-performing systems. On the AI side, you have practical experience working with large language models (LLMs), prompt engineering, and frameworks … Key Skills & Competencies Core Development: Hands-on experience in taking solutions from concept to production, with strong expertise in Java (Spring Boot) and Python for backend and AI-driven application development. Proficiency in building microservices, SaaS solutions, and API-first architectures to enable scalable, interoperable systems. Frameworks & Tools: Backend: Spring Boot (web, data, cloud, security), JUnit 5, Mockito … workflow/orchestration engines and agent-based architectures. Scalability, Data & Observability: Expertise in designing for scalability, performance, and extensibility across structured, semi-structured, and unstructured data. Strong foundation in security best practices, with practical knowledge of logging, metrics, tracing, distributed debugging, and performance monitoring. Awareness of AI application security and model safety considerations. AI Development: End-to More ❯

exploration and production. About the role: Provide 2nd and 3rd line support for a range of subsurface applications including PI, Petrel, Petex, and the Landmark suite. Manage and maintain application environments, ensuring high availability and performance. Diagnose and resolve technical issues, escalating to vendors or 3rd line support when necessary. Support application deployments, upgrades, and configuration changes. Collaborate … with business stakeholders to understand requirements and deliver excellent customer service. Maintain accurate records in ITSM tools (e.g., ServiceNow) and contribute to support documentation. Monitor application performance and proactively identify areas for improvement. Requirements Proven experience supporting subsurface applications in an Oil & Gas operator setting. Strong technical skills in application deployment, management, and support. Solid understanding of SQL …/Oracle database administration. Familiarity with web technologies and Windows Server environments. Awareness of application security practices including SSL, service accounts, and password management. Excellent problem-solving and analytical skills. Strong communication skills and ability to engage with stakeholders at all levels. Customer-focused mindset with a "can-do" attitude. Ability to manage multiple tasks in a complex More ❯

leading software development projects and may provide Technical Excellence Leadership for more than one team, providing expert guidance to software developers and support staff. Provides guidance to staff on application security standards, secure coding practices, and secure architecture designs. Provides a strong technical focus in product planning for a complete software system. Requires completion of an undergraduate degree More ❯

We are seeking a skilled DevSecOps Engineer with valid eDV clearance/UK*C/UKIC to integrate security seamlessly across the software delivery lifecycle. This role combines platform engineering with secure architecture, ensuring the design, implementation, and automation of infrastructure and pipelines that both safeguard sensitive assets and reduce operational overheads. You will play a key role in … Kubernetes, and OpenShift Implement Infrastructure as Code using Terraform, CloudFormation, and Ansible Create and optimise secure CI/CD pipelines with GitLab CI/CD, Jenkins, and ArgoCD Embed security scanning and compliance tools (Snyk, Trivy, Checkov, SonarQube) into automated workflows Manage authentication, access control, and secrets using Vault, AWS Secrets Manager, OAuth2.0, and Zero Trust principles Monitor environments … with ELK Stack, Splunk, and Prometheus to ensure visibility, auditing, and compliance Collaborate with engineering, operations, and security teams to promote DevSecOps best practices Key Skills & Experience Strong background in cloud platforms, particularly AWS and Kubernetes (OpenShift experience advantageous) Proven expertise in IaC, automation, and modern CI/CD practices Deep knowledge of application security, access management More ❯

We are seeking a skilled DevSecOps Engineer with valid eDV clearance/UK*C/UKIC to integrate security seamlessly across the software delivery lifecycle. This role combines platform engineering with secure architecture, ensuring the design, implementation, and automation of infrastructure and pipelines that both safeguard sensitive assets and reduce operational overheads. You will play a key role in … Kubernetes, and OpenShift Implement Infrastructure as Code using Terraform, CloudFormation, and Ansible Create and optimise secure CI/CD pipelines with GitLab CI/CD, Jenkins, and ArgoCD Embed security scanning and compliance tools (Snyk, Trivy, Checkov, SonarQube) into automated workflows Manage authentication, access control, and secrets using Vault, AWS Secrets Manager, OAuth2.0, and Zero Trust principles Monitor environments … with ELK Stack, Splunk, and Prometheus to ensure visibility, auditing, and compliance Collaborate with engineering, operations, and security teams to promote DevSecOps best practices Key Skills & Experience Strong background in cloud platforms, particularly AWS and Kubernetes (OpenShift experience advantageous) Proven expertise in IaC, automation, and modern CI/CD practices Deep knowledge of application security, access management More ❯

We are seeking a skilled DevSecOps Engineer with valid eDV clearance/UK*C/UKIC to integrate security seamlessly across the software delivery lifecycle. This role combines platform engineering with secure architecture, ensuring the design, implementation, and automation of infrastructure and pipelines that both safeguard sensitive assets and reduce operational overheads. You will play a key role in … Kubernetes, and OpenShift Implement Infrastructure as Code using Terraform, CloudFormation, and Ansible Create and optimise secure CI/CD pipelines with GitLab CI/CD, Jenkins, and ArgoCD Embed security scanning and compliance tools (Snyk, Trivy, Checkov, SonarQube) into automated workflows Manage authentication, access control, and secrets using Vault, AWS Secrets Manager, OAuth2.0, and Zero Trust principles Monitor environments … with ELK Stack, Splunk, and Prometheus to ensure visibility, auditing, and compliance Collaborate with engineering, operations, and security teams to promote DevSecOps best practices Key Skills & Experience Strong background in cloud platforms, particularly AWS and Kubernetes (OpenShift experience advantageous) Proven expertise in IaC, automation, and modern CI/CD practices Deep knowledge of application security, access management More ❯

Primary Details Time Type: Full time Worker Type: Employee Cyber Security Consultant Permanent London/Hybrid At QBE, our purpose is to enable a more resilient future. We are an international insurer and reinsurer with a local presence in 27 countries. The opportunity We're hiring a Cyber Security Consultant on a permanent, full-time basis based in … London, where you’ll help shape how cyber and information security risks are understood and managed across our business. This is your chance to be part of a global team that’s always one step ahead - keeping QBE safe, secure, and resilient in a fast-moving digital world. Your new role: This is a hands-on, collaborative role where … under pressure while maintaining a healthy work-life balance. Focus on outcomes and follow through on problem-solving from start to finish. Bonus points if you bring: Experience with AppSec and DevSecOps. Hands-on knowledge of Azure, AWS, and/or Google Cloud. Familiarity with standards like ISO2700X, ISO31000, NIST800, PCI-DSS. Certifications such as CISSP, CCSP, CRISC, CISM, or More ❯