1 to 25 of 101 Application Security Jobs in the UK

to join their existing & high performing large scale In - House Security Team including SOC & Cyber Analysts through to Experienced Cyber Security Engineers & Security Architects. As an AppSec Engineer you will focus on the technical side of IT Security, specifically looking at Application Security & Code Analysis, ensuring their Applications are Built Securely. The Information & Cyber … working closely with the Software Development Team , to confirm that Application Based Vulnerabilities are Understood & Mitigated meaning that Code Reading Skills are also desirable. Skills & Experience of the AppSec Engineer role: Hands-On Experience with Security Assessment Tools & Techniques including Penetration Testing & Code Review. Use of Planned, Structured Methodologies for Conducting & Reporting on Web Application Penetration Testing. … Department to ensure Security is considered throughout SDLC. Identifying any Security Issues within the Businesss Software and Manage through Liaising with External Stakeholders as & when necessary. Searches: AppSec/Application Security/SDLC/Software Application Security/Application Security Engineer/Cyber Security Engineer/Software Application Security More ❯

Your Title: Senior Application Security Engineer Job Location : UK - Remote, Germany - Remote, Poland - Remote OR Romania - Remote About the Role: Trimble is seeking a highly experienced and passionate Senior Application Security Engineer to lead our Software Composition Analysis (SCA) and Static Application Security Testing (SAST) initiatives, with a primary focus on driving the strategic … implementation and optimization of our SCA tool. This is a pivotal, corporate-level role for an individual who isn't just an expert in application security tooling but is also a visionary leader capable of shaping our organization's approach to open-source security and secure development practices across a global engineering footprint. You'll be instrumental … in evolving our application security posture, acting as a subject matter expert and a champion for best practices within our diverse engineering teams. Your deep technical expertise, combined with strong communication and leadership skills, will enable us to maximize the value derived from our SCA tool investment and further embed security into our software development lifecycle. This More ❯

Application Security Engineer Bristol - 3 days a week on site £90,000 + great benefits An impressive financial services business is looking to hire an Application Security Engineer to support this team with the risk and remediation activities. This business is going through a big technology transformation programme that is estimated to take 3 -5 years. … The successful Application Security Engineer will be part of this journey and have great technical exposure and the ability to rapidly progress. Working closely in one of transformation projects, the successful Application Security Engineer will work closely with the wider security and technology teams to define the strategy and roadmap of technology changes moving forward. … Application Security Engineer Duties and Responsibilities The successful Application Security Engineer will: Provide security input into solution design to ensure that security principles are incorporated at both the platform and software level Automate tooling to run security fixes over a variety of repo's Ensure that security requirement input is provided across More ❯

Application Security Engineer Bristol or Edinburgh - minimum of 3 days per week on site. £90,000 + great benefits An impressive financial services business is looking to hire an Application Security Engineer to support this team with the risk and remediation activities. This business is going through a big technology transformation programme that is estimated to … take 3 -5 years. The successful Application Security Engineer will be part of this journey and have great technical exposure and the ability to rapidly progress. Working closely in one of transformation projects, the successful Application Security Engineer will work closely with the wider security and technology teams to define the strategy and roadmap of … technology changes moving forward. Application Security Engineer Duties and Responsibilities The successful Application Security Engineer will: Provide security input into solution design to ensure that security principles are incorporated at both the platform and software level Automate tooling to run security fixes over a variety of repo's Ensure that security requirement More ❯

We are looking for an experienced Application security specialist to join our Cyber team with a hyper focus on supporting our application security architecture and risk management programme. You will help us build out a world class capability to align with our key stakeholders in the Games teams to provide a clear plan, review and support … lifecycle and overall risk remediation. This is a hybrid role : Location: Cambridge, UK with travel to the office once per week. What you'll be doing: Provide guidance on security best practices and compliance and undertake security testing Identify Application security risks and requirements for new projects and system developments Represent cyber in review sprints on … application security prior to live implementation Collaborate with the architecture and development teams to review the design and code for security vulnerabilities Establish a threat modelling capability and evangelise secure coding in the development lifecycle Provide technical specialist advice to ensure that security standards are understood and can be complied with Develop security testing plans More ❯

Application Security Specialist (DevOps) Hybrid – Cambridge, UK (1 day a week in office) We’re looking for an experienced Application Security Specialist to join a growing cyber security team and play a key role in shaping a world-class application security programme. This role will give you the chance to work closely with … engineering and development teams, embedding security into the development lifecycle, driving automation, and influencing remediation plans that have real impact. What you’ll be doing Guiding teams on security best practices, compliance, and secure coding. Collaborating with architects and developers to review designs and code for vulnerabilities. Embedding/improving threat modelling and secure development practices into the … SDLC. Designing and integrating security testing plans. Performing and overseeing application security testing and driving remediation. Managing end-to-end vulnerability workflows, including bug bounty findings. Supporting incident response activities when needed. Monitoring and reporting on application security metrics, KPIs, and emerging threats. Automating processes for vulnerability detection and integrating tools into the pipeline. Note More ❯

Application Security Specialist (DevOps) Hybrid – Cambridge, UK (1 day a week in office) We're looking for an experienced Application Security Specialist to join a growing cyber security team and play a key role in shaping a world-class application security programme. This role will give you the chance to work closely with … engineering and development teams, embedding security into the development lifecycle, driving automation, and influencing remediation plans that have real impact. What you'll be doing Guiding teams on security best practices, compliance, and secure coding. Collaborating with architects and developers to review designs and code for vulnerabilities. Embedding/improving threat modelling and secure development practices into the … SDLC. Designing and integrating security testing plans. Performing and overseeing application security testing and driving remediation. Managing end-to-end vulnerability workflows, including bug bounty findings. Supporting incident response activities when needed. Monitoring and reporting on application security metrics, KPIs, and emerging threats. Automating processes for vulnerability detection and integrating tools into the pipeline. Note More ❯

heart of our digital transformation. As we continue to grow and innovate, securing our applications and protecting customer data is a top priority. We are looking for a Senior Application Security Engineer to lead our efforts in strengthening application security, mitigating risks, and ensuring best-in-class security practices. If you are passionate about cybersecurity … and eager to make a real impact, we want you on our team! Key Responsibilities: Security Strategy: Help define and execute the Holland & Barrett application security strategy. Collaborate with both tech and non-tech teams to integrate security principles into the early stages of product design and development. Secure SLDC: Establish a secure Software Development Lifecycle … software integrity, authenticity, and third-party library management. Risk Assessments: Conduct risk assessments, threat modeling, and architecture reviews alongside development teams, producing artifacts to drive the implementation of effective security controls. Standards Development: Own the creation and maintenance of tailored security standards and guidelines, developing reusable resources for various development teams. Team Support: Provide guidance and support to More ❯

Stock Exchange (EXPN), we have a team of 22,500 people across 32 countries. Our corporate headquarters are in Dublin, Ireland. Learn more at experianplc.com. Job Description Experian, Global Security Office are looking for an experienced Senior Application Security Engineer to enhance our application security processes with emphasis on business engagement. You will be responsible … for static, SCA, and dynamic scanning, collaborating with software engineers, provide flaw mitigation recommendations, and implementing automated security controls throughout the development lifecycle and CI/CD pipelines. Ensure the Software Security Policy and Baseline requirements are met for new Agile deliveries and for legacy estate with flaws and issues managed throughout all stages of an applications' life. … with Security Champions to build relationships and ensure main activities are supported and deliverables are achieved promptly. Qualifications Direct experience in enterprise-level application security. Experience in AppSec or DevSecOps, collaborating and presenting to developers, supporting development teams to adopt and mature secure development practices Proficiency with SAST, SCA, DAST, IAST, RASP and others tools associated with DevSecOp. More ❯

Application Security Architect UK-Wide (London optional) Up to £120,000 + Package – Permanent We’re looking for a seasoned Security Architect with a strong focus on application security and a proven track record in consulting. This is an opportunity to work across complex public sector programmes, helping organisations design secure applications while influencing strategy … and best practice across the practice. What you’ll be doing: Leading application security architecture for high-profile public sector clients. Advising on and implementing secure development practices aligned with OWASP, threat modelling, and secure SDLC frameworks. Supporting pre-sales, solution design, and client engagements across consulting projects. Mentoring and upskilling client teams and internal consultants on application security. Experience required: Consulting experience in application security architecture, preferably with exposure to public sector clients. Deep knowledge of OWASP Top 10, secure coding practices, threat modelling, and vulnerability management. Experience influencing design and security strategy across large programmes. Strong communication and client-facing skills; able to present to both technical and executive stakeholders. The package More ❯

Principle Security Architect £120000 GBP Onsite WORKING Location: Chelmsford, East of England - United Kingdom Type: Permanent Application Security Architect UK-Wide (London optional) Up to £120,000 + Package - Permanent We're looking for a seasoned Security Architect with a strong focus on application security and a proven track record in consulting. This is … an opportunity to work across complex public sector programmes, helping organisations design secure applications while influencing strategy and best practice across the practice. What you'll be doing: Leading application security architecture for high-profile public sector clients. Advising on and implementing secure development practices aligned with OWASP, threat modelling, and secure SDLC frameworks. Supporting pre-sales, solution … design, and client engagements across consulting projects. Mentoring and upskilling client teams and internal consultants on application security. Experience required: Consulting experience in application security architecture, preferably with exposure to public sector clients. Deep knowledge of OWASP Top 10, secure coding practices, threat modelling, and vulnerability management. Experience influencing design and security strategy across large programmes. More ❯

house , using new data sources, machine learning and AI to make machines do the heavy lifting About the role We're looking for a Head of InfoSec to champion security across Lendable, ensuring our products, platforms, and processes remain secure as we scale. This is a high-impact leadership role with broad responsibility across application security, operations … and regulators. You will lead a team of exceptional security engineers, delivering a technical roadmap that you will shape. What you'll be doing Application Security (AppSec) : Driving secure development practices, code analysis, and threat modelling. Security Operations (SOC) : Overseeing monitoring, incident response, vulnerability management, and operational resilience. Governance, Risk & Compliance (GRC) : Leading our efforts to … leader who is comfortable with: Building a team : You have prior management experience and a proven track record of growing a collaborative and cross-functional Security team. Scaling AppSec : You've owned and scaled a robust Application Security program, including secure development, code analysis, and threat modelling. Running Security Operations : You have deep experience overseeing a More ❯

Senior Application Security Engineer | Permanent | UK (Hybrid - a few times per month) | £84k We're working with a forward-thinking professional services firm on a key hire to embed security into every part of their digital product journey. They're looking for a Senior Application Security Engineer to drive secure-by-design principles across new … and evolving applications and act as a Subject Matter Expert for software security across the business. This is a high-impact role in a collaborative, ambitious, and people-focused IT team. You'll play a hands-on role, shaping security culture, guiding engineering teams, and ensuring that security is integrated into every stage of the software development … lifecycle. What you'll be doing: Leading the cultural shift towards secure software development across product teams Defining and implementing the software security strategy in line with business goals Collaborating with developers to automate security testing and embed security requirements into the SDLC Supporting penetration testing, vulnerability management, and remediation efforts Acting as a software security More ❯

Senior Application Security Engineer | Permanent | UK (Hybrid - a few times per month) | £84k We're working with a forward-thinking professional services firm on a key hire to embed security into every part of their digital product journey. They're looking for a Senior Application Security Engineer to drive secure-by-design principles across new … and evolving applications and act as a Subject Matter Expert for software security across the business. This is a high-impact role in a collaborative, ambitious, and people-focused IT team. You'll play a hands-on role, shaping security culture, guiding engineering teams, and ensuring that security is integrated into every stage of the software development … lifecycle. What you'll be doing: Leading the cultural shift towards secure software development across product teams Defining and implementing the software security strategy in line with business goals Collaborating with developers to automate security testing and embed security requirements into the SDLC Supporting penetration testing, vulnerability management, and remediation efforts Acting as a software security More ❯

just to name a few! Job Description Your Career As a Senior Consultant in Unit 42 you will have the opportunity to work across a number of proactive cyber security domains including Cloud Security, Security Operations, Cyber Risk Management and Artificial Intelligence in cyber security. We are seeking an individual who is passionate about cyber security … consulting outcomes for clients, as they work to address the challenges associated with today’s cyber threat landscape. Your Impact SOC Advisory 4+ years of consulting experience in SOC, security engineering, SIEM administration, and incident management and demonstrated success with serving large, multinational organisations in designing and implementing an organisation’s security operations program, organisational structures, and capabilities … Possess a deep technical knowledge in Security Incident and Event Management (SIEM) platforms, Security Orchestration and Response (SOAR) technologies, Endpoint Protection and Response/Next Gen Protection and Response (EDR/XDR) tools, Next GenFirewalls, Threat Intelligence and Hunting platforms Defensive Security Skills (desired) Experience in security operations design, engineering and/or analysis and investigations More ❯

just to name a few! Job Description Your Career As a Senior Consultant in Unit 42 you will have the opportunity to work across a number of proactive cyber security domains including Cloud Security, Security Operations, Cyber Risk Management and Artificial Intelligence in cyber security. We are seeking an individual who is passionate about cyber security … consulting outcomes for clients, as they work to address the challenges associated with today’s cyber threat landscape. Your Impact SOC Advisory 4+ years of consulting experience in SOC, security engineering, SIEM administration, and incident management and demonstrated success with serving large, multinational organisations in designing and implementing an organisation’s security operations program, organisational structures, and capabilities … Possess a deep technical knowledge in Security Incident and Event Management (SIEM) platforms, Security Orchestration and Response (SOAR) technologies, Endpoint Protection and Response/Next Gen Protection and Response (EDR/XDR) tools, Next GenFirewalls, Threat Intelligence and Hunting platforms Defensive Security Skills (desired) Experience in security operations design, engineering and/or analysis and investigations More ❯

just to name a few! Job Description Your Career As a Senior Consultant in Unit 42 you will have the opportunity to work across a number of proactive cyber security domains including Cloud Security, Security Operations, Cyber Risk Management and Artificial Intelligence in cyber security. We are seeking an individual who is passionate about cyber security … consulting outcomes for clients, as they work to address the challenges associated with today’s cyber threat landscape. Your Impact SOC Advisory 4+ years of consulting experience in SOC, security engineering, SIEM administration, and incident management and demonstrated success with serving large, multinational organisations in designing and implementing an organisation’s security operations program, organisational structures, and capabilities … Possess a deep technical knowledge in Security Incident and Event Management (SIEM) platforms, Security Orchestration and Response (SOAR) technologies, Endpoint Protection and Response/Next Gen Protection and Response (EDR/XDR) tools, Next GenFirewalls, Threat Intelligence and Hunting platforms Defensive Security Skills (desired) Experience in security operations design, engineering and/or analysis and investigations More ❯

About Wallarm: Wallarm is the only solution that unifies best-in-class API Security and WAAP (Next-Gen WAF) capabilities to protect your entire API and web application portfolio in multi-cloud and cloud-native environments. We are on a mission to help companies counter the new style of attacks on the ever-changing landscape of cybersecurity. Wallarm … enables developers, Security Ops and DevSecOps teams the ability to secure their APIs via observability, and ensure Protection and Analytics to manage risk, protect the business, and enable speed of development with safety. As a Solution Architect aligned with Customer Engineering, you will be an integral part of defining our success at Wallarm and will play a key role … within a specified region. Additionally, you will be a subject matter expert for our Sales teams. The role requires excellent technical, communication, and organizational skills, and previous experience with application security and microservices architectures. You will help prospective customers and partners understand the benefits of Wallarm, explaining technical features and problem-solving any potential roadblocks. What you will More ❯

A leading fintech company is seeking a Lead AppSec Engineer to join their established team. Youll be instrumental in embedding security into every stage of the software development lifecycleguiding engineers, shaping best practices, and driving secure, scalable solutions across our platform. Key Responsibilities: Security Advisory : Serve as the go-to expert for application security across engineering … teamsproviding hands-on guidance, resolving concerns, and fostering a security-first mindset. DevSecOps Enablement : Promote and implement secure development practices across CI/CD pipelines, secrets and key management, dependency management, and secure design. Vulnerability Management : Lead vulnerability remediation effortstriaging findings, prioritizing risks, and partnering with teams to deliver effective, pragmatic fixes. Tooling & Automation : Integrate security tools (e.g. … SAST, DAST, SCA, secrets scanning) into developer workflows, ensuring automation is both scalable and developer-friendly. Cloud Security Collaboration : Work alongside infrastructure teams to ensure secure configuration of AWS and Azure environments, with a focus on IAM, network security, encryption, and observability. Architecture & Design Reviews : Provide input and recommendations to ensure new services and features are secure by More ❯

Role/Job Title: DevSecOps Pentester Work Location: London (2 - 3days) The Role Conducts security assessments and penetration tests across CI/CD pipelines, cloud infrastructure, and application environments. Integrates automated security tools and practices within DevOps workflows to ensure continuous security validation. Identifies and exploits vulnerabilities in code, containers, APIs, and infrastructure-as-code before … they reach production. Collaborates with development, security, and operations teams to implement remediation and improve security posture. Stays current with threat landscapes, tools, and methodologies to proactively defend against evolving cyber risks in general and more specific to an airline industry, transportation sector. Your Responsibilities Integrate security practices and tools into the DevOps pipeline to ensure security is a continuous process. Perform IaC Automation and ServiceNow integrations to automate AWS Service catalogues. Contribute to security tooling, checklists, and automation efforts. Identify potential security threats and vulnerabilities during the design phase identify flaws in CI/CD, IaC, and cloud/containerized environments. Perform manual and automated security testing on web apps, APIs, pipelines. More ❯

Type: Contract (6 months) | Rate: Market| Start Date: ASAP About the Role Our client, a leading global organization, is looking for an experienced DevSecOps Pentester to join a leading security team in London. Youll perform penetration tests and security assessments across CI/CD pipelines, cloud environments, and applications, integrating automated security tools and practices into DevOps … is ideal for someone who can identify vulnerabilities in code, containers, APIs, and infrastructure-as-code before production, collaborate closely with DevOps and development teams, and help improve enterprise security posture. Key Responsibilities Integrate security tools and practices into CI/CD pipelines for continuous validation. Conduct manual and automated security testing on web apps, APIs, pipelines … and actionable remediation guidance. Validate remediation efforts and perform retesting cycles. Advise on secrets management, IAM, and secure deployment practices. Educate and collaborate with development and operations teams on security best practices. Required Skills & Experience Strong application security knowledge (OWASP Top 10, API security). Manual pentesting experience on modern web apps, APIs, and CI/ More ❯

Role: Senior Cyber Security Engineer (Cyber SME) Salary: Up to £70,000 Location: Reading/Birmingham - Hybrid (1 day/week in office) Be the Cyber Security Subject Matter Expert protecting the backbone of our business.Are you a highly skilled cyber security professional ready to take ownership of security engineering and infrastructure hardening? We're looking … for a Senior Cyber Security Engineer to join our team and act as the go-to expert for all things security.Reporting to the head of security, you'll play a critical role in protecting our infrastructure, networks, and data, while guiding teams across the business with your deep technical expertise. What You'll Do Serve as the Cyber … Security Subject Matter Expert, advising on secure systems design, change control, and implementation of robust security controls. Lead the technical vulnerability management programme, with a strong focus on application security, web application firewalls, and secure DevOps pipelines. Provide security leadership and mentoring , supporting colleagues and enhancing security awareness across the business. Actively contribute More ❯

Senior Cyber Security Architect Location: UK-Wide (Homeworking Available) Job Type: Permanent Salary: Up to £120,000 + Bonus We have an exciting opportunity for a Senior Cyber Security Architect to join a leading digital consultancy and play a critical role in shaping the secure design and delivery of cutting-edge cloud services and enterprise solutions. This is … a senior-level role where you’ll work directly with Agile delivery teams, ensuring security best practices are embedded across complex programmes, while also providing leadership, mentoring, and strategic guidance. As a Senior Cyber Security Architect , you’ll apply your expertise to assess, design, and implement robust security controls across software, infrastructure, and applications. You’ll influence … stakeholders at all levels, from delivery teams to executives, providing clarity on security challenges and driving pragmatic solutions. Alongside technical leadership, you’ll also coach and mentor team members, developing the next generation of cyber security professionals in a collaborative and people-first culture. Key Skills & Expertise: Proven experience in the secure design and delivery of new cloud More ❯

My client, a Global organisation based in Newcastle city centre are seeking an experienced Head of Security and Platform Engineering to start ASAP. This pivotal role takes the lead in delivering breakthrough improvements in reliability and performance across technology platforms, ensuring our systems consistently exceed expectations. As the leading force behind our cyber security agenda, you will champion … a step change in modern security controls—introducing cutting-edge measures that protect the business. You will lead four core technology towers, and inspire teams to set bold targets, measure progress, and celebrate success as we raise the bar for platform resilience, scalability, and security. Key Responsibilities: Strategic Leadership & Governance Define and drive the vision, strategy, and roadmaps for … objectives and risk appetite. Oversee integration and collaboration across the four core platform towers: Digital Workspace Services (DWS) Support and System Reliability Engineering (SSRE) Platform and Cloud Engineering (PaCE) Security & Network Operations (SNOPs) Establish and socialise the Cyber Security Strategy and Roadmap, ensuring alignment with enterprise resilience and regulatory requirements Cyber Security Leadership Shape the cyber security More ❯

Security Architect £95,000 - £125,000 GBP Hybrid WORKING Location: Manchester, North West - United Kingdom Type: Permanent Role: Security Architect Salary: £95,000 - £120,000 per annum + Benefits Location: Open to UK-wide candidates (Remote/Hybrid options available) Overview We are hiring for a Security Architect with a strong consultancy background to lead the secure … services across a diverse range of digital transformation projects. This is a hands-on leadership role suited to someone who thrives in Agile environments and is passionate about embedding security throughout the software development lifecycle. Key Responsibilities Lead the secure design of cloud services and solutions in line with defined security strategies Identify and mitigate security risks … in existing system designs, balancing cost, risk, and usability Guide Agile delivery teams on secure development practices and tooling Educate internal teams and clients on security principles and standards Manage, mentor, and develop a small team of security professionals Provide technical direction and leadership across projects Essential Skills & Experience Proven expertise in secure cloud architecture and solution design More ❯