1 to 25 of 45 Application Security Jobs in the UK excluding London

Are you an accomplished Senior Application Security Engineer , with experience in a modern software-based platform environment? Would you relish the opportunity to work with one of the UK's leading independent Software houses , with a global footprint (but UK HQ), 500 staff & a focus on technical excellence … If so, we are looking for an experienced Senior Application Security Engineer to join our growing Security Ops team, working closely with DevOps teams, Dev' team & Product Engineering, to make sure security is at the heart of our technical process'. This role will cover a … wide array of security areas across our SaaS private and public cloud environments, as well as corporate domains and will require a skilled individual to spearhead efforts in fortifying both infrastructure and application platforms, against potential threats. Job title: Senior Security Engineer. Application Security Engineer more »

Senior Security Engineer - transform the way security is delivered within our engineering & product teams... About the Security Engineering team We are 15+ and growing team that supports Tesco technology and software development teams across cloud and other cutting-edge technologies at scale. We have a new role … as the security engineer for our security engineering team based in the UK. The software development teams are responsible for their own security, so we act differently than a traditional security team. We are team of security partners, not security police... and we go … as far as calling ourselves as Security Partners, not Security Architects or Consultants. Our software engineering teams have tremendous freedom in their work and the corresponding responsibility to do the right thing for our customers. Instead of controlling our engineering teams with process and security gates, we more »

Job Title: Application Security Test Engineer Location: Hemel Hempstead UK/Hybrid BSI have a fantastic career opportunity for an individual looking to develop a rewarding career within the cyber security regulatory industry. Our testing teams are responsible for testing a wide range of products to ensure … they meet stringent security standards and certification requirements. You will have the opportunity to test a wide range of products from our global clients, including big tech. Working within the regulatory landscape you will have the opportunity to keep abreast of the latest regulatory requirements, develop your expertise, and … research new testing techniques to further expand our testing capabilities. As our Application Security Test Engineer, you be responsible for testing client mobile and web software applications in accordance to OWASP (ASVS/MASVS) frameworks. To be successful in this role you’ll need to hold an understanding more »

Job: Security Architect Location: Reading, UK, Hybrid Job Type: Permanent Job Description We are seeking a highly skilled and experienced Security Architect to join our team who will be responsible for development of the Security Architecture that ensures the appropriate protection of all aspects of security, (people, process, electronic, data, physical) in Spring Fibre. • You will be a subject matter expert and provide security guidance and recommendations to technology/business teams and contribute to Spring’s security policies, standards, and guidelines related to information and Network security. • This is a technical role … and suitable for someone who has hands on experience in Cybersecurity. Responsibilities Help develop an Enterprise Security Architecture Framework, including patterns for identity & authentication, authorization and access control, cryptographic key and certificate management, auditing and security monitoring, data leakage prevention, privacy enhancement & protection and other standards in alignment more »

Senior Cyber Security Engineer – Reading - Perm Salary: £55,000 - £65,000 Location: Reading Hybrid: 3 days per week on site As our client's Cyber Security business continues to grow, they are now looking for an experienced and dynamic Senior Cyber Security Engineer to join our vibrant … office with hybrid working. This is an exciting role and would most likely suit someone with previous experience in a Cyber Security Engineer role where they have gained knowledge and experience in web application security, web application firewalls, vulnerability management and penetration testing. Experience working with … cloud hosting providers, managing application testing and working with system owners/developers to improve application security is highly beneficial to this role. Senior Cyber Security Engineer Key Responsibilities: Carry out daily security engineering/operation tasks under an ITIL framework whilst promoting and adhering more »

Required: Mapping long-term business requirements to security architecture frameworks such as NIST, CIS, etc. Experience delivering Hybrid Cloud and Internet-facing applications with a strong focus on cyber security. Broad hands-on knowledge of firewalls, intrusion detection systems, data encryption, and other industry-standard techniques and practices. Strong … knowledge of IT infrastructure, IP networking, security best practices, and automation technologies. Application security: including but not limited to authentication, identity and access management, auditing, use of cryptography, data security, privacy enhancing technologies, web services security, OWASP, threat & vulnerability management and secure code development methodologies. … Infrastructure security includes but is not limited to, network security, host security, database security, device security, VPNs and SSLs, secure file transfers, security event monitoring, malware security, and cyber security. Operational security: including but not limited to incident management, change and patch more »

Due to growth our client is seeking an experienced Cyber Security Engineer for their team in Reading. For this exciting role we are seeking an engineer who has gained knowledge and experience in web application security, web application firewalls, vulnerability management and penetration testing. They are … also looking for experience working with cloud hosting providers, managing application testing and working with system owners/developers to improve application security. The Senior Cyber Security Engineer role will be challenged with researching and implementing the latest technologies in the industry. This environment is highly technical … and collaborative. You will work closely with the Head of Cyber Security, and join other Senior Cyber Security Engineers, to implement effective security solutions and harden existing systems. As a Senior Cyber Security Engineer, you will: Carry out daily security engineering/operation tasks under more »

Due to growth our client is seeking an experienced Cyber Security Engineer for their team in Reading. For this exciting role we are seeking an engineer who has gained knowledge and experience in web application security, web application firewalls, vulnerability management and penetration testing. They are … also looking for experience working with cloud hosting providers, managing application testing and working with system owners/developers to improve application security. The Senior Cyber Security Engineer role will be challenged with researching and implementing the latest technologies in the industry. This environment is highly technical … and collaborative. You will work closely with the Head of Cyber Security, and join other Senior Cyber Security Engineers, to implement effective security solutions and harden existing systems. As a Senior Cyber Security Engineer, you will: Carry out daily security engineering/operation tasks under more »

LEAD CYBER SECURITY CONSULTANT - READING - CONTRACT- HYBRID Lead Cyber Security Consultant Contract - 6 Months rolling- Inside IR35 Location: Reading - 2 days onsite/week must The role of Cyber Security Consultant sits within the Cyber Security team which is responsible for providing subject matter expertise and … a reliable network which matches the best, whilst ensuring compliance to regulatory requirements, company policy and standards. Should have experience of using common information security management frameworks, such as NIST, PCI, GDPR, ISO Series, OWASP the IT Infrastructure Library (ITIL), the ISF Standards of Good Practice (SoGP) and ISACA … implementing processes, procedures, and architecture/design/decision templates is vital. Must have at least 3-5 years of experience working in Cyber Security within a technical field. Must have a mix of security consulting, architecture/design, and professional services experience. Must be able to lead more »

Information Security Specialist We are a globally recognized organisation who you can trust, with our nearly 25 year expertise and ever growing teams, we have become a leading name in our industry. Salary up to £60,000 + benefits Manchester office, 2 days per week onsite requirement Application Security/Software Development/OWASP/SCA/SAST/DAST/Containerisation Information Security Specialist Overview: As an information security specialist you will be looking at application security and code analysis to ensure applications are being built securely You will conducting manual … and automated source code reviews You will be completing security vulnerability analysis/assessment and taking an active role in external audits You will be identifying any security flaws within the business software and managing through appropriately You will be staying up to date with new and emerging more »

Security Development Analyst Fully Remote - £35-45k Join a successful organisation as a Security Development Analyst. You'll review code, conduct security tests, and collaborate with key stakeholders within Software development. Candidates must be able to review code written in Java & C#. Key responsibilities for this … IT Security role Code analysis and application security reviews. Dynamic Application Security Testing (DAST) Identifying and addressing security vulnerabilities Working with stakeholders to enhance processes. Core skills & experience for this Security Analyst role: Security review methodologies: SAST, DAST, SBOM, SCA Implementing security tooling in CI/CD pipelines Threat modeling Code review (Java or C#) Familiarity with security frameworks like PCI, ISO 27001, Cyber Essentials This company offers structured training, career development opportunities, and competitive compensation including incentives. For more details, call 0161 438 1177 or follow us on Twitter more »

LEAD CYBER SECURITY CONSULTANT – READING – CONTRACT- HYBRID Lead Cyber Security Consultant Contract – 6 Months - Inside IR35 Location: Reading – 2 days onsite/week must The role of Cyber Security Consultant sits within the Cyber Security team which is responsible for providing subject matter expertise and guidance … building customer trust in a reliable network which matches the best, whilst ensuring compliance to regulatory requirements, company policy and standards. Experience with information security management frameworks (NIST, PCI, GDPR, ISO, OWASP, ITIL, ISF SoGP, COBIT) is essential. The role will involve supporting project managers in risk and issue … Experience in documenting and implementing processes, procedures, and architecture/design/decision templates is vital. Expertise and experience in technical domains ie hybrid security, infrastructure and data centre security, network security, application security, identity and access management, and vulnerability management are important. Experience of more »

Senior Cyber Security Analyst – Salary circa £55,000 Are you someone who is passionate about Cyber Security and looking for an excellent opportunity to use and expand your skills within a dedicated security advisory team? This role exists within Aviva’s CISO team and is responsible for … current and new cyber related threats. To reduce the risk of change activity (IT and Cyber initiatives) to Aviva, the successful candidate will provide: Security consultancy advice and guidance, security review of solution designs including recommendations, advice and guidance to promote secure by design and carry out Information … Security Risk Assessments (ISRA) to better manage Aviva risks against reputational damage, system outage and data loss potentially leading to regulatory fines, as data security becomes an ever greater focus across the globe. The role will require someone with in-depth technical knowledge, who can collaborate well with more »

Senior Principal Security Researcher Hybrid - 50% Reading, Berkshire Are you a passionate security researcher with experience assessing large, complex software products? We are looking for talented individuals who are excited about security research and developing creative solutions for some of Oracle’s most critical customers. Finding and … combining bugs to create new attacks is essential in this role. We are a world-class team of application security researchers who love new challenges. We are an inclusive and diverse, with a full range of experience and a global reach. We have the resources of a large … start-up, and we’re working on a critical software assurance initiative with our cloud and mobile engineering teams. Our mission is to make application security and software assurance a reality, at scale. We’re a dedicated team that leverages each other’s strengths to produce cutting-edge more »

Lead Security Architect - Application £80,000 - £95,000 + 10% bonus + benefits West Yorkshire/Hybrid Fruition IT are partnering with a UK national services provider who are going through change, and looking to bring in a skilled Architect to help them set direction and architecture roadmaps … Security. This is a newly created role within a structure of SME domain specialists. This a fantastic opportunity to really take ownership of the application security domain and really be autonomous within that space, own the process and the business unit. The role: Setting the direction and implementing … architecture roadmaps. Be the SME specialist for Application Security. Be autonomous within Application Security, take true ownership! Establish and advocate for security best practices. Take a lead, own the process and business unit. Act as the go-to expert, leveraging internal and external resources to deliver more »

You embrace ambiguity and enjoy exploring new technologies delivering robust, scalable solutions. Who are we? We are a world class team of high calibre security tool services Site Reliability Engineers. We are an inclusive and diverse team with a full spectrum of experience distributed globally. We have the resources … on a critical greenfield software assurance project collaboratively with our cloud and mobile engineering teams. The Software Assurance organisation has the mission to make application security and software assurance, at scale, a reality. We are a dedicated team, leveraging each other’s insights and abilities to produce cutting … product management and engineering requirements within a globally distributed team · Design, develop, implement and operate a third-party artifact repository · Evaluate and improve the security of the repository · Performance tune software application security tools to scale to application codebases with millions of lines of source code more »

Are you an Application Security Engineer or a Software Engineer specialising in product who wants to move into an Application Security role? We’re helping to scale up the Cyber Security team within one of Cardiff most esteemed tech companies. About the Company: They have … will have experience of liaising with stakeholders of all levels. You will directly manage third parties that might be involved in the delivery of security services to the business. About the role: Joining a team of 9 Security Engineers, this role will be one of the more senior … years’ experience is required. You will be improving the development processes and embedding a Secure by Design and DevSecOps culture. This will require identifying security requirements and risks in the development activities, supporting delivery of those improvements, and helping to provide assurance back to the business. The company are more »

Areti have partnered with a Leading Telco in Reading for a Security Consultants to work in one of the most exciting companies in the UK 🌳🌳🌳 Security Consultant (Multiple) 🌳🌳🌳 · Salary - Up to £70 - 78k · Location - Reading/Hybrid 2 days a week · Car - £6k · Bonus - 10% · Pension · Health Care … Experience required - I will provide more detail on application · Blend of security consulting, design, and professional services expertise · Lead the creation and assessment of secure system blueprints by applying established patterns and principles. Willing to question norms to establish new practices and guide the team's direction. · Understand … Ability to assess the ease or difficulty of exploiting these vulnerabilities. · Proficient in one or more of the following technical areas: Cloud/Hybrid security , Infrastructure and data center security, Network security, Application security, Identity and access management , Vulnerability Management. · Skilled in defining and overseeing more »

alike (Glassdoor/Trustpilot) . If so this could be the job for you.. Role DevSecOps Engineer aka DevOps Engineer, Azure DevOps Engineer, Azure Security Engineer, Platform Engineer, Application Security Engineer Location– North East Nr Hartlepool, Middlesborough, Stockton-Upon -Tees 2/3 days in the office … Devops Engineering/Platform team as the first designated DevSecOps Engineer. You will have the opportunity to take ownership of evaluation and implementation of security based tools (e.g. Vulnerability Scanners, Code Analysis, Automated pen testing etc) and Azure Security capabilities working with development, security and infrastructure teams. …/CD pipelines Implement Infrastructure as Code (IaC) with Terraform Integrate DevSecOps in software development Mentor and lead with a focus on automation and security Looking for Candidates With : 5+ years in DevOps, cloud security, ideally Azure Expertise in Kubernetes and/or Azure DevOps with YAML pipelines more »

Bristol - £40,000-£65,000 + Bonus + Benefits Locke & McCloud are looking for an experienced Penetration Tester to join our client, a leading security provider looking to grow their Cyber Security team. The ideal candidate will bring commercial experience in previous security roles, demonstrating proficiency in … security assessments and vulnerability identification. Working within a supportive environment, you'll have the opportunity to learn from industry-leading Offensive Security professionals. Main Responsibilities: thorough penetration testing activities, encompassing internal network assessments, perimeter security evaluations, and web application testing. regular communication with clients to discuss … Techniques, and Procedures (TTPs) ethically while upholding professional standards. To be considered for this role, you should have: 2 years' experience in an Offensive Security/Penetration Testing role. of modern web application design, development, and deployment across various platforms. to train and collaborate with end-users during more »

We are partnered with a reputable global consultancy that are recruiting Security Consultants to work on a very exciting LONG-TERM CONTRACT within the financial service sector. Role: Senior Security Consultant Rate: Up to £500 per day (inside IR35) Location: London/Swindon – Hybrid (2 days onsite per … week) Duration: 6 months (initially – view to extend) Vacancies: 3 The Role: As a Security Consultant you will be accountable for ensuring that services and change initiatives in the business areas you are aligned to are delivered in a secure and compliant manner. You’ll be working in a … matrix manner with our business, change and delivery teams, supporting everything from small technology changes to major transformation programmes, driving implementation of our Security and Resilience strategies and policies in a positive and pragmatic manner which enables our colleagues to deliver their business objectives. Key responsibilities: security risk more »

We are partnered with a reputable global consultancy that are recruiting Security Consultants to work on a very exciting LONG-TERM CONTRACT within the financial service sector. Role: Senior Security Consultant Rate: Up to £500 per day (inside IR35) Location: South West UK Hybrid (2 days onsite per … week) Duration: 6 months (initially view to extend) Vacancies: 3 The Role: As a Security Consultant you will be accountable for ensuring that services and change initiatives in the business areas you are aligned to are delivered in a secure and compliant manner. Youll be working in a matrix … manner with our business, change and delivery teams, supporting everything from small technology changes to major transformation programmes, driving implementation of our Security and Resilience strategies and policies in a positive and pragmatic manner which enables our colleagues to deliver their business objectives. Key responsibilities: Conducting security risk more »

Role Description: The role holder will be a subject matter expert in DevSecOps approaches and best practices, playing a crucial role in bridging development, security, and operations. Demonstrable knowledge of the DevOps culture and principles, Secure Software Development Life Cycle (SDLC) practices, Application security knowledge, Cloud infrastructure … knowledge and familiarity with CI/CD tools, security tooling, and automation tools. The role holder will have overall accountability and oversight for the technical solution delivered for this domain. Key Accountabilities: Creates and owns the E2E technical solution that underpins the goal of Establishing a sustainable "DevSecOps" practice. … matter expert in DevSecOps approaches and best practices Mandatory - Demonstrable knowledge of the DevOps culture and principles, Secure Software Development Life Cycle (SDLC) practices, Application security knowledge, Cloud infrastructure knowledge and familiarity with CI/CD tools, security tooling, and automation tools. Preferred - experience of agile product more »

experience with cloud services and their WAF controls, ideally including one or more of the following: AWS, Azure, and GCP * Strong understanding of Web Application security attack methods and mitigations * Proficiency in WAF tuning and configuration, coupled with a strong foundation in web security principles and practices. … Develop custom WAF rules and features, addressing gaps and enhancing overall security measures * Capability to design and implement bespoke WAF processes and documentation, underpinned by a thorough understanding of web application security. * Analytical skills to review and align platforms with MVP and Baseline Configurations, leveraging a deep knowledge … Providing DevSecOps pipeline maintenance support for the automation works * Familiarity with IDAM protocols and access control measures for WAF management, informed by strong web security knowledge. * Understanding of HTTPS inspection, including Termination and Certificate management, grounded in robust web security practices. * Experience in rate limiting techniques and their more »

IAM Systems Security Engineer (digital) ABJ6891 South East c £49 to £61K + Bonus As an Identity and Access Management (IAM) engineer working a with a global digital technology you will support the planning, design, development, and deployment of centralized IAM solutions for the organization. As an IAM systems … digital technology team manages the entire IT business landscape from research and development through procurement, supply chain, manufacturing, HR and finance capabilities, Project Management, Application Maintenance and Support, Infrastructure Management, Cyber Security, and a range of enablement functions for IT including Budgeting, Finance, Vendor Management and Governance. The … operational procedures around PAM. Design and implement IAM solutions that ensure appropriate controls and tools are selected and then put into operation. Work with application owners to integrate application security and application roles with PAM. Qualifications/Experience Demonstratable experience in Identity and Access Management (IAM more »