11 of 11 Contract Application Security Jobs in London

UK CISO on company vulnerability management KPIs/KRIs Preparation of vulnerability management process and procedure documentation Provide consulting services to the vulnerability management team to assist in their security design to identify potential risks Review the security issues and recommend the appropriate controls to mitigate these risks Provide security awareness to clients and business groups to … Aqua, Palo Alto Xpanse. Jira to manage project work, timelines and operational tickets. 5+years of relevant experience Possess strong understanding of vulnerability management processes, procedures and principles Exposure to application security best practices such as secure coding, security testing techniques Expert knowledge of Security Policies and Standards Expert knowledge of Information Security practices Knowledge of … compliance, audit and privacy policies and regulations General knowledge of security technology Nice to have: Experience with PowerBI Programming skills and experience (python, java, SQL) Technical network skills Knowledge of OWASP, SANS, NIST, ISO 27001, ISF or other security-related practices Previous Banking/Financial Industry experience CISSP, CISA, CRISC, CSSLP, SABSA certifications Skills & Competencies: Vulnerability management Risk More ❯

vulnerability management lifecycle Vendor and market analysis and engagement Ability to translate technical information into Risks, Threats, and Vulnerabilities for both a technical and non-technical audience Cloud based security (AWS/GCP), with a specialism in vulnerability management Self-starter, able to work in technical detail and motivate a diverse group of stakeholders to build sponsorship for significant … and impactful change Desired: Establishing observability platforms Capabilities adjacent to exposure/vulnerability management capabilities (ie cyber security asset management, attack surface management, etc) Pragmatic application of zero-trust philosophies Cloud based security (GCP, AWS and Azure) Pentest scoping and analysis experience Application security Threat modelling To apply for this position please submit your CV. More ❯

Senior Application Security Consultant 5 Months £585 per day (Inside IR35) 1-2 days per week on site in London The Application Security Consultant will support the increasing demand for Information Security skills across Group Functions. With an ability to review existing applications and also engage on new services being offered, this role is critical … to advising on how we embed security into our business operations. This role will also play a key role in realising our Security Improvement programme across a number of our business areas and will require effective communication with a wide range of colleagues both technical and non-technical. Principal accountabilities: 1. Security Design - Ensure projects consider security in the design by setting security needs and requirements to ensure alignment to L&G Security Policies and Standards, participating in Technology or Supplier selection as a security SME and applying threat and initial risk assessment approaches to select appropriate controls. Work with the Group wide Security Improvement Programme to ensure Group Functions services align More ❯

Working) Job Type: Contract | Full-time Industry: Healthcare Insurance Pay: £700 outside IR35As a key member of the engineering and solution architecture team, you will: Define and deliver technical security requirements aligned with business needs. Investigate and resolve complex, high-priority security incidents. Oversee a portfolio of applications and projects, ensuring robust security controls. Maintain and update … security information policies. Conduct vulnerability testing and perform security architecture assessments. What We’re Looking For: 5+ years of relevant experience in application security. Strong knowledge of GDPR, HIPAA, and PCI compliance frameworks. Industry-recognized certifications (e.g., CISSP). Proven ability to interpret and apply security policies and standards in real-world environments. Hands-on experience … with Microsoft Azure security services and architecture If intrested, please apply with your most up to date CV. More ❯

We are looking for an experienced Akamai WAF Engineer who has expertise in web application security, content distribution and in Threat and Vulnerability Management, DDoS protections, and delivering change projects into the organisation. As a part of the Cyber Security Team and work with other cyber professionals across Digital Cyber Security and the wider organisation, contributing … to the success of the team across multiple aspects. Key Responsibilities: Deliver security software and configurations using Akamai, GCP and Azure cloud native products. Deliver and maintain security solutions for our Enterprise and Digital Channels. Manage DDoS, Vulnerability management and threat intelligence, certification, ensuring layer 6 & 7 defences are one step ahead of cyber criminals. Involved in all … the incidents and threats to Lloyds cyber security to understand how we can mitigate future attacks. Required Skills: Strong experience with multiple WAF solutions for edge, cloud, and on-premise Proficiency in WAF tuning and configuration, coupled with a strong foundation in web security principles and practices. Develop custom WAF rules and features, addressing gaps and enhancing overall More ❯

Azure Software/Application Engineer - Hybrid Working - Outside IR35 Our client, a global Insurance broker, are currently looking to hire an Azure Software/Application Engineer with strong Microsoft Azure experience and a background of Integration projects. This role would be hybrid working with 3 days a week in the client site based in London. Role Summary: The … a strong foundation in software engineering and solution architecture, who is passionate about designing secure, scalable systems. In this role you will work closely with the M&A IT Application Architect to conduct architecture reviews, assess bespoke applications, and guide integration strategies that align with Group IT standards. A key focus will be on evaluating application security … to support integration into the enterprise. Evaluate software development practices and identify opportunities for modernisation, refactoring, or migration. Use code analysis tools to identify vulnerabilities and recommend improvements in application security and resilience. Assist in producing executive-level architecture review reports and technical summaries for IT and business stakeholders. Collaborate with infrastructure and security teams to ensure More ❯

My client within the wealth management space I currently looking to bring in a Security Vulnerability Management Analyst on 6 month rolling contract. Please see below. Requirements: Strong understanding of vulnerability management processes, procedures and principles Exposure to application security best practices such as secure coding, security testing techniques Expert knowledge of Security Policies and … Standards Expert knowledge of Information Security practices Knowledge of compliance, audit and privacy policies and regulations General knowledge of security technology Logistics: 6 Month Rolling contract £470 p/d inside IR35 via Umbrella Company Hybrid Please click here to find out more about our Key Information Documents. Please note that the documents provided contain generic information. If More ❯

My client within the wealth management space I currently looking to bring in a Security Vulnerability Management Analyst on 6 month rolling contract. Please see below. Requirements: Strong understanding of vulnerability management processes, procedures and principles Exposure to application security best practices such as secure coding, security testing techniques Expert knowledge of Security Policies and … Standards Expert knowledge of Information Security practices Knowledge of compliance, audit and privacy policies and regulations General knowledge of security technology Logistics: 6 Month Rolling contract £470 p/d inside IR35 via Umbrella Company Hybrid Please click here to find out more about our Key Information Documents. Please note that the documents provided contain generic information. If More ❯

a strong foundation in software engineering and solution architecture, who is passionate about designing secure, scalable systems. In this role you will work closely with the M&A IT Application Architect to conduct architecture reviews, assess bespoke applications, and guide integration strategies that align with Group IT standards. A key focus will be on evaluating application security … to support integration into the enterprise. Evaluate software development practices and identify opportunities for modernisation, refactoring, or migration. Use code analysis tools to identify vulnerabilities and recommend improvements in application security and resilience. Assist in producing executive-level architecture review reports and technical summaries for IT and business stakeholders. Collaborate with infrastructure and security teams to ensure More ❯

compliance and configuration Managing Conditional Access and remote access settings Adding software packages to Intune, testing and releasing them across the estate User and Group Administration: Creating and maintaining security and mail-enabled groups Populating and managing group memberships Exchange Online: Configuring secure email Setting up and managing mail-enabled groups Privileged Identity Management (PIM): Assisting in the creation … and management of PIM-enabled groups EUC Solution Development: Designing and deploying tailored solutions for specific user roles Supporting the rollout of any agreed solutions Microsoft Cloud App Security (MCAS): Configuring MCAS settings, including handling application and/or user exemptions Experience required from the M365 Engineer: Proven experience in Microsoft 365 administration, particularly with Intune and Azure More ❯

design best practices. Develop custom policies using JavaScript, Node.js, or Python for API management platforms. Collaborate on CI/CD pipelines and containerized deployments using Docker and Kubernetes. Ensure application security including OAuth 2.0, OIDC, CORS, CSRF, and cookie management. Write and maintain unit and functional tests using frameworks like Cypress. Optimize Back End performance and ensure high … Gateways (eg, APIGee, Endpoints, Mulesoft). Proficiency with DevOps tools: GitHub, GitLab, Terraform, CLI, Ansible, Puppet, Docker Registry. Solid experience with Google Cloud Services and GKE. Familiarity with API security, authentication, and authorization mechanisms. More ❯