security standards. Your expertise will help us continuously analyse and improve our security systems, ensuring that our products and services are not only secure by design but also comply with internal and external regulatory requirements. Other responsibilities include: Security Analysis and Improvement: Continuously analyse our security systems for … Development of Security Standards: Develop and maintain best practices and security standards for the organisation, guiding teams in the implementation of securecoding practices. Secure Design: Collaborate with development teams to ensure that web and mobile front-ends, as well as microservice architectures, are designed … also have a proven experience and knowledge with any combination of the following: Threat modelling and risk assessments Working knowledge of securecoding principles (OWASP and OWASP mobile, SANS ) Experience with designing and administering identity management (authentication and authorisation including policy enforcement points, token services, protocols such More ❯
Security Engineers to join our team, to grow with the rest of the company, and ensure we continue to do so in a secure and safe way. You will be a key partner in defining what Security is at Octopus Energy Group. We will be shaping this team … Work with the wider Platform and application teams to ensure that our infrastructure, systems, and applications are secure Develop securecoding practices and provide guidance to development teams on application security best practices Keep up to date with the latest security trends and technologies related … What you'll have: Excellent security and technology background Strong understanding of web application security concepts, including OWASP Top 10 vulnerabilities, securecoding practices, and application security testing tools Experience with security tools and technologies, such as web application firewalls (WAFs), and static and dynamic application security More ❯
data. Key Responsibilities: Perform security assessments and vulnerability scanning for web applications, APIs, and infrastructure. Collaborate with development teams to implement securecoding practices and address vulnerabilities. Review and advise on secure architecture and design for new and existing applications. Stay up to date with … application security, penetration testing, and secure software development practices. Strong understanding of security vulnerabilities (OWASP Top 10, etc.) and securecoding techniques. Experience with security tools (e.g., static/dynamic analysis tools, vulnerability scanners). Familiarity with common web technologies (e.g., Java, Python, JavaScript, SQL More ❯
teams, you'll implement security solutions for low-latency systems and multi-cloud platforms, including AWS, Azure, and Alibaba Cloud. You'll also secure hybrid infrastructures across Python, C++, and Kotlin/Java environments, ensuring robust protection that supports QRT's high-speed, data-driven operations. Support the … moving environment. Contribute to the development and maintenance of a secure software development lifecycle (SDLC) with a focus on securecoding practices in languages like Python, C++, Rust, Go and Kotlin/Java. Conduct threat modeling, vulnerability assessments and security code reviews across different platforms … in product security or similar roles with significant practical experience in securing software development at scale. Proven record of accomplishment in securecoding practices and development experience in development languages such as Python, C++, Rust, Go and Kotlin/Java. Strong technical background in software development, system More ❯
London, England, United Kingdom Hybrid / WFH Options
Client Server
Senior Product Security Engineer London/WFH to £160k Do you have expertise with securecoding practices and application security? You could be progressing your career in a senior, hands-on role at a global systematic trading firm. As a Senior Product Security Engineer you'll drive … platforms, ensuring security is embedded at every stage of the development lifecycle and provide mentorship, guidance and training on security best practices and securedevelopment processes to engineering teams working in mixed cloud and operating systems environments. Location/WFH: You'll join colleagues based in high spec … at the onsite restaurant, with flexibility to work from home two days a week. About you: You have strong experience with securecoding practices and development experience with development languages such as Python, C++, Rust, Go and Kotlin/Java You have a strong knowledge of software More ❯
london, south east england, united kingdom Hybrid / WFH Options
Client Server
Senior Product Security Engineer London/WFH to £160k Do you have expertise with securecoding practices and application security? You could be progressing your career in a senior, hands-on role at a global systematic trading firm. As a Senior Product Security Engineer you'll drive … platforms, ensuring security is embedded at every stage of the development lifecycle and provide mentorship, guidance and training on security best practices and securedevelopment processes to engineering teams working in mixed cloud and operating systems environments. Location/WFH: You'll join colleagues based in high spec … at the onsite restaurant, with flexibility to work from home two days a week. About you: You have strong experience with securecoding practices and development experience with development languages such as Python, C++, Rust, Go and Kotlin/Java You have a strong knowledge of software More ❯
strategy and implement your ideas. Must have: 5+ years of experience in Cyber Security and IT Security, including web application security, securecoding techniques, secure system design and secure operations. A degree in Computer Science or equivalent. Existing (or ability to gain) Security … Clearance. Relevant certifications, such as CISSP, CISM, or CISA. Strong technical background as well as excellent communication and problem-solving skills. Understanding of Secure Software, a plus; Secure keys, Authentication processes, PKI, or X.509. This is a fresh opportunity to join a world-class organisation and More ❯
strategy and implement your ideas. Must have: 5+ years of experience in Cyber Security and IT Security, including web application security, securecoding techniques, secure system design and secure operations. A degree in Computer Science or equivalent. Existing (or ability to gain) Security … Clearance. Relevant certifications, such as CISSP, CISM, or CISA. Strong technical background as well as excellent communication and problem-solving skills. Understanding of Secure Software, a plus; Secure keys, Authentication processes, PKI, or X.509. This is a fresh opportunity to join a world-class organisation and More ❯
as Our Global Cybersecurity Expert! As a result of our continued growth, we're looking for an experienced cybersecurity professional passionate about building secure systems and fostering a culture of security. You'll take charge of our Cybersecurity function, ensuring our digital products and infrastructure are secure … become the norm. Your Mission As our Cybersecurity Lead, you will: Build and implement a DevSecOps framework to ensure our digital products are secure and meet the highest Cyber assurance standards. Lead the Cybersecurity function, managing people, processes, and tools while ensuring the business is "Secure … Cloud networking architecture: VNets, application gateways, private and service endpoints, and firewalls. Secure Software Development: Deep experience implementing effective securecoding practices (e.g., OWASP Top 10, SAST, DAST, SonarCloud). You can seamlessly integrate security into the SDLC with a shift-left approach. Cloud Security More ❯
london, south east england, united kingdom Hybrid / WFH Options
TRIA
enforce, and continuously evolve software engineering best practices (e.g., SOLID principles, domain-driven design, clean architecture, modular monoliths vs microservices). Drive consistency in coding standards, code review rigor, and software craftsmanship. Lead critical system architecture decisions, including technology stack evolution, refactoring legacy components, and designing future-state systems. … Ensure integration patterns and service contracts across internal and external APIs are robust, secure, and scalable. System Integration & Platform Ownership Oversee integration between business systems using APIs, middleware, and ETL pipelines, including Salesforce, Power Platform (PowerApps, PowerAutomate, LogicApps), SharePoint, and custom web applications. Lead optimization and governance around … data sources and APIs. Security Engineering & Governance Partner with security engineers to integrate security throughout the software lifecycle (shift-left security, securecoding, threat modelling). Own the implementation of secure authentication/authorization practices, audit logging, encryption at rest/in transit, and other More ❯
south west london, south east england, united kingdom Hybrid / WFH Options
TRIA
enforce, and continuously evolve software engineering best practices (e.g., SOLID principles, domain-driven design, clean architecture, modular monoliths vs microservices). Drive consistency in coding standards, code review rigor, and software craftsmanship. Lead critical system architecture decisions, including technology stack evolution, refactoring legacy components, and designing future-state systems. … Ensure integration patterns and service contracts across internal and external APIs are robust, secure, and scalable. System Integration & Platform Ownership Oversee integration between business systems using APIs, middleware, and ETL pipelines, including Salesforce, Power Platform (PowerApps, PowerAutomate, LogicApps), SharePoint, and custom web applications. Lead optimization and governance around … data sources and APIs. Security Engineering & Governance Partner with security engineers to integrate security throughout the software lifecycle (shift-left security, securecoding, threat modelling). Own the implementation of secure authentication/authorization practices, audit logging, encryption at rest/in transit, and other More ❯
west london, south east england, united kingdom Hybrid / WFH Options
TRIA
enforce, and continuously evolve software engineering best practices (e.g., SOLID principles, domain-driven design, clean architecture, modular monoliths vs microservices). Drive consistency in coding standards, code review rigor, and software craftsmanship. Lead critical system architecture decisions, including technology stack evolution, refactoring legacy components, and designing future-state systems. … Ensure integration patterns and service contracts across internal and external APIs are robust, secure, and scalable. System Integration & Platform Ownership Oversee integration between business systems using APIs, middleware, and ETL pipelines, including Salesforce, Power Platform (PowerApps, PowerAutomate, LogicApps), SharePoint, and custom web applications. Lead optimization and governance around … data sources and APIs. Security Engineering & Governance Partner with security engineers to integrate security throughout the software lifecycle (shift-left security, securecoding, threat modelling). Own the implementation of secure authentication/authorization practices, audit logging, encryption at rest/in transit, and other More ❯
bonus + benefits Location: UK – Remote This company is scaling its security function and is hiring Senior Application Security Engineers to help embed securedevelopment practices across its engineering teams. You’ll play a hands-on role in identifying and resolving vulnerabilities, integrating security into the SDLC, helping … developers create software that is secure, robust, and production-ready by design. You’ll be joining a high-impact security team at a pivotal point in the company’s growth. The environment spans legacy systems, enterprise-grade platforms, and greenfield builds – making it an ideal opportunity for individuals … discovered vulnerabilities. Requirements: 5+ years of hands-on experience in application security and secure software development. Strong knowledge of securecoding practices and common vulnerabilities (OWASP) Experience with SAST, DAST, and IAST tools and integrating them into CI/CD pipelines. Proficiency in writing and More ❯
bonus + benefits Location: UK – Remote This company is scaling its security function and is hiring Senior Application Security Engineers to help embed securedevelopment practices across its engineering teams. You’ll play a hands-on role in identifying and resolving vulnerabilities, integrating security into the SDLC, helping … developers create software that is secure, robust, and production-ready by design. You’ll be joining a high-impact security team at a pivotal point in the company’s growth. The environment spans legacy systems, enterprise-grade platforms, and greenfield builds – making it an ideal opportunity for individuals … discovered vulnerabilities. Requirements: 5+ years of hands-on experience in application security and secure software development. Strong knowledge of securecoding practices and common vulnerabilities (OWASP) Experience with SAST, DAST, and IAST tools and integrating them into CI/CD pipelines. Proficiency in writing and More ❯
south west london, south east england, united kingdom
Lawrence Harvey
bonus + benefits Location: UK – Remote This company is scaling its security function and is hiring Senior Application Security Engineers to help embed securedevelopment practices across its engineering teams. You’ll play a hands-on role in identifying and resolving vulnerabilities, integrating security into the SDLC, helping … developers create software that is secure, robust, and production-ready by design. You’ll be joining a high-impact security team at a pivotal point in the company’s growth. The environment spans legacy systems, enterprise-grade platforms, and greenfield builds – making it an ideal opportunity for individuals … discovered vulnerabilities. Requirements: 5+ years of hands-on experience in application security and secure software development. Strong knowledge of securecoding practices and common vulnerabilities (OWASP) Experience with SAST, DAST, and IAST tools and integrating them into CI/CD pipelines. Proficiency in writing and More ❯
project deliveries Experience with software development lifecycle methodologies such as Scrum, Kanban, etc. Expertise in secure software development and securecoding practices Ability to translate business requirements into software technical specifications Act as a liaison between business and technology teams Keep abreast with latest technologies More ❯
City of London, London, United Kingdom Hybrid / WFH Options
Ignite Digital Search Ltd
/IAM (Okta) Application Security Engineer/AWS Security Engineer/CloudSec Location: Hybrid London (2 days per week onsite) Ready to drive secure engineering at scale in a leading fintech? Were looking for a Cloud Application Security Engineer to help shape and secure cutting-edge … platforms. Youll work with DevOps and engineering teams to build secure-by-design solutions in AWS using tools like IAM, Okta, AWS Shield, and SAST/DAST. This is a high-impact role with a focus on AppSec, cloud security architecture, observability and secure software development … practices into CI/CD pipelines Run vulnerability management and bug bounty programs Build security dashboards, frameworks, and reusable libraries Promote securecoding and AppSec best practices across teams What You Bring Deep knowledge of AWS security tools & IAM Experience with Okta , service mesh, observability tooling Hands More ❯
london, south east england, united kingdom Hybrid / WFH Options
SecureFlag
secure software development. In this role, you’ll be responsible for testing a Java-based codebase that powers our securecoding labs and training platform. Your mission is to ensure our software is reliable, robust, and meets the highest standards of quality. Key Responsibilities Design … systems, with a focus on both functionality and security. Perform functional, regression, integration, and system-level testing. Validate business logic, user workflows, and secure handling of data across our platform. Create and manage automated test suites using tools compatible with Java (e.g., JUnit, TestNG, Selenium, REST Assured). … tools (e.g., Maven or Gradle). Experience testing RESTful APIs and backend services. Strong problem-solving skills and attention to detail. Understanding of secure software development lifecycle. Familiarity with CI/CD tools such as Jenkins, GitLab CI, or GitHub Actions. Good communication skills and a collaborative mindset. More ❯
south west london, south east england, united kingdom Hybrid / WFH Options
SecureFlag
secure software development. In this role, you’ll be responsible for testing a Java-based codebase that powers our securecoding labs and training platform. Your mission is to ensure our software is reliable, robust, and meets the highest standards of quality. Key Responsibilities Design … systems, with a focus on both functionality and security. Perform functional, regression, integration, and system-level testing. Validate business logic, user workflows, and secure handling of data across our platform. Create and manage automated test suites using tools compatible with Java (e.g., JUnit, TestNG, Selenium, REST Assured). … tools (e.g., Maven or Gradle). Experience testing RESTful APIs and backend services. Strong problem-solving skills and attention to detail. Understanding of secure software development lifecycle. Familiarity with CI/CD tools such as Jenkins, GitLab CI, or GitHub Actions. Good communication skills and a collaborative mindset. More ❯
west london, south east england, united kingdom Hybrid / WFH Options
SecureFlag
secure software development. In this role, you’ll be responsible for testing a Java-based codebase that powers our securecoding labs and training platform. Your mission is to ensure our software is reliable, robust, and meets the highest standards of quality. Key Responsibilities Design … systems, with a focus on both functionality and security. Perform functional, regression, integration, and system-level testing. Validate business logic, user workflows, and secure handling of data across our platform. Create and manage automated test suites using tools compatible with Java (e.g., JUnit, TestNG, Selenium, REST Assured). … tools (e.g., Maven or Gradle). Experience testing RESTful APIs and backend services. Strong problem-solving skills and attention to detail. Understanding of secure software development lifecycle. Familiarity with CI/CD tools such as Jenkins, GitLab CI, or GitHub Actions. Good communication skills and a collaborative mindset. More ❯
london, south east england, united kingdom Hybrid / WFH Options
G&L Consulting
. Multiple Deliverables SDET Testing (Software Development Engineer in Test) Ideally Developer-tester hybrid. Write testing frameworks and also contribute to production code. Strong coding background (Java, Python, C#, etc.). Build integration and end-to-end automation pipelines. Performance/Load Testing Simulates real-world load and stress … for known vulnerabilities. Collaborate with SecOps and DevSecOps teams. Security QA/SecureCode Testing Test software from a securecoding perspective. Ensure compliance with securedevelopment standards (OWASP Top 10, etc.). Test Management Oversee testing across multiple teams and or products. More ❯
south west london, south east england, united kingdom Hybrid / WFH Options
G&L Consulting
. Multiple Deliverables SDET Testing (Software Development Engineer in Test) Ideally Developer-tester hybrid. Write testing frameworks and also contribute to production code. Strong coding background (Java, Python, C#, etc.). Build integration and end-to-end automation pipelines. Performance/Load Testing Simulates real-world load and stress … for known vulnerabilities. Collaborate with SecOps and DevSecOps teams. Security QA/SecureCode Testing Test software from a securecoding perspective. Ensure compliance with securedevelopment standards (OWASP Top 10, etc.). Test Management Oversee testing across multiple teams and or products. More ❯
west london, south east england, united kingdom Hybrid / WFH Options
G&L Consulting
. Multiple Deliverables SDET Testing (Software Development Engineer in Test) Ideally Developer-tester hybrid. Write testing frameworks and also contribute to production code. Strong coding background (Java, Python, C#, etc.). Build integration and end-to-end automation pipelines. Performance/Load Testing Simulates real-world load and stress … for known vulnerabilities. Collaborate with SecOps and DevSecOps teams. Security QA/SecureCode Testing Test software from a securecoding perspective. Ensure compliance with securedevelopment standards (OWASP Top 10, etc.). Test Management Oversee testing across multiple teams and or products. More ❯
london, south east england, united kingdom Hybrid / WFH Options
Ntegra
applications across multiple client projects. You'll help shape technical architecture, contribute directly to code and collaborate closely with Agile teams to deliver secure and maintainable software solutions. Our projects primarily utilise React and TypeScript for front-end development with varied back-end technologies including Python, Node.js, .NET … and estimation activities, ensuring consistently high-quality code through code reviews and testing practices Collaborate with architects, engineers and delivery leads to deliver secure, maintainable systems Participate in workshops, demos and discussions with internal teams and clients Contribute to the development of internal delivery standards and team culture … Exposure or interest in additional frameworks/languages (.NET, Ruby on Rails, Go) or willingness to learn new technologies Experience with securecoding practices and awareness of software assurance principles Active SC clearance Our Offer At Ntegra, we offer an inspiring and inclusive work environment, where your More ❯
west london, south east england, united kingdom Hybrid / WFH Options
Ntegra
applications across multiple client projects. You'll help shape technical architecture, contribute directly to code and collaborate closely with Agile teams to deliver secure and maintainable software solutions. Our projects primarily utilise React and TypeScript for front-end development with varied back-end technologies including Python, Node.js, .NET … and estimation activities, ensuring consistently high-quality code through code reviews and testing practices Collaborate with architects, engineers and delivery leads to deliver secure, maintainable systems Participate in workshops, demos and discussions with internal teams and clients Contribute to the development of internal delivery standards and team culture … Exposure or interest in additional frameworks/languages (.NET, Ruby on Rails, Go) or willingness to learn new technologies Experience with securecoding practices and awareness of software assurance principles Active SC clearance Our Offer At Ntegra, we offer an inspiring and inclusive work environment, where your More ❯