1 to 25 of 178 Permanent Application Security Jobs in the UK

identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. We are seeking a highly motivated and experienced Lead Software Security Engineer to join our team. You will have a strong background in software development, security, and operations. This role is required to support the Digital Product Management team … in embedding security requirements and best practices into new Digital Products and Services. You will work closely with the Digital Product Management and IT Security teams to establish and build the right security controls and quality state gates across the product lifecycle. This includes security tooling to manage these controls. In this busy and rewarding role … you'll also: Collaborate with software development teams to integrate security into the development lifecycle Own the cultural shift to a Security DevSecOps mindset Manage & implement security controls, tools, and processes to secure applications and infrastructure Monitor and respond to security incidents and threats in a timely manner Stay up-to-date with security trends More ❯

Role overview: Working for a security vendor, the Security team are accountable for the company's Information Security, Security Architecture, Security Compliance, Security Awareness, Security Operations and Information Security Risk Management Activities. You'll work closely with development and operational teams to design, implement/recommend application security controls. This … is a new role for the company requiring a passion for cyber security and a hands-on development background to create and develop the application security capabilities as part of the SDLC. Ideally you will have a background in software development. Main tasks and responsibilities: Assess and identify gaps in current application security controls and … and services during the SDLC Provide guidance and support during development and rollout of new product features by understanding their requirements and model/evaluate likely threat vectors Provide security expertise and guidance to the Development Teams Promote a security-focused culture as part of the SDLC, educating DevOps teams in security best practices Conduct/Lead More ❯

challenges. We are dedicated to consistently updating our job descriptions to ensure we continue to lead in banking innovation. How you will contribute and key responsibilities: As a Senior Security Engineer, you will be instrumental in designing and implementing security measures for our mobile applications, services, and websites to meet the highest security standards. Your expertise will … help us continuously analyse and improve our security systems, ensuring that our products and services are not only secure by design but also comply with internal and external regulatory requirements. Other responsibilities include: Security Analysis and Improvement: Continuously analyse our security systems for potential improvements, ensuring that our defences remain at the forefront of cybersecurity practices. Vulnerability … Management: Proactively identify, assess, and remediate security vulnerabilities to maintain the integrity and confidentiality of our customer data. Security Automation: Automate security processes and procedures to enhance efficiency and effectiveness, reducing the risk of human error. Security Requirements and Solutions: Identify, define, and document system security requirements, providing well-considered recommendations to management. Development of More ❯

Social network you want to login/join with: Head of Information Security, Europe, London col-narrow-left Client: Trayport Location: London, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Reference: d30f25536962 Job Views: 6 Posted: 14.07.2025 Expiry Date: 28.08.2025 col-wide Job Description: The Head of Information Security, Europe reports directly … to the Chief Information Security Officer, TMX Group and has a dotted line reporting relationship to the Chief Technology Officer, Trayport. The Head of Information Security will be responsible for defining, implementing, and managing the organization's information security strategy and framework for Europe. This critical role involves overseeing all aspects of information security, including a … strong focus on application security, ensuring compliance with ISO27001 standards, financial services regulations, and other relevant legal and contractual requirements. As a senior leader of the Enterprise Information Security team, the role will also be accountable to provide information security oversight, through leadership and guidance across the TMX Group. The successful candidate will be a strategic More ❯

Direct message the job poster from Trayport The Head of Information Security, Europe reports directly to the Chief Information Security Officer, TMX Group and has a dotted line reporting relationship to the Chief Technology Officer, Trayport. The Head of Information Security will be responsible for defining, implementing, and managing the organization's information security strategy and … framework for Europe. This critical role involves overseeing all aspects of information security, including a strong focus on application security, ensuring compliance with ISO27001 standards, financial services regulations, and other relevant legal and contractual requirements. As a senior leader of the Enterprise Information Security team, the role will also be accountable to provide information security oversight, through leadership and guidance across the TMX Group. The successful candidate will be a strategic leader with a strong technical background, including deep application security knowledge, and the ability to effectively communicate security risks and requirements across all levels of the business. Key Responsibilities Information Security Strategy and Governance: Develop, implement, and maintain a More ❯

Head of Information Security, Europe page is loaded Head of Information Security, Europe Apply locations London - 2 Gresham Street time type Full time posted on Posted 5 Days Ago job requisition id R-5246 The Head of Information Security, Europe reports directly to the Chief Information Security Officer, TMX Group and has a dotted line reporting … relationship to the Chief Technology Officer, Trayport. The Head of Information Security will be responsible for defining, implementing, and managing the organization's information security strategy and framework for Europe. This critical role involves overseeing all aspects of information security, including a strong focus on application security, ensuring compliance with ISO27001 standards, financial services regulations … and other relevant legal and contractual requirements. As a senior leader of the Enterprise Information Security team, the role will also be accountable to provide information security oversight, through leadership and guidance across the TMX Group. The successful candidate will be a strategic leader with a strong technical background, including deep application security knowledge, and the More ❯

Head of Information Security, Europe page is loaded Head of Information Security, Europe Apply locations London - 2 Gresham Street time type Full time posted on Posted 5 Days Ago job requisition id R-5246 The Head of Information Security, Europe reports directly to the Chief Information Security Officer, TMX Group and has a dotted line reporting … relationship to the Chief Technology Officer, Trayport. Head of Information Security, Europe page is loaded Head of Information Security, Europe Apply locations London - 2 Gresham Street time type Full time posted on Posted 5 Days Ago job requisition id R-5246 The Head of Information Security, Europe reports directly to the Chief Information Security Officer, TMX … Group and has a dotted line reporting relationship to the Chief Technology Officer, Trayport. The Head of Information Security will be responsible for defining, implementing, and managing the organization's information security strategy and framework for Europe. This critical role involves overseeing all aspects of information security, including a strong focus on application security, ensuring More ❯

see why Glassdoor and Comparably have recognized CaptivateIQ as a best place to work! About the role: Join our Cybersecurity Team and play a pivotal role in strengthening the security of our infrastructure, applications, and services. As a Security Engineer, you will apply your technical expertise across engineering, application security, and incident response to help scale … and mature our security posture. This is a hands-on role that requires a collaborative mindset, strong problem-solving skills, and the ability to identify and respond to security challenges across attack surfaces. You'll work closely with Engineering, Product, and IT teams to embed security across the product lifecycle, triage and mitigate vulnerabilities, and proactively respond … to security threats. If you're passionate about building secure systems, working cross-functionally, and making meaningful impact in a fast-moving, product-led environment-this role is for you. Responsibilities: Design and implement scalable security controls across cloud infrastructure, applications, and enterprise systems. Partner with engineering teams to design secure architectures and assist in system and product More ❯

This position offers a unique opportunity to shape the security architecture of an organization at the forefront of technology. You will have the freedom to innovate security solutions, influence strategic decisions, and work with cutting-edge technologies. Ideal for a seasoned professional looking to make a significant impact on our security posture and lead initiatives that protect … our digital assets. Responsibilities Security Architecture: Architect secure solutions that meet both functional and security requirements, integrating security into system designs from the ground up. Strategy Formulation: Develop and update the security architecture strategy, ensuring alignment with business goals and compliance with industry standards. Risk Management: Perform detailed risk assessments, threat modeling, and vulnerability analyses to … guide security architecture decisions. Implementation Oversight: Oversee the implementation of security controls, ensuring they are effective and scalable across our infrastructure. Technology Leadership: Lead the evaluation, selection, and integration of security technologies, ranging from identity management to network security and cloud security solutions. Collaboration: Work closely with development, operations, and executive teams to ensure security More ❯

Position: Information Security & Compliance Manager Location: Farnborough HQ Working Hours: Full-Time, 40 Hours per week We are looking for a hands-on Information Security & Compliance Manager to take ownership of cyber security and data privacy across myairops. This role balances strategic oversight with practical, day-to-day security operations. Youll be central to maintaining our … changes and enhancements. We are looking for a self-motivated individual with excellent communication and teamwork abilities, as you will collaborate extensively with cross-functional teams to achieve our security objectives. Your strong attention to detail, process-oriented mindset, and ability to meet deadlines with minimal supervision will be key to your success in this role. About us: Were … with diverse challenges including corporate flight departments, brokers, medical providers, military and business aviation operators. Solutions are provided through innovative web delivered software and connected mobile applications. Responsibilities: Lead security operationsacross our product and cloud environment (Azure), working closely with DevOps and engineering to ensure security best practices are followed. Manage external relationshipswith security providers, including penetration More ❯

executing advanced penetration tests and vulnerability assessments across a diverse portfolio of applications. This is a hands-on, technical role where you'll actively identify, exploit, and help remediate security weaknesses in web, mobile, and cloud-based applications. You'll be at the forefront of defending against cyber threats by implementing cutting-edge security tools, collaborating with development … teams to integrate security into the SDLC, and playing a critical role in protecting the organisation's digital assets. The successful candidate will play a hands-on role in testing the security of applications, networks, and systems, while ensuring that security standards are integrated into the development process. Key Responsibilities: Penetration Testing & Vulnerability Assessment: Conduct and oversee … exploits. Analyse and prioritise vulnerabilities based on risk and provide detailed technical reports with recommended remediation steps for developers and system administrators. Keep up to date with the latest security vulnerabilities, exploits, and attack methodologies to ensure effective penetration testing. Security Risk Management: Develop and manage the organisation's vulnerability management program, ensuring compliance with internal policies and More ❯

month contract in a Work from Office (WFO) role. This role will focus on creating a business strategy, gap analysis and implementation, for securing their Azure-based infrastructure, integrating security automation, ensuring PCI DSS compliance, vulnerability and penetration testing and incident response. This role will focus on developing and maintaining secure, scalable Azure DevOps pipelines and Infrastructure as Code … IaC) using Terraform. Their ideal candidate will have a strong background in cloud security best practices, automation, and a proactive approach to integrating security across their software delivery lifecycle. A key part of this position will also involve mentoring an internal engineer, developing structured security policies, and managing Sentinel, Defender and SOAR solutions for automated threat response. … Additionally, the role requires liaising with third-party support partners to coordinate security solutions, manage incidents, and enhance overall cybersecurity posture. Responsibilities Infrastructure Security: Architect and secure Azure-based infrastructure using Terraform, ensuring adherence to security best practices by developing, maintaining, and optimizing Terraform code. DevOps Pipeline Development and Maintenance: Design, develop, and optimize Azure DevOps pipelines More ❯

ability to keep our clients data secure is a bedrock for our reputation as a trustworthy professional services partner to many of the worlds large and prestigious organisations. Information security is not an afterthought; it is core to all that we do, to protect not only our data but that of our clients, and has the unwavering support of … the Board. Led by our new CISO, the in-house Information Security team is a core part of our technology services structure with mature or evolving capability across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with … you will do The Identity and Access Senior Architect will be part of the Digital Trust team, and will be responsible for maintaining the identity and access management (IAM) security of the firms assets. This role is critical in translating the organisations IAM vision into a workable, mature and optimized function and service. This role requires extensive experience across More ❯

Sanderson G&D are working with a fast growing Cyber Security consultancy delivering secure, user-focused digital services for the UK Government. They’re looking for an experienced Application Security/DevSecOps Engineer to embed security at the heart of modern software delivery. This is a newly defined role focused on integrating security into the … in shifting security left, guiding engineering teams, testing controls, and supporting secure design across a range of digital services. The Role This is far more than just an AppSec testing role. You’ll be embedded into agile product teams, helping them design and build secure digital services from the ground up. Your day-to-day might include: Conducting hands … environments Supporting the integration of security data into a centralised platform (Splunk) and developing dashboards to visualise risk across services You’ll be a key player in embedding AppSec into a fast-moving digital environment with tangible real-world impact. What We’re Looking For Hands-on expertise in application and cloud security within CI/CD More ❯

Your new company - Financial Services Your new role - Permanent - ON SITE 5 Days per week. - UK OnlyWe are looking for a highly skilled Information technology Security Engineer to join the IT team. As the first line of defence in the IT department, the principal purpose of this job mainly focusses on information security, cybersecurity and data security, including a wide scope, such as physical security of computer rooms, operating system level security of Windows and Linux, network security of firewall and other security devices, application security both development and testing phrase, terminal security, backup security, third party and supply chain security of IT service provider.Liaison with the … Head Office, Security Operation Centre of Data Centre for implementing security policies, projects and security controls. Work with Internal Audit and other departments to execute penetration tests, cybersecurity risk self-assessment, ensure best practice and international baseline standards are in place and in line with local regulations.The ideal candidate will be responsible for managing information security More ❯

hear from you. Our CIO team is always looking for passionate individuals who are eager to make a difference and contribute to our success. We are seeking an experienced Security Architect with deep expertise in Microsoft Azure security to join our team. The successful candidate will play a pivotal role in designing and implementing secure, scalable, and resilient … cloud architectures, ensuring compliance with security standards, and driving security best practices across our Azure environment. Job Details You will be at the forefront of designing, developing, and maintaining secure Azure cloud architectures that meet stringent business and compliance requirements. Your role will involve leading security reviews and threat modeling activities for cloud-based solutions, implementing robust … Azure-native security controls such as Microsoft Defender for Cloud, Sentinel, Key Vault, Azure Policy, and RBAC. You will define and enforce rigorous security configuration standards, baselines, and hardening guides for Azure resources, collaborating closely with DevOps and Engineering teams to integrate security seamlessly into CI/CD pipelines (DevSecOps). Conducting thorough risk assessments and gap More ❯

hear from you. Our CIO team is always looking for passionate individuals who are eager to make a difference and contribute to our success. We are seeking an experienced Security Architect with deep expertise in Microsoft Azure security to join our team. The successful candidate will play a pivotal role in designing and implementing secure, scalable, and resilient … cloud architectures, ensuring compliance with security standards, and driving security best practices across our Azure environment. Job Details You will be at the forefront of designing, developing, and maintaining secure Azure cloud architectures that meet stringent business and compliance requirements. Your role will involve leading security reviews and threat modeling activities for cloud-based solutions, implementing robust … Azure-native security controls such as Microsoft Defender for Cloud, Sentinel, Key Vault, Azure Policy, and RBAC. You will define and enforce rigorous security configuration standards, baselines, and hardening guides for Azure resources, collaborating closely with DevOps and Engineering teams to integrate security seamlessly into CI/CD pipelines (DevSecOps). Conducting thorough risk assessments and gap More ❯

We are searching for a Senior Software Security Architect/Senior Application Security Architect for a marketing leading and award-winning technology and data driven business. The position is offered on a remote basis. The role is hands-on and very software engineering focused - you will be responsible for establishing a secure SDLC and 'Secure by Design … approach/practice to be used by all of the Architecture and Software development teams. The role will involve: Developing, implementing, and maintaining application security architecture across the organisation. Ensuring our systems are designed with objectives like speed, scalability, robustness, zero-trust, automation and supportability at the core. Collaborating with the Architecture and Engineering Team to ensure security is an integral part of all development and deployment processes. Providing expert software security advice (design, coding, testing) to the Software Engineering Community, to InfoSec, DevOps and other teams. Defining and delivering secure software development of information to the software engineering teams. Escalating issues appropriately, to various teams and levels of authority inside the organisation. Interfacing with customers More ❯

Job Title: Senior Security Engineer Manager: CISO Department: Cyber Security Division: Enterprise Information Technology Services Location: London, Hybrid Main Purpose: The MDU is undertaking an exciting digital transformation programme and to support this the Cyber Security Team is looking to appoint a Senior Security Engineer. Working closely with delivery teams covering strategic and non-strategic change … this role will provide subject matter expertise to keep the MDU, its data and, its member safe from cyber security threats. The Senior Security Engineer will be responsible for the delivery of security technologies in a range of projects and will therefore: Have a strong cyber security engineering or professional services background with experience of delivering … both large-scale and small-scale projects to a high quality in a fast-paced environment. Have a good practical knowledge of both traditional security technologies and modern security tooling to allow support of both the existing and new environments during the digital transformation. Have a proven track record of working in cross functional teams to successfully deliver More ❯

We are seeking an experienced Security Engineer to join our dynamic and growing team. The successful candidate will play a crucial role in supporting management with securing our organization's infrastructure, systems, and data against cyber threats. As a Security Engineer, you will be responsible for supporting the security team with designing, innovating, deploying, and maintaining security … will collaborate with cross-functional teams to ensure the confidentiality, integrity, and availability of our systems. This will require developing an effective working partnership with partner teams, to ensure security best practices are embedded into their processes, activities and projects This role will cover a wide array of security areas across our SaaS environments, as well as corporate … domains and will require a skilled and dynamic individual to spearhead efforts in fortifying both infrastructure and application platform s, against potential threats. About Smart Communications Smart Communications provides the platform that leading organizations trust to deliver personalized, consistent, and compliant conversations across all touchpoints and channels. The Summary We are seeking an experienced Security Engineer to join More ❯

Senior Cloud Security Engineer Department: Engineering Employment Type: Permanent - Full Time Location: London Reporting To: Sami Eltamawy Compensation: £80,000 - £90,000/year Description London, office-based Freetrade's mission is to become the default place to invest. Investing has been too complicated and expensive for too long, keeping millions from making the most of their savings. We … an even better experience for our customers. We're on a mission to build a secure, scalable, and resilient cloud infrastructure-and we're looking for a Senior Cloud Security Engineer to lead the way. In this foundational role, you'll architect and build our cloud security program from the ground up, helping to shape how we protect … our systems, services, and users in an ever-evolving digital landscape. You'll work closely with our DevOps and Platform teams to integrate security deeply into our development and deployment pipelines. This is your chance to define the standards, select the tools, and create the practices that will safeguard our cloud ecosystem now and into the future. If you More ❯

Story Behind the Need • Business group: Application Security - deploying application security vulnerability testing tools used by the Bank for vulnerability testing; currently doing a lot of modernization projects updating portfolio for statis dynamic and mobile testing • Project: Resource will be playing a key role in deploying components of the strategic solution for Application Security … have gone through ideation and high level design) going into detail deployment and development Candidate Value Proposition: • The successful candidate will have the opportunity to work with cutting-edge security vulnerability testing tools and implement and define best practices in delivering enterprise scale solutions, opportunity to work with senior/international stakeholders, for a top 5 Canadian Bank. Typical … Dynatrace, Zabbix or other automated tool stacks. • Cloud Management: Be able to assess and implement best practices when configuring cloud SaaS solutions. • Collaboration: Work closely with development, operations, and security teams to identify and resolve issues, complete threat risk assessments, and improve existing processes. • Security: Implement security best practices and ensure compliance with industry standards to protect More ❯

UK CISO on company vulnerability management KPIs/KRIs Preparation of vulnerability management process and procedure documentation Provide consulting services to the vulnerability management team to assist in their security design to identify potential risks Review the security issues and recommend the appropriate controls to mitigate these risks Provide security awareness to clients and business groups to … Aqua, Palo Alto Xpanse. Jira to manage project work, timelines and operational tickets. 5+years of relevant experience Possess strong understanding of vulnerability management processes, procedures and principles Exposure to application security best practices such as secure coding, security testing techniques Expert knowledge of Security Policies and Standards Expert knowledge of Information Security practices Knowledge of … compliance, audit and privacy policies and regulations General knowledge of security technology Nice to have: Experience with PowerBI Programming skills and experience (python, java, SQL) Technical network skills Knowledge of OWASP, SANS, NIST, ISO 27001, ISF or other security-related practices Previous Banking/Financial Industry experience CISSP, CISA, CRISC, CSSLP, SABSA certifications Skills & Competencies: Vulnerability management Risk More ❯

applicants Direct message the job poster from Levy Search Senior Client Partner | Solving the challenge of building elite data teams A great client of mine is hiring a Security-Focused Technical Consultant/Security Architect to join a highly regulated healthcare tech environment. You’ll work cross-functionally with engineering, architecture, and business teams to design secure solutions … months with chance to extend or go perm. IR35: Inside Work structure: Remote Partner with engineering and architecture to define secure technical solutions Manage end-to-end project security across multiple applications Perform vulnerability testing, threat modelling, and risk assessments Maintain up-to-date security policies, standards, and best practices Communicate risks and mitigation strategies to senior stakeholders … Translate business needs into effective security controls 5+ years in security architecture or consulting in regulated environments Deep knowledge of secure SDLC, DevSecOps, cloud (Azure/AWS), and frameworks (OWASP, MITRE) Hands-on experience with vulnerability tools, threat modelling, and compliance (GDPR, HIPAA, PCI) Strong communication and stakeholder engagement skills Technical knowledge across .NET, Java, scripting (Python, PowerShell More ❯

RMM Service Automation Platform and has a proven track record of helping MSPs standardize and automate the setup and delivery of IT services to achieve true scalability. The Senior Application Security Engineer plays a critical role in enhancing our application security posture by conducting advanced security assessments, leading security initiatives, and collaborating with development … teams to integrate security into the software development lifecycle. The position plays a key role in identifying and mitigating security vulnerabilities to protect our applications and data. This role is based in our Edinburgh hub. What You'll Do Assist in maturing organizational processes that drive complex security efforts for internal teams and external partners. Develop and … implement workflows to automate security testing/vulnerability detection within the software development lifecycle. Advocate for security as a subject matter expert across multiple organizations, holding discussions on security topics and enhancing awareness of application security objectives across the organization. Collaborate with engineering teams by providing well-researched security advice to demonstrate vulnerabilities and More ❯