1 to 25 of 121 Permanent Application Security Jobs in the UK

Senior Application Security Engineer Cambridgeshire Based - 1-2 days a week onsite We are looking for an experienced Senior Application Security Engineer to join our client's expanding Cyber Security team. This is an incredible opportunity to craft a world-class Application Security function , playing a critical role in embedding security within … all stages of the development lifecycle. What you'll be doing: Becoming a key contributor to the Cyber team by focusing on application security architecture and implementing a robust risk management programme. Collaborating closely with different teams to devise plans, perform threat modelling, adopt architecture best practices, drive secure development lifecycles, and manage risk remediation. Providing expertise in … security best practices and compliance while undertaking hands-on security testing. Identifying application security risks and supporting requirements for new projects and system developments. Representing the Cyber team during review sprints to ensure application security is prioritised before deployment. Partnering with architecture and development teams to review application design and code for security More ❯

Senior Application Security Engineer Location: Hybrid working or homeworking with view to attend office occasionally Salary: £60,000 – £70,000 per annum Bonus: Discretionary bonus of up to 10% Are you passionate about securing modern applications and cloud environments? We’re looking for a Senior Application Security Engineer to join my client's growing team and … play a key role in shaping the security posture of our organisation. About the Role As a Senior Application Security Engineer, you’ll bring deep expertise in application security testing, cloud security, and secure development practices. You’ll work closely with IT, development, and project teams to embed security into every stage of … the software development lifecycle and drive a risk-based approach to vulnerability management. Key Responsibilities Lead application security initiatives across cloud-native and enterprise environments. Promote secure design principles, threat modelling, and best practices across teams. Own and evolve the technical vulnerability management programme. Implement and support security controls, particularly within Azure cloud environments. Evaluate and deploy More ❯

Application Security Lead Entertainment UK Hybrid/Remote Job description This role works closely with development teams to verify our partners applications satisfy the defined security criteria, supporting the organization on the security design and conducting reviews of applications, while improving automation. Primary Responsibilities: Provide technical leadership and guidance on application security best practices … methodologies, and technologies. The ideal candidate will serve as a trusted advisor to development teams, architects, and stakeholders across our clients organisation. Design and review security architectures for applications, ensuring the implementation of effective security controls and countermeasures. Conduct threat modelling exercises to identify potential security risks and vulnerabilities early in the development lifecycle. Conduct in-depth … security assessments, code reviews, and penetration testing of applications to identify and mitigate security vulnerabilities. Utilise industry-standard tools and methodologies to assess the security posture of applications and provide actionable recommendations for remediation Essential At least three years experience in a similar senior Information Security position Customer-oriented person, with the ability to educate and More ❯

Application Security Specialist (DevOps) Hybrid – Cambridge, UK (1 day a week in office) We're looking for an experienced Application Security Specialist to join a growing cyber security team and play a key role in shaping a world-class application security programme. This role will give you the chance to work closely with … engineering and development teams, embedding security into the development lifecycle, driving automation, and influencing remediation plans that have real impact. What you'll be doing Guiding teams on security best practices, compliance, and secure coding. Collaborating with architects and developers to review designs and code for vulnerabilities. Embedding/improving threat modelling and secure development practices into the … SDLC. Designing and integrating security testing plans. Performing and overseeing application security testing and driving remediation. Managing end-to-end vulnerability workflows, including bug bounty findings. Supporting incident response activities when needed. Monitoring and reporting on application security metrics, KPIs, and emerging threats. Automating processes for vulnerability detection and integrating tools into the pipeline. Note More ❯

heart of our digital transformation. As we continue to grow and innovate, securing our applications and protecting customer data is a top priority. We are looking for a Senior Application Security Engineer to lead our efforts in strengthening application security, mitigating risks, and ensuring best-in-class security practices. If you are passionate about cybersecurity … and eager to make a real impact, we want you on our team! Key Responsibilities: Security Strategy: Help define and execute the Holland & Barrett application security strategy. Collaborate with both tech and non-tech teams to integrate security principles into the early stages of product design and development. Secure SLDC: Establish a secure Software Development Lifecycle … software integrity, authenticity, and third-party library management. Risk Assessments: Conduct risk assessments, threat modeling, and architecture reviews alongside development teams, producing artifacts to drive the implementation of effective security controls. Standards Development: Own the creation and maintenance of tailored security standards and guidelines, developing reusable resources for various development teams. Team Support: Provide guidance and support to More ❯

Information Security Officer A fantastic opportunity for an experienced Information Security Officer to join a leading SaaS organisation providing enterprise-scale solutions. This is a hands-on, strategic role where you’ll take ownership of security strategy, operations, and compliance across multi-cloud environments; ensuring systems remain robust, scalable, and compliant with key standards such as ISO27001 …/DSS, and GDPR. Location: Milton Keynes - hybrid - at least 2 - 3 times a week in office Salary: £50,000 – £60,000 per annum + benefits Requirements for Information Security Officer Strong experience in information security within a SaaS or cloud-based software environment Proven success managing ISO27001 certification, audit cycles, and compliance programmes Excellent knowledge of GDPR … and experience embedding data protection into software systems Hands-on experience managing cloud security within Azure and/or AWS environments Knowledge of PCI/DSS standards for payment systems Understanding of application security, secure development lifecycles, and DevSecOps practices Strong communicator, able to translate complex security concepts for technical and non-technical stakeholders Advantageous: professional More ❯

Principle Security Architect £120000 GBP Onsite WORKING Location: Chelmsford, East of England - United Kingdom Type: Permanent Application Security Architect UK-Wide (London optional) Up to £120,000 + Package - Permanent We're looking for a seasoned Security Architect with a strong focus on application security and a proven track record in consulting. This is … an opportunity to work across complex public sector programmes, helping organisations design secure applications while influencing strategy and best practice across the practice. What you'll be doing: Leading application security architecture for high-profile public sector clients. Advising on and implementing secure development practices aligned with OWASP, threat modelling, and secure SDLC frameworks. Supporting pre-sales, solution … design, and client engagements across consulting projects. Mentoring and upskilling client teams and internal consultants on application security. Experience required: Consulting experience in application security architecture, preferably with exposure to public sector clients. Deep knowledge of OWASP Top 10, secure coding practices, threat modelling, and vulnerability management. Experience influencing design and security strategy across large programmes. More ❯

Job Title: Senior Application Security EngineerSalary: £70,000Location: Reading/remote About the Organisation Join a fast-growing UK technology and consulting firm that's investing heavily in cutting-edge cyber security. With a strong focus on innovation, collaboration, and professional development, this company empowers its people to shape the future of secure digital transformation across a wide … be part of a business that values expertise, agility, and doing the right thing - where everyone has the opportunity to make a genuine impact. About the Role The Senior Application Security Engineer will play a key role in protecting the organisation's infrastructure, cloud platforms, and applications. Working within a highly technical and collaborative cyber team - supported by … a 24/7 external SOC - you'll research, test, and implement next-generation security solutions to safeguard data and systems. This role offers the chance to lead on application and cloud security initiatives, influence secure design standards, and mentor colleagues in best practices. Key Responsibilities Lead application and cloud security initiatives, ensuring systems and More ❯

Job Title: Senior Application Security Engineer Salary: £70,000 Location: Reading/remote About the Organisation Join a fast-growing UK technology and consulting firm that's investing heavily in cutting-edge cyber security. With a strong focus on innovation, collaboration, and professional development, this company empowers its people to shape the future of secure digital transformation across … be part of a business that values expertise, agility, and doing the right thing - where everyone has the opportunity to make a genuine impact. About the Role The Senior Application Security Engineer will play a key role in protecting the organisation's infrastructure, cloud platforms, and applications. Working within a highly technical and collaborative cyber team - supported by … a 24/7 external SOC - you'll research, test, and implement next-generation security solutions to safeguard data and systems. This role offers the chance to lead on application and cloud security initiatives, influence secure design standards, and mentor colleagues in best practices. Key Responsibilities Lead application and cloud security initiatives, ensuring systems and More ❯

Job Title: Senior Application Security Engineer Salary: £70,000 Location: Reading/remote About the Organisation Join a fast-growing UK technology and consulting firm that's investing heavily in cutting-edge cyber security. With a strong focus on innovation, collaboration, and professional development, this company empowers its people to shape the future of secure digital transformation across … be part of a business that values expertise, agility, and doing the right thing - where everyone has the opportunity to make a genuine impact. About the Role The Senior Application Security Engineer will play a key role in protecting the organisation's infrastructure, cloud platforms, and applications. Working within a highly technical and collaborative cyber team - supported by … a 24/7 external SOC - you'll research, test, and implement next-generation security solutions to safeguard data and systems. This role offers the chance to lead on application and cloud security initiatives, influence secure design standards, and mentor colleagues in best practices. Key Responsibilities Lead application and cloud security initiatives, ensuring systems and More ❯

house , using new data sources, machine learning and AI to make machines do the heavy lifting About the role We're looking for a Head of InfoSec to champion security across Lendable, ensuring our products, platforms, and processes remain secure as we scale. This is a high-impact leadership role with broad responsibility across application security, operations … and regulators. You will lead a team of exceptional security engineers, delivering a technical roadmap that you will shape. What you'll be doing Application Security (AppSec) : Driving secure development practices, code analysis, and threat modelling. Security Operations (SOC) : Overseeing monitoring, incident response, vulnerability management, and operational resilience. Governance, Risk & Compliance (GRC) : Leading our efforts to … leader who is comfortable with: Building a team : You have prior management experience and a proven track record of growing a collaborative and cross-functional Security team. Scaling AppSec : You've owned and scaled a robust Application Security program, including secure development, code analysis, and threat modelling. Running Security Operations : You have deep experience overseeing a More ❯

places! This is where you come in. The Opportunity As IAG Loyalty evolves into a Platform as a Service business, we're looking for a talented and passionate Senior Application Security Engineer to join our security engineering team. You'll have a background in software engineering and a deep … interest in application and API security. You thrive on collaboration, enjoy helping others grow, and see security as an enabler - not a blocker. You'll be an AppSec advocate who supports our engineers in identifying and addressing security issues across the software development lifecycle. You'll be part of a small, dynamic team within the Product department … be required to work from one of our other office or partner locations, based on your role and 'to do' list. What you'll be doing As a Senior Application Security Engineer, you'll lead the application security practice within the IAG Loyalty security team, taking responsibility for key security KPIs in this area. More ❯

just to name a few! Job Description Your Career As a Senior Consultant in Unit 42 you will have the opportunity to work across a number of proactive cyber security domains including Cloud Security, Security Operations, Cyber Risk Management and Artificial Intelligence in cyber security. We are seeking an individual who is passionate about cyber security … consulting outcomes for clients, as they work to address the challenges associated with today’s cyber threat landscape. Your Impact SOC Advisory: 4+ years of consulting experience in SOC, security engineering, SIEM administration, and incident management and demonstrated success with serving large, multinational organisations in designing and implementing an organisation’s security operations program, organisational structures, and capabilities … Possess a deep technical knowledge in Security Incident and Event Management (SIEM) platforms, Security Orchestration and Response (SOAR) technologies, Endpoint Protection and Response/Next Gen Protection and Response (EDR/XDR) tools, Next GenFirewalls, Threat Intelligence and Hunting platforms Defensive Security Skills (desired) : Experience in security operations design, engineering and/or analysis and investigations More ❯

just to name a few! Job Description Your Career As a Senior Consultant in Unit 42 you will have the opportunity to work across a number of proactive cyber security domains including Cloud Security, Security Operations, Cyber Risk Management and Artificial Intelligence in cyber security. We are seeking an individual who is passionate about cyber security … consulting outcomes for clients, as they work to address the challenges associated with today’s cyber threat landscape. Your Impact SOC Advisory: 4+ years of consulting experience in SOC, security engineering, SIEM administration, and incident management and demonstrated success with serving large, multinational organisations in designing and implementing an organisation’s security operations program, organisational structures, and capabilities … Possess a deep technical knowledge in Security Incident and Event Management (SIEM) platforms, Security Orchestration and Response (SOAR) technologies, Endpoint Protection and Response/Next Gen Protection and Response (EDR/XDR) tools, Next GenFirewalls, Threat Intelligence and Hunting platforms Defensive Security Skills (desired) : Experience in security operations design, engineering and/or analysis and investigations More ❯

just to name a few! Job Description Your Career As a Senior Consultant in Unit 42 you will have the opportunity to work across a number of proactive cyber security domains including Cloud Security, Security Operations, Cyber Risk Management and Artificial Intelligence in cyber security. We are seeking an individual who is passionate about cyber security … consulting outcomes for clients, as they work to address the challenges associated with today’s cyber threat landscape. Your Impact SOC Advisory: 4+ years of consulting experience in SOC, security engineering, SIEM administration, and incident management and demonstrated success with serving large, multinational organisations in designing and implementing an organisation’s security operations program, organisational structures, and capabilities … Possess a deep technical knowledge in Security Incident and Event Management (SIEM) platforms, Security Orchestration and Response (SOAR) technologies, Endpoint Protection and Response/Next Gen Protection and Response (EDR/XDR) tools, Next GenFirewalls, Threat Intelligence and Hunting platforms Defensive Security Skills (desired) : Experience in security operations design, engineering and/or analysis and investigations More ❯

Application Security Architect UK-wide (excluding London) – Hybrid/Remote Working Up to £120,000 + Excellent Benefits Kainos are looking to bring on an experienced Application Security Architect to join their growing security consulting practice — delivering secure-by-design digital solutions across Public Sector, National Security and Healthcare clients. You’ll be joining … a highly respected consultancy that’s trusted by central government, NHS and critical national infrastructure organisations — helping them design and deliver complex cloud and application environments with security built in from the ground up. 🔧 What you’ll be doing Acting as the security SME across major digital transformation programmes Designing and reviewing application and cloud security … development practices, threat modelling and code review activities Advising client engineering teams on secure-by-design principles and risk mitigation Supporting bids, pre-sales and client engagements from a security architecture perspective 💡 Experience required Strong background in consulting environments (e.g. Kainos, TPXimpact, DXC, Accenture, Methods, Capgemini, etc.) Proven track record as an Application or Cloud Security Architect More ❯

identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. We are seeking a highly motivated and experienced Lead Software Security Engineer to join our team. You will have a strong background in software development, security, and operations. This role is required to support the Digital Product Management team … in embedding security requirements and best practices into new Digital Products and Services. You will work closely with the Digital Product Management and IT Security teams to establish and build the right security controls and quality state gates across the product lifecycle. This includes security tooling to manage these controls. In this busy and rewarding role … you'll also: Collaborate with software development teams to integrate security into the development lifecycle Own the cultural shift to a Security DevSecOps mindset Manage & implement security controls, tools, and processes to secure applications and infrastructure Monitor and respond to security incidents and threats in a timely manner Stay up-to-date with security trends More ❯

Software & Application Security Lead Permanent | Hybrid (UK - a few visits per month) | Up to £84,000 We're partnered with a modern, forward-thinking professional services firm that's putting security at the heart of everything they build. As part of their growing technology function, they're looking for a Software & Application Security Lead to … take the lead in shaping how security is embedded into every stage of their digital product journey. This is a role with real influence - you'll help define the software security strategy, guide engineers on best practice, and ensure the products they deliver are secure by design. You'll work closely with developers, architects, and business stakeholders to … create an environment where secure coding and proactive risk management come naturally. What you'll be doing You'll play a leading role in driving a security-first culture across agile product teams, defining and delivering a clear application security strategy that aligns with business goals. Working hand-in-hand with developers, you'll weave security More ❯

Software & Application Security Lead Permanent | Hybrid (UK - a few visits per month) | Up to £84,000 We're partnered with a modern, forward-thinking professional services firm that's putting security at the heart of everything they build. As part of their growing technology function, they're looking for a Software & Application Security Lead to … take the lead in shaping how security is embedded into every stage of their digital product journey. This is a role with real influence - you'll help define the software security strategy, guide engineers on best practice, and ensure the products they deliver are secure by design. You'll work closely with developers, architects, and business stakeholders to … create an environment where secure coding and proactive risk management come naturally. What you'll be doing You'll play a leading role in driving a security-first culture across agile product teams, defining and delivering a clear application security strategy that aligns with business goals. Working hand-in-hand with developers, you'll weave security More ❯

Forest Labs is a cutting-edge startup pioneering generative image and video models. Our team, which invented Stable Diffusion, Stable Video Diffusion, and FLUX.1, is currently seeking a strong security and compliance to work closely with our team in building and implementing world class security and ensuring regulatory compliance across the business. The Role: Own and evolve the … company-wide security strategy across infrastructure, application, and corporate environments Lead our global compliance programs (e.g., ISO 27001, SOC 2) ensuring we meet regulatory and customer trust requirements. Build and maintain relationships with auditors, ensuring smooth audit processes Address AI-specific compliance requirements around data usage, model governance Build a comprehensive security program that scales with our … trails for sensitive training data and model weights Manage and scale our IT function, ensuring a secure, efficient, and user friendly digital workplace. Establish and maintain risk & governance structures, security policies, and incident response procedures. Design and implement security controls for large scale Kubernetes environments hosting training and inference workloads Lead internal risk assessments and external audits, and More ❯

the impregnability of the clients critical digital assets. This includes securing public-facing portals, safeguarding the vital infrastructure links between Aramco and Saudi government projects, and developing a proactive security posture that anticipates future threats. You are not just a manager; you are a player-coach and a strategic thinker. We are looking for someone currently in a Team … Responsibilities: Practice Leadership: Define the strategic vision, methodologies, and service offerings for our cybersecurity vertical. Hands-On Technical Delivery: Lead the architecture, design, and hands-on implementation of robust security solutions for critical systems. This includes application security, network security, and infrastructure hardening. Client Liaison: Act as a trusted security advisor to our key stakeholders … of experience in cybersecurity, with at least 2+ years in a Team Lead or Manager capacity. You possess deep, hands-on expertise in areas like Application Security (AppSec), Cloud Security, and DevSecOps. You have experience with security frameworks (NIST, ISO 27001) and a proven track record of securing large-scale, high-availability systems. You are adept More ❯

We are the Intelligent Internet Platform. We connect People, Places and Things anywhere, managing Internet Performance better than anyone else, while providing One Global Experience, giving Visibility, Control and Security through expereoOne. Expereo believes in the power of Internet connectivity. As the world's largest provider of managed internet, SD-WAN/SASE, and Cloud connectivity solutions, we power … individuals who make Expereo a dynamic, effective, multicultural, and equitable environment. About the role Reports to: Chief Digital Officer (with quarterly Audit/Risk committee updates) The Enterprise & Network Security Director (ENS) is responsible for developing and implementing a holistic security strategy of the Expereo Enterprise Organization and the Network Products and Services delivered to its customers. This … includes corporate IT, cloud application devops, compliance frameworks, and the global network installed base that underpins our services. The ENS Director leads teams across Enterprise IT security, Cloud Security, Network/ISP Security, Compliance, and Security Operations - ensuring resilience, trust, and regulatory alignment across the organization and customer offerings. This role also involves managing a More ❯

Permanent Based in Milton Keynes £50,000 pa - £60,000 pa Information Security Officer Hybrid Our client are a leading provider of software solutions for student accommodation, event management, catering, and residential services, they help institutions streamline operations, elevate customer experiences, and unlock their full potential.With over 25 years of experience and trusted by more than 350 institutions worldwide … your impact is real. If you're ready to help shape the future of operational technology in education and events, we'd love to meet you. An experienced Information Security Officer to lead security strategy, operations, and compliance. This is a hands-on role combining strategic security architecture with operational security management and regulatory compliance oversight. … The successful candidate will define security standards across our product portfolio, manage security environments, and serve as our central point for ISO27001, PCI/DSS, and GDPR compliance while supporting commercial teams with tender responses and client security assurance. Core Responsibilities: Strategic (30%) Define technical security architecture and standards across multi-cloud SaaS platforms Embed security More ❯

Permanent Based in Milton Keynes £50,000 pa - £60,000 pa Information Security Officer Hybrid Our client are a leading provider of software solutions for student accommodation, event management, catering, and residential services, they help institutions streamline operations, elevate customer experiences, and unlock their full potential. With over 25 years of experience and trusted by more than 350 institutions … your impact is real. If you're ready to help shape the future of operational technology in education and events, we'd love to meet you. An experienced Information Security Officer to lead security strategy, operations, and compliance. This is a hands-on role combining strategic security architecture with operational security management and regulatory compliance oversight. … The successful candidate will define security standards across our product portfolio, manage security environments, and serve as our central point for ISO27001, PCI/DSS, and GDPR compliance while supporting commercial teams with tender responses and client security assurance. Core Responsibilities: Strategic (30%) Define technical security architecture and standards across multi-cloud SaaS platforms Embed security More ❯

Project Description: We are looking for a Cyber Security Team Leader who brings broad, hands-on security expertise and strong leadership capability to our Cyber Security function. The successful candidate will act as a senior analyst within the team while also providing direction, coordination, and mentorship to colleagues. You must have experience across the core Cyber Security domains, including TVM, SIEM, EDR, Incident Response, DLP, EASM, Cloud Security, Application Security, WAF, and User Access Management, along with a strong understanding of industry frameworks such as NIST and CIS . This role is primarily remote; however, regular attendance at our Farnborough office is required (typically once per week, usually Thursdays) for in-person collaboration. … Responsibilities: Lead the development and implementation of Application Code Security and User Access Management capabilities within the team. Establish these services by adopting or adapting DXC security models where feasible, or by designing and deploying new approaches within Luxoft. Support and contribute to the wider Cyber Security services delivered by the team, including TVM, SIEM, EDR More ❯