1 to 25 of 269 Permanent Application Security Jobs in the UK

Application Security Senior Manager Location: London Accenture is a leading global professional services company, providing a broad range of services in strategy and consulting, interactive, technology and operations, with digital capabilities across all of these services. With our thought leadership and culture of innovation, we apply industry expertise … we work and live. It is personal to all of us." - Julie Sweet, Accenture CEO As a team We are currently looking for keen Application Security Senior Manager , who would join our Application Security team in UK. Our team helps our clients to protect their business … experience in the Application Security or Application Development. Certifications such as CSSLP, CISSP, CEH, OSCP, CISM, etc. are preferred. Certifications from AppSec vendors are beneficial. Experience in driving cyber security business and capability. Knowledge of Security principles, techniques and technologies. Excellent communication skills (written and More ❯

We're seeking an experienced Application Security Engineer to play a vital role in safeguarding our cloud infrastructure and applications. - If you have expertise in AWS security, a strong understanding of security frameworks like ISO or NIST, and the ability to drive secure coding practices, we … want to hear from you! The role. As an Application Security Engineer, you will be the go-to expert for ensuring secure development practices and implementing robust security controls across cloud and application environments. Working closely with DevOps and engineering teams, you will influence security strategy and ensure security is embedded at every stage of development. Key Responsibilities: Perform in-depth security reviews, including secure code reviews and threat modelling. Develop and implement security controls to align with frameworks such as ISO 27001, NIST, and CIS benchmarks. Collaborate with development teams More ❯

Information Security Technical Assurance Lead Paddington, London Help us to make a world of difference Urenco is a global leader in the production of low carbon energy. We work at the cutting edge of the transition to a sustainable, net zero world. We're looking for an Information Security … Assurance Lead, based at our new Paddington Site. This role sits within the CISO function which aims to continuously develop and enhance its cyber security portfolio, to protect Urenco, its customers and the safety of the public, ensuring the sustainable use of nuclear technology for years to come. The … Cyber and Cyber Assurance Threat Defence This role is a candidate to join the Cyber Assurance Team, reporting to the Head of OT Cyber Security and Cyber Assurance. Occasional travel may be required. Urenco operates a hybrid working model based on a minimum of 2 days a week Paddington More ❯

You will need to login before you can apply for a job. Application Security Engineer, Amazon Application Security Sector: Technology Role: Professional Contract Type: Permanent Hours: Full Time DESCRIPTION Amazon is continuously innovating new services and features for our customers. Our engineers invent, build, and sometimes … faster, better, and more cost-effective. However, no matter what we're building - from websites to web services, AR to AI, drones to devices - security is always our top priority. The Amazon Application Security team focuses on working with our builders to provide experiences that our customers … can trust. That means constantly learning new things and solving complex problems to protect the safety, security, and privacy of billions of lives on a global scale. At Amazon, you'll be working with the best minds in technology and security. Learn and be curious here, and accelerate your More ❯

We are searching for a Senior Software Security Architect/Senior Application Security Architect for a marketing leading and award-winning technology and data driven business. The position is offered on a remote basis. The role is hands-on and very software engineering focused - you will be … Design' approach/practice to be used by all of the Architecture and Software development teams. The role will involve: Developing, implementing, and maintaining application security architecture across the organisation. Ensuring our systems are designed with objectives like speed, scalability, robustness, zero-trust, automation and supportability at the … core. Collaborating with the Architecture and Engineering Team to ensure security is an integral part of all development and deployment processes. Providing expert software security advice (design, coding, testing) to the Software Engineering Community, to InfoSec, DevOps and other teams. Defining and delivering secure software development of information More ❯

You will need to login before you can apply for a job. AWS Sr Application Security Engineer, AppSec -EC2 Sector: Technology Role: Professional Contract Type: Permanent Hours: Full Time DESCRIPTION Help us protect not only the Amazon Web Services (AWS) cloud computing environment but all of our customers … to bring great ideas to life in ways that aren't possible in traditional IT environments. With AWS you can flexibly harness compute, storage, security, and other services from across the globe as your business demands them. AWS Security is on the cutting edge of many security … hardware, all operating at massive scale. Similarly, our highly collaborative team is committed to each team member's growth as our business grows. AWS Security is looking for an Application Security Engineer to help validate that our services, applications, and websites are designed and implemented to the More ❯

Senior Security Engineer, Corporate Services Security Job ID: Amazon Data Services UK Limited Corporate Services Security (CPSS) is the Amazon security team aligned with Finance & Global Business Services (FGBS), People eXperience & Technology (PXT), Legal and Global Communications and Community Impact (GCCI) business units. Our Mission is … the development teams, we understand the dynamic business processes that run Amazon, and enable our stakeholders to innovate, build, and scale securely. The Product Security Team within CPSS supports a large number of applications built using AWS Services. Apart from work, we provide opportunities for our engineers to pursue … for a wide variety of web applications hosted on cloud Manual and Automated Secure Code Review, primarily in Java, Python and Javascript Development of security automation tools Adversarial security analysis using the latest tools to augment manual effort Provide Security training and outreach for internal development teams More ❯

a real impact on shaping a better, more sustainable future. We are very excited to be building a small and efficient Cyber and Information Security team at Octopus Energy Group. We're hiring for both Mid-Level and Senior Security Engineers . We are looking for ambitious, knowledgeable … and experienced Security Engineers to join our team, to grow with the rest of the company, and ensure we continue to do so in a secure and safe way. You will be a key partner in defining what Security is at Octopus Energy Group. We will be shaping … and undertaking transformational organisational change. You'll play a crucial role in helping to secure our software development processes, securing our platform services, integrating security practices, and shaping a culture of security. This is a creative, and collaborative position that is a full-time member of a Cloud-First More ❯

a job. View more categories View less categories Sector Engineering Role Specialist Contract Type Permanent Hours Full Time All the details Summary The Specialist Application Security Engineer will play a pivotal role in ensuring the integrity and security of our applications across various platforms. You will lead … the charge in implementing robust security measures, collaborating closely with cross-functional teams to fortify our defences against cyber threats. What you'll do Focused on application security initiatives across cloud and on-premises environments, employing a diverse suite of tools including Semgrep for SAST, Snyk for … SCA, GHAS for secret scanning, Burp Suite for DAST, and scripting for automation. Forge partnerships with external vendors to optimize and seamlessly integrate security tools into our application security workflow, ensuring comprehensive coverage and operational efficiency. Drive the seamless integration of application security processes into More ❯

Sr. Security Consultant, AWS Industries, AWSI-SDT-APJ Job ID: Amazon Web Services Korea LLC The Amazon Web Services Industry (AWSI) Professional Services APJ (Korea) team is a consulting organization that works with our global enterprise customers in various industries to achieve their business outcomes securely and faster in … the cloud. Through project-based support, our security consultants work with our customers on innovative solutions that promote cloud technology for the purpose of solving customer business problems faster and for long-term business expansion. The AWSI Professional Services Korea team is seeking a Senior Security, Risk, Compliance … Consultant who can lead a variety of customer engagements, including building security strategies and roadmaps, architecture design and implementation support, technical assessments, incident response, and security control implementation support. You will work with AWS sales, engineering, training & certifications, and support teams as well as partners to provide technical More ❯

Application Security Consultant (AppSec) Permanent Role Fully Remote Up to £80K per annum Are you a skilled application security professional with a strong grasp of cloud-native development and a passion for safeguarding software systems? Join an innovative cyber security consultancy working at the forefront … of resilience, supporting clients across the military, government, finance, and tech sectors. As an Application Security Consultant, you'll be the go-to expert on software-level threats and controls. You'll play a key role in embedding security within cloud-native development environments-particularly AWS-by … ensuring effective DevSecOps practices. Key Responsibilities: Guide development teams in secure coding best practices through workshops, threat modelling, and code reviews. Define and enforce security checkpoints across the DevOps lifecycle (SAST, DAST, SCA). Champion secure API design, including robust authentication, authorisation, and validation techniques. Identify and mitigate security More ❯

year, we're proud to offer our guests a choice of over 100,000 properties in our portfolio, in 25 countries across Europe. Position: Security Engineer We're entering an exciting new phase of our tech and product strategy, with a focus on innovation , experimentation , and conversion at the … are you ready to be part of the transformation and help shape the future of the travel industry? About the role As our new Security Engineer, you'll guide us on our journey as we enhance the security posture of our corporate environments, including Active Directory, end-user … compute security, ensuring robust protection and seamless user experience. You'll collaborate closely with infrastructure and product teams, evangelising best security practices and nurturing a proactive security mindset throughout our organisation. With your specialist knowledge, you'll provide critical insights, support, and training to teams, enabling them More ❯

Engineering - Tech Risk Advisory - Associate - London Job Description WHO WE ARE Led by the Chief Information Security Officer (CISO), Technology Risk secures Goldman Sachs against hackers and other cyber threats. We are responsible for detecting and preventing attempted cyber intrusions against the firm, helping the firm develop more secure … reviews as part of the SDLC and CI/CD pipeline via code analysis and penetration testing, and guiding technology innovation in terms of security and control across Goldman Sachs. The team plays a critical role in designing and assessing controls for our transition to building native public cloud … this role, you will join the global Secure SDLC (S-SDLC) team within Technology Risk - the team is responsible for the identification of software security flaws, along with providing security assurance advice and guidance to the engineers to help them manage application risks. You will interact with More ❯

Join our dynamic team as a Security Operations Manager, where you'll lead and enhance our security strategies to protect critical assets and ensure operational resilience. WHO ARE WE? Privately owned and independently minded, Creditsafe operates with the singular vision of powering business decisions. We do this by … decisions for companies by turning their data into actionable insights that help them become stronger, grow faster and thrive. THE TEAM Creditsafe’s Information Security and Compliance team are motivated by protecting company reputation, safeguarding existing revenue, and supporting the generation of future revenue. We realise that security … so our approach is enabling new and existing customers to interact with our products and services, and we pride ourselves on balancing a positive security culture with a robust control environment. Our responsibilities include setting security policies, educating users on good security practices, managing security risks More ❯

technical expertise to drive innovation and adoption of new technology. Your role and responsibilities As a Cybersecurity Architect, you will specialize in DevSecOps, integrating security into the software development lifecycle, automating security practices, and ensuring robust threat modeling and vulnerability management. Your primary focus will be on cloud … native and on-premises environments, with a strong emphasis on application security, infrastructure as code (IaC) security, and cloud security posture management. Additionally, you will contribute to data security efforts, securing data at rest, managing key management systems, and ensuring strong governance across data access. … Responsibilities: Integrate security into the software development lifecycle, automating security practices into CI/CD pipelines. Implement automated security testing (SCA, SAST, DAST) to identify and remediate vulnerabilities at every stage of development. Secure IaC configurations, ensuring secure provisioning, configuration management, and continuous monitoring of infrastructure. Utilize More ❯

London, United Kingdom Posted on 24/02/2025 Job Description: Security Testing Engineer Location: Remote with occasional travel as required Employment Type: Permanent About the Role Scrumconnect Consulting is looking for a Security Testing Engineer to ensure the security, resilience, and compliance of GOV.UK digital … services . This role involves identifying vulnerabilities, mitigating security risks, and ensuring adherence to government security policies and DDAT frameworks . You will work closely with developers, security architects, and business stakeholders to embed security testing into Agile development workflows and DevSecOps pipelines. As a Security Testing Engineer , you will conduct static and dynamic security assessments, penetration testing, and vulnerability analysis , ensuring that applications meet the highest security standards. Key Responsibilities 1. Security Test Planning & Execution Develop, implement, and execute comprehensive security test plans for GOV.UK digital services. Identify security More ❯

Cloud Application Security Engineer/Cloud Security Engineer - AWS/AppSec/IAM (Okta) Application Security Engineer/AWS Security Engineer/CloudSec Location: Hybrid London (2 days per week onsite) Ready to drive secure engineering at scale in a leading fintech? Were looking … solutions in AWS using tools like IAM, Okta, AWS Shield, and SAST/DAST. This is a high-impact role with a focus on AppSec, cloud security architecture, observability and secure software development . Key Responsibilities Conduct secure code reviews and threat modelling Improve security in AWS (Security Hub, Shield, IAM) Integrate AppSec practices into CI/CD pipelines Run vulnerability management and bug bounty programs Build security dashboards, frameworks, and reusable libraries Promote secure coding and AppSec best practices across teams What You Bring Deep knowledge of AWS security tools & IAM Experience with Okta More ❯

growth has landed Smarsh in the annual Inc. 5000 list of fastest-growing American companies since 2008. We are looking for an experienced Product Security Engineer to partner with engineering teams and proactively identify, assess, and remediate security risks across our product portfolio. This role will focus on … secure development practices, vulnerability management, threat modelling, and driving a shift-left security culture. The ideal candidate is a pragmatic problem solver with strong technical expertise in application security, cloud security, and DevSecOps. You will work closely with product owners, software engineers, and platform teams to … implement security controls that balance risk with business objectives. How will you contribute? Secure SDLC Integration: Embed security within the software development lifecycle, ensuring security is considered at every phase-from design to deployment. Threat Modeling & Security Design Reviews: Conduct structured threat modelling and security More ❯

Job Title: Application Security Engineer Location: London, UK Salary: £60,000 per annum Are you an experienced Application Security Engineer looking for your next challenge? Join a cutting-edge fintech firm in the heart of London and play a key role in safeguarding critical financial applications. … About the Role: As an Application Security Engineer, you will work closely with development teams to ensure the security and integrity of our fintech applications. You will be responsible for identifying vulnerabilities, conducting security assessments, and implementing robust security measures to protect our systems and … client data. Key Responsibilities: Perform security assessments and vulnerability scanning for web applications, APIs, and infrastructure. Collaborate with development teams to implement secure coding practices and address vulnerabilities. Review and advise on secure architecture and design for new and existing applications. Stay up to date with the latest security More ❯

create, and ultimately build an open, accessible and fair financial future, one piece of software at a time. We are looking for a Senior Application Security Engineer to join our Security team as we tackle some of the most interesting problems in the crypto space, like how … do we securely scale a distributed financial platform that touches millions of people a day. At Security is a mindset and a set of engineering approaches to better protect stakeholders, users and systems by building our creative engineering solutions to hard, sometimes previously unseen problems. The Security team … is responsible for the big picture of how systems are designed for Security, and we use a breadth of tools and approaches to solve a broad spectrum of problems. Practices aimed at achieving proactive identification of potential threat actors combined with in-depth investigation of security issues into More ❯

You will need to login before you can apply for a job. Sr. Security Engineer, AppSec - Amazon Stores Security Sector: Distribution and Warehouse, Technology Role: Professional Contract Type: Permanent Hours: Full Time DESCRIPTION At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. … Our organization is responsible for creating and maintaining a high bar for security across all of Amazon's products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment … resources that consistently innovate in reducing on-call time and ensuring the team spends their time on the highest-value tasks. Join the stores AppSec organization to work hard, have fun, and make history! Key job responsibilities Creating, updating, and maintaining threat models for a wide variety of software projects. More ❯

Application Security Engineer/Penetration Tester – FinTech – AppSec, Burp Suite, Metasploit Oliver Bernard are currently seeking an Application Security Engineer, with strong Penetration Testing experience, to join a FinTech client of ours on a contract basis. This hire is part of a security focused transformation … where the incoming engineer will be responsible for identifying and mitigating security vulnerabilities, and risk, within their applications. You will have a focus on building security tools, penetration testing, and performing security assessments, whilst updating internal security processes and documentation in the process. To be considered … can offer £550-650 p/day outside IR35, on an initial 6 month contract. Application Security Engineer/Penetration Tester – FinTech – AppSec, Burp Suite, Metasploit More ❯

Application Security Engineer/Penetration Tester – FinTech – AppSec, Burp Suite, Metasploit Oliver Bernard are currently seeking an Application Security Engineer, with strong Penetration Testing experience, to join a FinTech client of ours on a contract basis. This hire is part of a security focused transformation … where the incoming engineer will be responsible for identifying and mitigating security vulnerabilities, and risk, within their applications. You will have a focus on building security tools, penetration testing, and performing security assessments, whilst updating internal security processes and documentation in the process. To be considered … can offer £550-650 p/day outside IR35, on an initial 6 month contract. Application Security Engineer/Penetration Tester – FinTech – AppSec, Burp Suite, Metasploit More ❯

Ventures, as well as the founders of Zoopla, Funding Circle, Comply Advantage, Tessian, Fenergo and Fidel. The Role: You will be responsible for information security at Thirdfort, leveraging your expertise to help us live our Build on Trust company value. By improving the coverage and efficiency of our security controls, you will help reduce our security risk whilst also allowing us to give best in class answers to clients, regulators and auditors about our security practices. You will report directly to the Head of Engineering. You will oversee critical security infrastructure and operations, automate security workflows, and work closely with technical and business stakeholders to ensure effective, efficient and appropriate security controls are in place across all parts of the business. This is a great opportunity to across all aspects of security, and help shape how security is done at Thirdfort. More ❯

Application Security Engineer/Penetration Tester – FinTech – AppSec, Burp Suite, Metasploit Oliver Bernard are currently seeking an Application Security Engineer, with strong Penetration Testing experience, to join a FinTech client of ours on a contract basis. This hire is part of a security focused transformation … where the incoming engineer will be responsible for identifying and mitigating security vulnerabilities, and risk, within their applications. You will have a focus on building security tools, penetration testing, and performing security assessments, whilst updating internal security processes and documentation in the process. To be considered … can offer £550-650 p/day outside IR35, on an initial 6 month contract. Application Security Engineer/Penetration Tester – FinTech – AppSec, Burp Suite, Metasploit More ❯