1 to 25 of 96 Permanent Application Security Jobs in the UK excluding London

We're seeking an experienced Application Security Engineer to play a vital role in safeguarding our cloud infrastructure and applications. - If you have expertise in AWS security, a strong understanding of security frameworks like ISO or NIST, and the ability to drive secure coding practices, we … want to hear from you! The role. As an Application Security Engineer, you will be the go-to expert for ensuring secure development practices and implementing robust security controls across cloud and application environments. Working closely with DevOps and engineering teams, you will influence security strategy and ensure security is embedded at every stage of development. Key Responsibilities: Perform in-depth security reviews, including secure code reviews and threat modelling. Develop and implement security controls to align with frameworks such as ISO 27001, NIST, and CIS benchmarks. Collaborate with development teams More ❯

We are searching for a Senior Software Security Architect/Senior Application Security Architect for a marketing leading and award-winning technology and data driven business. The position is offered on a remote basis. The role is hands-on and very software engineering focused - you will be … Design' approach/practice to be used by all of the Architecture and Software development teams. The role will involve: Developing, implementing, and maintaining application security architecture across the organisation. Ensuring our systems are designed with objectives like speed, scalability, robustness, zero-trust, automation and supportability at the … core. Collaborating with the Architecture and Engineering Team to ensure security is an integral part of all development and deployment processes. Providing expert software security advice (design, coding, testing) to the Software Engineering Community, to InfoSec, DevOps and other teams. Defining and delivering secure software development of information More ❯

Are you passionate about Cyber Security and Enterprise Architecture? Do you have senior-level experience as a Cyber Security Professional? Join us to shape the security technology and tooling strategy for HMRC and influence the UK Public Sector. Enjoy a healthy work/life balance while making … Cloud Platform. Working in one of the most complex infrastructures across Europe with significant investment and over 1000 changes monthly impacting over 600 services. Security Modernisation is critical to this initiative and our collective success. Now is a great time to join us as we establish a team of … outstanding people in the fields of Security Architecture, Risk Assessment and Testing who will create and run these new and improved technology services. This is a chance to work on services that matter and affect the lives of millions of citizens as well as delivering Government Security services More ❯

Are you passionate about Cyber Security and Enterprise Architecture? Do you have senior-level experience as a Cyber Security Professional? Join us to shape the security technology and tooling strategy for HMRC and influence the UK Public Sector. Enjoy a healthy work/life balance while making … Cloud Platform. Working in one of the most complex infrastructures across Europe with significant investment and over 1000 changes monthly impacting over 600 services. Security Modernisation is critical to this initiative and our collective success. Now is a great time to join us as we establish a team of … outstanding people in the fields of Security Architecture, Risk Assessment and Testing who will create and run these new and improved technology services. This is a chance to work on services that matter and affect the lives of millions of citizens as well as delivering Government Security services More ❯

Are you passionate about Cyber Security and Enterprise Architecture? Do you have senior-level experience as a Cyber Security Professional? Join us to shape the security technology and tooling strategy for HMRC and influence the UK Public Sector. Enjoy a healthy work/life balance while making … Cloud Platform. Working in one of the most complex infrastructures across Europe with significant investment and over 1000 changes monthly impacting over 600 services. Security Modernisation is critical to this initiative and our collective success. Now is a great time to join us as we establish a team of … outstanding people in the fields of Security Architecture, Risk Assessment and Testing who will create and run these new and improved technology services. This is a chance to work on services that matter and affect the lives of millions of citizens as well as delivering Government Security services More ❯

Visit our YouTube channel to watch the full series and come and discover your potential.

Are you passionate about Cyber Security and Enterprise Architecture?

Do you have senior-level experience as a Cyber Security Professional?

Join us to shape the … security technology and tooling strategy for HMRC and influence the UK Public Sector. Enjoy a healthy work/life balance while making a significant impact.

HMRC are now one of the most digitally advanced tax authorities in the world and are continuing to spend the next five … Cloud Platform. Working in one of the most complex infrastructures across Europe with significant investment and over 1000 changes monthly impacting over 600 services. Security Modernisation is critical to this initiative and our collective success. Now is a great time to join us as we establish a team of More ❯

year, we're proud to offer our guests a choice of over 100,000 properties in our portfolio, in 25 countries across Europe. Position: Security Engineer We're entering an exciting new phase of our tech and product strategy, with a focus on innovation , experimentation , and conversion at the … are you ready to be part of the transformation and help shape the future of the travel industry? About the role As our new Security Engineer, you'll guide us on our journey as we enhance the security posture of our corporate environments, including Active Directory, end-user … compute security, ensuring robust protection and seamless user experience. You'll collaborate closely with infrastructure and product teams, evangelising best security practices and nurturing a proactive security mindset throughout our organisation. With your specialist knowledge, you'll provide critical insights, support, and training to teams, enabling them More ❯

Role Objective: The Senior Security Engineer will be responsible for executing and advancing application security efforts through hands-on assessments, process improvements, secure development enablement, and cross-functional collaboration. They will act as a subject matter expert for security design and remediation, contributing to secure software … delivery at scale. Key Roles & Responsibilities: Contribute to the design and implementation of the organization's application security program. Support the enforcement of secure coding practices and industry best standards. Conduct threat modeling sessions, design reviews, and security walkthroughs with development teams. Ensure alignment with regulatory frameworks … monitoring enhancements. Help define and report on security KPIs, risks, and remediations to management. Stay informed on current threat trends, tools, and emerging AppSec methodologies. Required Experience, Education, Knowledge, and Skills 2-5 years of experience in Application Security. Bachelor's degree and/or master's degree More ❯

Role Objective: The Senior Security Engineer will be responsible for executing and advancing application security efforts through hands-on assessments, process improvements, secure development enablement, and cross-functional collaboration. They will act as a subject matter expert for security design and remediation, contributing to secure software … delivery at scale. Key Roles & Responsibilities: Contribute to the design and implementation of the organization's application security program. Support the enforcement of secure coding practices and industry best standards. Conduct threat modeling sessions, design reviews, and security walkthroughs with development teams. Ensure alignment with regulatory frameworks … monitoring enhancements. Help define and report on security KPIs, risks, and remediations to management. Stay informed on current threat trends, tools, and emerging AppSec methodologies. Required Experience, Education, Knowledge, and Skills 2-5 years of experience in Application Security. Bachelor's degree and/or master's degree More ❯

technical expertise to drive innovation and adoption of new technology. Your role and responsibilities As a Cybersecurity Architect, you will specialize in DevSecOps, integrating security into the software development lifecycle, automating security practices, and ensuring robust threat modeling and vulnerability management. Your primary focus will be on cloud … native and on-premises environments, with a strong emphasis on application security, infrastructure as code (IaC) security, and cloud security posture management. Additionally, you will contribute to data security efforts, securing data at rest, managing key management systems, and ensuring strong governance across data access. … Responsibilities: Integrate security into the software development lifecycle, automating security practices into CI/CD pipelines. Implement automated security testing (SCA, SAST, DAST) to identify and remediate vulnerabilities at every stage of development. Secure IaC configurations, ensuring secure provisioning, configuration management, and continuous monitoring of infrastructure. Utilize More ❯

Role Objective: The Security Engineer will be responsible for supporting the secure design, development, and deployment of applications by identifying vulnerabilities, performing code and security reviews, and collaborating with engineering teams to embed security throughout the software development lifecycle. They will also contribute to threat modeling, security testing, and the continuous improvement of application security practices and tools. Key Roles & Responsibilities: Perform basic application security testing (SAST, DAST) using tools like Burp Suite, SonarQube, or Veracode. Perform manual and automated code reviews, vulnerability assessments, and penetration testing for web and mobile applications. … Collaborate with developers to identify and remediate security issues during the SDLC (Secure Development Lifecycle). Analyze findings from SAST, DAST, and SCA tools and guide teams on resolution. Participate in threat modeling and design review sessions to identify potential security risks. Assist in maintaining and evolving secure More ❯

growth has landed Smarsh in the annual Inc. 5000 list of fastest-growing American companies since 2008. We are looking for an experienced Product Security Engineer to partner with engineering teams and proactively identify, assess, and remediate security risks across our product portfolio. This role will focus on … secure development practices, vulnerability management, threat modelling, and driving a shift-left security culture. The ideal candidate is a pragmatic problem solver with strong technical expertise in application security, cloud security, and DevSecOps. You will work closely with product owners, software engineers, and platform teams to … implement security controls that balance risk with business objectives. How will you contribute? Secure SDLC Integration: Embed security within the software development lifecycle, ensuring security is considered at every phase-from design to deployment. Threat Modeling & Security Design Reviews: Conduct structured threat modelling and security More ❯

We are searching for a Senior Software Security Architect/Senior Application Security Architect for a marketing leading and award-winning technology and data driven business. The position is offered on a remote basis. The role is hands-on and very software engineering focused - you will be … Design' approach/practice to be used by all of the Architecture and Software development teams. The role will involve: Developing, implementing, and maintaining application security architecture across the organisation. Ensuring our systems are designed with objectives like speed, scalability, robustness, zero-trust, automation and supportability at the … core. Collaborating with the Architecture and Engineering Team to ensure security is an integral part of all development and deployment processes. Providing expert software security advice (design, coding, testing) to the Software Engineering Community, to InfoSec, DevOps and other teams. Defining and delivering secure software development of information More ❯

from Office (WFO) role. This role will focus on creating a business strategy, gap analysis and implementation, for securing their Azure-based infrastructure, integrating security automation, ensuring PCI DSS compliance, vulnerability and penetration testing and incident response. This role will focus on developing and maintaining secure, scalable Azure DevOps … pipelines and Infrastructure as Code (IaC) using Terraform. Their ideal candidate will have a strong background in cloud security best practices, automation, and a proactive approach to integrating security across their software delivery lifecycle. A key part of this position will also involve mentoring an internal engineer, developing … structured security policies, and managing Sentinel, Defender and SOAR solutions for automated threat response. Additionally, the role requires liaising with third-party support partners to coordinate security solutions, manage incidents, and enhance overall cybersecurity posture. Responsibilities Infrastructure Security: Architect and secure Azure-based infrastructure using Terraform, ensuring More ❯

from Office (WFO) role. This role will focus on creating a business strategy, gap analysis and implementation, for securing their Azure-based infrastructure, integrating security automation, ensuring PCI DSS compliance, vulnerability and penetration testing and incident response. This role will focus on developing and maintaining secure, scalable Azure DevOps … pipelines and Infrastructure as Code (IaC) using Terraform. Their ideal candidate will have a strong background in cloud security best practices, automation, and a proactive approach to integrating security across their software delivery lifecycle. A key part of this position will also involve mentoring an internal engineer, developing … structured security policies, and managing Sentinel, Defender and SOAR solutions for automated threat response. Additionally, the role requires liaising with third-party support partners to coordinate security solutions, manage incidents, and enhance overall cybersecurity posture. Responsibilities Infrastructure Security: Architect and secure Azure-based infrastructure using Terraform, ensuring More ❯

from Office (WFO) role. This role will focus on creating a business strategy, gap analysis and implementation, for securing their Azure-based infrastructure, integrating security automation, ensuring PCI DSS compliance, vulnerability and penetration testing and incident response. This role will focus on developing and maintaining secure, scalable Azure DevOps … pipelines and Infrastructure as Code (IaC) using Terraform. Their ideal candidate will have a strong background in cloud security best practices, automation, and a proactive approach to integrating security across their software delivery lifecycle. A key part of this position will also involve mentoring an internal engineer, developing … structured security policies, and managing Sentinel, Defender and SOAR solutions for automated threat response. Additionally, the role requires liaising with third-party support partners to coordinate security solutions, manage incidents, and enhance overall cybersecurity posture. Responsibilities Infrastructure Security: Architect and secure Azure-based infrastructure using Terraform, ensuring More ❯

opportunities for enhancing our delivery and providing additional services to organisations we work with. We are seeking a highly motivated and experienced Lead Software Security Engineer to join our team. You will have a strong background in software development, security, and operations. This role is required to support … the Digital Product Management team in embedding security requirements and best practices into new Digital Products and Services. You will work closely with the Digital Product Management and IT Security teams to establish and build the right security controls and quality state gates across the product lifecycle. … This includes security tooling to manage these controls. In this busy and rewarding role, you'll also: Collaborate with software development teams to integrate security into the development lifecycle Own the cultural shift to a Security DevSecOps mindset Manage & implement security controls, tools, and processes to More ❯

and our software is in demand globally by firefighters, paramedics, hospitals and governments. To meet this demand, we are building an industry-leading cyber security team in Belfast to protect our customers and data from a variety of fast moving and constantly evolving threats. We are looking for an … Application Security Engineer to join our Belfast and US teams. Work alongside our fire, hospital and EMS to secure our mission-critical applications. These applications are used to help our customers go about their daily job of protecting their communities and saving lives. You will refine our application design and protection using offensive security techniques like design assessment, research, threat intelligence, threat modelling, and controls optimization. You will conduct security assessments of our applications, identify issues, and help address them early in the development cycle. You'll also support developers in improving coding practices to More ❯

What you tell your friends you do "I help developers build cool stuff - safely." What you really will be doing Own Aize's Application Security strategy, driving a security-first culture across our engineering teams Training developers on secure coding practices and following up on issues flagged … by our security tooling (like Snyk and Microsoft Defender). Designing, implementing, and operating security tools and continuously improving our secure SDLC processes. Contribute to ISO 27001 compliance by running threat modeling exercises and security architecture reviews as well as participating in architectural discussions. ️ Prioritize security … coding practices Both react to threats and work proactively to get ahead of them Work with devs, platform teams, and product managers to embed security at every stage Strategically balance addressing security debt in our established product suite (Java, Python, Go, Angular, MySQL etc.) with proactively shaping secure More ❯

Who we are looking for A Senior Information Security Specialist, who will focus on the technical side of IT Security, specifically looking at application security and code analysis to ensure applications are built securely. The application security team deal with the security of … that is secure and compliant with the Company’s regulatory obligations. You will be working closely with the software development function, to ensure that application based vulnerabilities are understood and mitigated. It is therefore important that you possess an understanding of the Secure Software Development Lifecycles and the assessment … of code. This role is part of the broader Information Security department, which is comprised of engineers and analysts with varying backgrounds. Collectively, the team utilises enterprise and bespoke tooling to identify and mitigate threats to safeguard the Business. This role is eligible for inclusion in the Company’s More ❯

Who we are looking for A Senior Information Security Specialist, who will focus on the technical side of IT Security, specifically looking at application security and code analysis to ensure applications are built securely. The application security team deal with the security of … that is secure and compliant with the Company’s regulatory obligations. You will be working closely with the software development function, to ensure that application based vulnerabilities are understood and mitigated. It is therefore important that you possess an understanding of the Secure Software Development Lifecycles and the assessment … of code. This role is part of the broader Information Security department, which is comprised of engineers and analysts with varying backgrounds. Collectively, the team utilises enterprise and bespoke tooling to identify and mitigate threats to safeguard the Business. This role is eligible for inclusion in the Company’s More ❯

Application Security Specialist Our client is looking to hire mid-level API & Application Security Specialist to join them on a 6-month initial contract, to work remotely with some occasional trips to the London site. This role will be operating INSIDE IR35 Key Skills Required: Deep … controls such as WAF's, API gateways Experience using SIEM/logging tools to track API threats Familiarity with NIST, OWASP SAMM, or internal security frameworks Experience producing risk dashboards/reports for API's Able to translate technical risks into business language, collaborating with key stakeholders If interested More ❯

Application Security Specialist Our client is looking to hire mid-level API & Application Security Specialist to join them on a 6-month initial contract, to work remotely with some occasional trips to the London site. This role will be operating INSIDE IR35 Key Skills Required: Deep … controls such as WAF's, API gateways Experience using SIEM/logging tools to track API threats Familiarity with NIST, OWASP SAMM, or internal security frameworks Experience producing risk dashboards/reports for API's Able to translate technical risks into business language, collaborating with key stakeholders If interested More ❯

Application Security Specialist Our client is looking to hire mid-level API & Application Security Specialist to join them on a 6-month initial contract, to work remotely with some occasional trips to the London site. This role will be operating INSIDE IR35 Key Skills Required: Deep … controls such as WAF's, API gateways Experience using SIEM/logging tools to track API threats Familiarity with NIST, OWASP SAMM, or internal security frameworks Experience producing risk dashboards/reports for API's Able to translate technical risks into business language, collaborating with key stakeholders If interested More ❯

Application Security Specialist Our client is looking to hire mid-level API & Application Security Specialist to join them on a 6-month initial contract, to work remotely with some occasional trips to the London site. This role will be operating INSIDE IR35 Key Skills Required: Deep … controls such as WAF's, API gateways Experience using SIEM/logging tools to track API threats Familiarity with NIST, OWASP SAMM, or internal security frameworks Experience producing risk dashboards/reports for API's Able to translate technical risks into business language, collaborating with key stakeholders If interested More ❯