1 to 25 of 80 Application Security Jobs in England

to join their existing & high performing large scale In - House Security Team including SOC & Cyber Analysts through to Experienced Cyber Security Engineers & Security Architects. As an AppSec Engineer you will focus on the technical side of IT Security, specifically looking at Application Security & Code Analysis, ensuring their Applications are Built Securely. The Information & Cyber … working closely with the Software Development Team , to confirm that Application Based Vulnerabilities are Understood & Mitigated meaning that Code Reading Skills are also desirable. Skills & Experience of the AppSec Engineer role: Hands-On Experience with Security Assessment Tools & Techniques including Penetration Testing & Code Review. Use of Planned, Structured Methodologies for Conducting & Reporting on Web Application Penetration Testing. … Department to ensure Security is considered throughout SDLC. Identifying any Security Issues within the Businesss Software and Manage through Liaising with External Stakeholders as & when necessary. Searches: AppSec/Application Security/SDLC/Software Application Security/Application Security Engineer/Cyber Security Engineer/Software Application Security More ❯

Application Security Engineer Salary: Up to £90,000 + Discressionary Bonus (Depending on experience) Hybrid Working - 3 day on-site (Bristol or Edinburgh) Spencer rose are currently hiring for an Application Security Engineer with one of their key clients with offices based in Edinbrugh or Bristol depending on your location, on a permanent basis. This is … a technical role so within this role the Application Security Engineer will be responsible for integrating security within development and providing application security testing. The Application Security Engineer will have the following responsibilities: Taking ownership of technical security aspects for application development Leading application security testing of components and … services through the Development Lifecycle Provide clear security input on solution design, ensuring principles and best practices are applied at software and platform levels. Support architects with security input and offer expert guidance in governance forums. The Application Security Engineer will need the following skills/experience: Must have at least 3+ years experience within Application More ❯

Application Security Engineer Bristol - 3 days a week on site £90,000 + great benefits An impressive financial services business is looking to hire an Application Security Engineer to support this team with the risk and remediation activities. This business is going through a big technology transformation programme that is estimated to take 3 -5 years. … The successful Application Security Engineer will be part of this journey and have great technical exposure and the ability to rapidly progress. Working closely in one of transformation projects, the successful Application Security Engineer will work closely with the wider security and technology teams to define the strategy and roadmap of technology changes moving forward. … Application Security Engineer Duties and Responsibilities The successful Application Security Engineer will: Provide security input into solution design to ensure that security principles are incorporated at both the platform and software level Automate tooling to run security fixes over a variety of repo's Ensure that security requirement input is provided across More ❯

We are looking for an experienced Application security specialist to join our Cyber team with a hyper focus on supporting our application security architecture and risk management programme. You will help us build out a world class capability to align with our key stakeholders in the Games teams to provide a clear plan, review and support … lifecycle and overall risk remediation. This is a hybrid role : Location: Cambridge, UK with travel to the office once per week. What you'll be doing: Provide guidance on security best practices and compliance and undertake security testing Identify Application security risks and requirements for new projects and system developments Represent cyber in review sprints on … application security prior to live implementation Collaborate with the architecture and development teams to review the design and code for security vulnerabilities Establish a threat modelling capability and evangelise secure coding in the development lifecycle Provide technical specialist advice to ensure that security standards are understood and can be complied with Develop security testing plans More ❯

a consulting organization that works with our global enterprise customers in various industries to achieve their business outcomes securely and faster in the cloud. Through project-based support, our security consultants work with our customers on innovative solutions that promote cloud technology for solving customer business problems faster and for long-term business expansion. The AWSI Professional Services Korea … team is seeking a Senior Security, Risk, Compliance Consultant who can lead a variety of customer engagements, including building security strategies and roadmaps, architecture design and implementation support, technical assessments, incident response, and security control implementation support. You will work with AWS sales, engineering, training & certifications, and support teams as well as partners to provide technical assistance … to customers to ensure they are successful in achieving their security business outcomes on AWS. This includes leading pre-sales on-site visits, understanding customer security and compliance requirements, and proposing and delivering security solutions in customer engagements. These Global Engagements include short on-site or remote projects leading to architecture or compliance roadmaps, security guidelines More ❯

heart of our digital transformation. As we continue to grow and innovate, securing our applications and protecting customer data is a top priority. We are looking for a Senior Application Security Engineer to lead our efforts in strengthening application security, mitigating risks, and ensuring best-in-class security practices. If you are passionate about cybersecurity … and eager to make a real impact, we want you on our team! Key Responsibilities: Security Strategy: Help define and execute the Holland & Barrett application security strategy. Collaborate with both tech and non-tech teams to integrate security principles into the early stages of product design and development. Secure SLDC: Establish a secure Software Development Lifecycle … software integrity, authenticity, and third-party library management. Risk Assessments: Conduct risk assessments, threat modeling, and architecture reviews alongside development teams, producing artifacts to drive the implementation of effective security controls. Standards Development: Own the creation and maintenance of tailored security standards and guidelines, developing reusable resources for various development teams. Team Support: Provide guidance and support to More ❯

The Head of Application and Product Security is a strategic leadership role responsible for safeguarding the application landscape and digital products within HL. This pivotal position ensures that security is embedded throughout the software development lifecycle and product innovation pipeline, providing assurance to clients, regulators, and stakeholders during a period of significant digital transformation and on … an ongoing basis. The role will champion secure-by-default/design principles, drive security best practices, and lead a high-performing team in the context of ambitious cloud adoption, agile delivery, and regulatory evolution. The role balances strategic vision with operational oversight, ensuring security resilience and enabling the firm's growth aspirations. What you'll be doing … Provide strategic leadership, direction and vision for all aspects of application and product security across the firm's digital portfolio, products and services. Establish, communicate, and maintain security policies, standards, and practices for code, applications, APIs, customer platforms, and digital products. Embed security by design, threat modelling, and secure coding practices across agile and DevOps teams More ❯

Your mission As a Security Engineer, you play a crucial role in developing and implementing comprehensive security strategies, policies, and procedures to safeguard Intigriti's information assets across corporate IT and the Intigriti platform. You are a passionate individual who enjoys building defences against today's cyber threats, targeting infrastructure, data, and employees. You should be able to … analyse the current threat environment and Intigriti's security posture, then design and implement controls in line with our risk appetite. This position requires strategic thinking, technical expertise, and a deep understanding of cybersecurity principles. You will be expected to deploy, manage and maintain preventive and detective controls leveraging security tools including EDR, SIEM, phishing simulation, compliance solutions … among others. You will collaborate with colleagues in security and across the organisation, including Engineering and Legal teams. If tackling complex security challenges using tools that make sense excites you, this position is for you! What you'll be doing Infrastructure Security Oversee the design, implementation, and maintenance of security across Intigriti infrastructure, ensuring the confidentiality More ❯

ProServe Area Delivery Leader - Security , LATAM The Amazon Web Services Professional Services (ProServe) team is looking for an experienced ProServe Area Delivery Leader (PADL) to join our Shared Delivery Team (SDT). This senior leadership role is responsible for all delivery activities within the Area (single/multi-country or Practice/Industry), ensuring optimal support while maximizing team … resources here to help you develop into a better-rounded professional. Basic Qualifications 10+ years of professional experience, with a minimum of 5 years as technical contributor in the security field (internal corporate security, security operations, security consulting, incident response, etc.) Hands-on security experience in two or more of the following: Cloud Security, Application Security (security SDLC, threat modeling, code review), Identity & Access Management, Network Security, Data Protection, Incident Response. Hands-on experience with enterprise security solutions (Data Loss Prevention, WAF, SIEM, etc.) Track record of leading complex security projects Experience contributing to the professional development of technical contributors (direct management, mentoring, coaching, etc) Able to More ❯

house , using new data sources, machine learning and AI to make machines do the heavy lifting About the role We're looking for a Head of InfoSec to champion security across Lendable, ensuring our products, platforms, and processes remain secure as we scale. This is a high-impact leadership role with broad responsibility across application security, operations … and regulators. You will lead a team of exceptional security engineers, delivering a technical roadmap that you will shape. What you'll be doing Application Security (AppSec) : Driving secure development practices, code analysis, and threat modelling. Security Operations (SOC) : Overseeing monitoring, incident response, vulnerability management, and operational resilience. Governance, Risk & Compliance (GRC) : Leading our efforts to … leader who is comfortable with: Building a team : You have prior management experience and a proven track record of growing a collaborative and cross-functional Security team. Scaling AppSec : You've owned and scaled a robust Application Security program, including secure development, code analysis, and threat modelling. Running Security Operations : You have deep experience overseeing a More ❯

Senior Application Security Engineer | Permanent | UK (Hybrid - a few times per month) | £84k We're working with a forward-thinking professional services firm on a key hire to embed security into every part of their digital product journey. They're looking for a Senior Application Security Engineer to drive secure-by-design principles across new … and evolving applications and act as a Subject Matter Expert for software security across the business. This is a high-impact role in a collaborative, ambitious, and people-focused IT team. You'll play a hands-on role, shaping security culture, guiding engineering teams, and ensuring that security is integrated into every stage of the software development … lifecycle. What you'll be doing: Leading the cultural shift towards secure software development across product teams Defining and implementing the software security strategy in line with business goals Collaborating with developers to automate security testing and embed security requirements into the SDLC Supporting penetration testing, vulnerability management, and remediation efforts Acting as a software security More ❯

Senior Application Security Engineer | Permanent | UK (Hybrid - a few times per month) | £84k We're working with a forward-thinking professional services firm on a key hire to embed security into every part of their digital product journey. They're looking for a Senior Application Security Engineer to drive secure-by-design principles across new … and evolving applications and act as a Subject Matter Expert for software security across the business. This is a high-impact role in a collaborative, ambitious, and people-focused IT team. You'll play a hands-on role, shaping security culture, guiding engineering teams, and ensuring that security is integrated into every stage of the software development … lifecycle. What you'll be doing: Leading the cultural shift towards secure software development across product teams Defining and implementing the software security strategy in line with business goals Collaborating with developers to automate security testing and embed security requirements into the SDLC Supporting penetration testing, vulnerability management, and remediation efforts Acting as a software security More ❯

team. Working closely with the Cyber team as well as the digital team to ensure cybersecurity is embedded across all digital platforms. Key skills & Responsibility Lead the integration of security into the software development lifecycle (SDLC) using DevSecOps principles. Define and implement release strategies with a strong emphasis on application security. Identify and remediate security vulnerabilities through … and automated tooling. Collaborate with cross-functional teams to establish secure coding standards and quality benchmarks. Provide expert consultancy and guidance to engineering teams, enabling them to meet strategic security goals. Drive adoption of security best practices across CI/CD pipelines and cloud-native environments. Accountabilities Provide technical cyber leadership across all development teams, focusing on application security for our various digital platforms (web and mobile). Secure our CI/CD pipelines and provide improvement plans and requirements to those that use them, while overseeing the consistent adoption of secure practices across teams. Support the vulnerability management process, raising awareness and embedding secure development principles with development teams. Evaluate, implement, support and communicate new More ❯

A leading Fintech/Payments company is looking for a proactive and technically skilled Application Security Engineer/DevSecOps to champion secure development practices across our software delivery lifecycle. In this role, youll play a key part in identifying and reducing application-layer risks, integrating security into the development pipeline, and ensuring that security considerations … are embedded throughout the SDLC. Working closely with engineering and platform teams, youll help automate security processes, lead threat modelling exercises, and continually improve the organisations application security posture. Key Responsibilities Secure Development Lifecycle (SDLC) Experience working with static and dynamic code analysis tools (SAST, DAST) is essentialwhile you dont need to have set them up, you … should have collaborated with developers to ensure code is scanned and critical vulnerabilities are blocked in the pipeline. Integrate security controls into CI/CD pipelines and development workflows. Manage and monitor SAST, DAST, and SCA tools to detect vulnerabilities early in the lifecycle. Conduct secure code reviews and support remediation efforts. Threat Modelling & Architecture Review Requirements (Primarily Essential More ❯

A leading Fintech/Payments company is looking for a proactive and technically skilled Application Security Engineer/DevSecOps to champion secure development practices across our software delivery lifecycle. Read the overview of this opportunity to understand what skills, including and relevant soft skills and software package proficiencies, are required. In this role, youll play a key part … in identifying and reducing application-layer risks, integrating security into the development pipeline, and ensuring that security considerations are embedded throughout the SDLC. Working closely with engineering and platform teams, youll help automate security processes, lead threat modelling exercises, and continually improve the organisations application security posture. Key Responsibilities Secure Development Lifecycle (SDLC) Experience … essentialwhile you dont need to have set them up, you should have collaborated with developers to ensure code is scanned and critical vulnerabilities are blocked in the pipeline. Integrate security controls into CI/CD pipelines and development workflows. Manage and monitor SAST, DAST, and SCA tools to detect vulnerabilities early in the lifecycle. Conduct secure code reviews and More ❯

source solutions, and embracing enterprise agile methodology. We encourage professional development to ensure you bring innovative ideas to our products while satisfying your own intellectual curiosity. Our Global Information Security team's mission is to ensure the development, implementation, and management of a comprehensive program that effectively protects the confidentiality, integrity, and availability of Point72 information assets. Our team … is comprised of security professionals with expertise in a diverse portfolio of security disciplines. What you'll do Collaborate with the DevOps team to design, implement, and manage a robust DevSecOps framework for our software development pipeline, integrating security tools and processes into our CI/CD workflows to enhance the developer experience Champion a security-first mindset within the development team, promoting secure coding practices and providing guidance on secure development methodologies Create security focused DevSecOps policies and standards and provide training and awareness to the development team Develop Key Risk Indicators (KRIs) to track security posture across business lines, measure progress and identify outliers Implement and manage security testing tools More ❯

Candidates with strong Tenable expertise, particularly those who have embedded it at scale in large or regulated environments such as financial services, will be especially attractive for this role. Security Clearance - Due to the sensitive nature of the work, candidates must be eligible for SC clearance. Candidates with active or recently lapsed SC clearance will be prioritised. Applicants without … ONR). Drive automation, integrating tools and workflows to improve efficiency. Act as subject matter expert for Tenable and related tooling, ensuring platforms are fully leveraged. Mentor analysts and security champions, building maturity across the team. About You - You will bring experience leading vulnerability management at enterprise scale, ideally in financial services or similarly regulated industries. You should also … scanning Cloud integrations (AWS, Azure, GCP) Dashboards and risk-based prioritisation Patch & Endpoint Management - Microsoft Intune/SCCM/WSUS Jamf Workflow & ITSM Integration - ServiceNow (dashboards, SOAR) Jira Cloud & Application Security - AWS Security Hub Azure Defender for Cloud Veracode Threat Intelligence & Exploit Context - Tenable Threat Intelligence Exploit DB Metasploit SIEM, SOAR & Monitoring - Microsoft Sentinel SOAR platforms (ServiceNow More ❯

us and be at the forefront of the green revolution, where every line of code contributes to a cleaner, brighter future. Key Responsibilities: Develop and maintain the enterprise cyber security architecture for the Group including development of enterprise architecture standards and patterns that address the requirements of both IT and OT that aligns with industry standards, regulatory requirements and … best practice in support of high risk and critical programmes and projects. Lead IT security risk position and lead consulting and assurance engagement into Group IT products and services. This includes overseeing the IT security risk position and mitigation planning. Management and challenge of security assurance to critical IT security projects and programmes. Lead SSE's … Secure by Design approach and provide technical expertise and support for the development and implementation of cyber security policies and architecture standards and patterns. Define and manage a security tooling roadmap to ensure the implementation of effective security controls and technologies and regularly update cyber security technical strategies including emerging innovation and technological advancements. Establish and More ❯

us and be at the forefront of the green revolution, where every line of code contributes to a cleaner, brighter future. Key Responsibilities: * Develop and maintain the enterprise cyber security architecture for the Group including development of enterprise architecture standards and patterns that address the requirements of both IT and OT that aligns with industry standards, regulatory requirements and … best practice in support of high risk and critical programmes and projects. * Lead IT security risk position and lead consulting and assurance engagement into Group IT products and services. This includes overseeing the IT security risk position and mitigation planning. Management and challenge of security assurance to critical IT security projects and programmes. * Lead SSE's … Secure by Design approach and provide technical expertise and support for the development and implementation of cyber security policies and architecture standards and patterns. * Define and manage a security tooling roadmap to ensure the implementation of effective security controls and technologies and regularly update cyber security technical strategies including emerging innovation and technological advancements. * Establish and More ❯

Our client, a leading global organization, is partnering with a prestigious end client based in Reading. Were excited to offer an outstanding opportunity for askilled Financial Services Security Architect to join a dynamic IT team . If you are interested and have the relevant skills and experience, please apply promptly to discuss further. Job Title: Financial Services Security Architect Location: Reading, UK (Hybrid 4 days onsite) Duration: 6 months Rate: £765 - 775 per day Inside IR35 We are seeking an exceptionally experienced Security Architect to join a high-profile programme within the financial services sector. This is a senior-level opportunity for a security leader with extensive experience designing and implementing enterprise-grade security architectures across complex, highly regulated environments. The role will focus heavily on cloud security, AI/ML security, regulatory compliance, and secure-by-design frameworks for critical systems. Why This Role? Shape and deliver the security architecture strategy for enterprise cloud and AI/ML programmes. Work on cutting-edge initiatives in the financial services domain More ❯

and this is your opportunity to play a key role in embedding application security into products enjoyed by millions worldwide. If you're passionate about secure design, AppSec tooling, and enabling engineering teams to build secure software by default, this role offers real impact at scale. Whilst they continue to build out their security function, you'll … experience in application security or secure software development. Strong understanding of vulnerabilities and prevention techniques (OWASP Top 10). Experience with CI/CD pipelines and integrating AppSec tooling. Strong understanding of modern programming languages (JavaScript, Java, Python). Strong communication skills and ability to collaborate with technical and non-technical stakeholders. *Unfortunately, we are not able to … provide sponsorship for this role.* If you're ready to grow your career in a hands-on AppSec role and help shape secure software at scale, apply now or reach out directly to (url removed). Lawrence Harvey is acting as an Employment Business in regards to this position. Visit our website and follow us on Twitter for all live More ❯

About Wallarm: Wallarm is the only solution that unifies best-in-class API Security and WAAP (Next-Gen WAF) capabilities to protect your entire API and web application portfolio in multi-cloud and cloud-native environments. We are on a mission to help companies counter the new style of attacks on the ever-changing landscape of cybersecurity. Wallarm … enables developers, Security Ops and DevSecOps teams the ability to secure their APIs via observability, and ensure Protection and Analytics to manage risk, protect the business, and enable speed of development with safety. As a Solution Architect aligned with Customer Engineering, you will be an integral part of defining our success at Wallarm and will play a key role … within a specified region. Additionally, you will be a subject matter expert for our Sales teams. The role requires excellent technical, communication, and organizational skills, and previous experience with application security and microservices architectures. You will help prospective customers and partners understand the benefits of Wallarm, explaining technical features and problem-solving any potential roadblocks. What you will More ❯

A leading fintech company is seeking a Lead AppSec Engineer to join their established team. Youll be instrumental in embedding security into every stage of the software development lifecycleguiding engineers, shaping best practices, and driving secure, scalable solutions across our platform. Key Responsibilities: Security Advisory : Serve as the go-to expert for application security across engineering … teamsproviding hands-on guidance, resolving concerns, and fostering a security-first mindset. DevSecOps Enablement : Promote and implement secure development practices across CI/CD pipelines, secrets and key management, dependency management, and secure design. Vulnerability Management : Lead vulnerability remediation effortstriaging findings, prioritizing risks, and partnering with teams to deliver effective, pragmatic fixes. Tooling & Automation : Integrate security tools (e.g. … SAST, DAST, SCA, secrets scanning) into developer workflows, ensuring automation is both scalable and developer-friendly. Cloud Security Collaboration : Work alongside infrastructure teams to ensure secure configuration of AWS and Azure environments, with a focus on IAM, network security, encryption, and observability. Architecture & Design Reviews : Provide input and recommendations to ensure new services and features are secure by More ❯

Role/Job Title: DevSecOps Pentester Work Location: London (2 - 3days) The Role Conducts security assessments and penetration tests across CI/CD pipelines, cloud infrastructure, and application environments. Integrates automated security tools and practices within DevOps workflows to ensure continuous security validation. Identifies and exploits vulnerabilities in code, containers, APIs, and infrastructure-as-code before … they reach production. Collaborates with development, security, and operations teams to implement remediation and improve security posture. Stays current with threat landscapes, tools, and methodologies to proactively defend against evolving cyber risks in general and more specific to an airline industry, transportation sector. Your Responsibilities Integrate security practices and tools into the DevOps pipeline to ensure security is a continuous process. Perform IaC Automation and ServiceNow integrations to automate AWS Service catalogues. Contribute to security tooling, checklists, and automation efforts. Identify potential security threats and vulnerabilities during the design phase identify flaws in CI/CD, IaC, and cloud/containerized environments. Perform manual and automated security testing on web apps, APIs, pipelines. More ❯

Security Engineer Kent, Hybrid Competitive Salary VIQU have partnered with a leading automotive organisation in Kent to search for an experineced Security Engineer . This role is all about protecting and improving cloud and infrastructure environments, driving security automation, and helping shape DevSecOps practices. You’ll work across AWS and modern platforms, supporting both day-to-day … security operations and longer-term strategic projects. Key Responsibilities: Maintain strong security posture across cloud infrastructure Manage vulnerabilities and support regular system maintenance Design, implement, and manage security tooling in cloud environments ( AWS focus ) Support threat detection, incident response, and risk mitigation activities Contribute to compliance initiatives (ISO 27001, CIS benchmarks ) Collaborate with infrastructure and platform teams … to embed security controls Apply secure DevOps practices (code scanning, container security, IaC) Support governance, reporting, and vulnerability management processes Participate in security reviews, threat assessments, and architecture decisions Key Requirements: 3+ years’ hands-on experience with AWS security services (CloudTrail, GuardDuty, WAF, IAM, Security Hub) Strong knowledge of cloud governance and security best More ❯