76 to 100 of 149 Application Security Jobs in England

DevSecOps Engineer Permanent | UK (Hybrid - a few times per month) | Up to £84k We're partnering with a respected, forward-thinking professional services firm that's serious about embedding security into every corner of its digital transformation journey. This is a pivotal hire within their growing tech function - they're after a DevSecOps Engineer (or Lead Software Security … that genuinely backs its people. They've built a collaborative, agile culture where innovation is encouraged and development is a priority. If you're someone who thrives on moving security left, guiding engineering teams with clarity, and making a real impact - this is your kind of role. What you'll be doing: You'll lead the charge in shifting … the culture towards DevSecOps across multiple product teams, embedding security from the ground up. That means defining and rolling out a product security strategy that aligns with business goals, working closely with developers to automate and streamline security testing, and supporting pen test activity with smart, secure remediation. You'll be the go-to expert on application More ❯

DevSecOps Engineer Permanent | UK (Hybrid - a few times per month) | Up to £84k We're partnering with a respected, forward-thinking professional services firm that's serious about embedding security into every corner of its digital transformation journey. This is a pivotal hire within their growing tech function - they're after a DevSecOps Engineer (or Lead Software Security … that genuinely backs its people. They've built a collaborative, agile culture where innovation is encouraged and development is a priority. If you're someone who thrives on moving security left, guiding engineering teams with clarity, and making a real impact - this is your kind of role. What you'll be doing: You'll lead the charge in shifting … the culture towards DevSecOps across multiple product teams, embedding security from the ground up. That means defining and rolling out a product security strategy that aligns with business goals, working closely with developers to automate and streamline security testing, and supporting pen test activity with smart, secure remediation. You'll be the go-to expert on application More ❯

Software Development Manager - Enterprise Software - Peterborough/Hybrid (Key skills: Software Development Manager, Agile, Software Engineering Leadership, Product Delivery, Application Security, Identity & Access Management, .NET 4.8 & 8, SQL Server, Microservices, Cloud (AWS/Azure), DevOps, CI/CD, Jenkins, Ansible, Stakeholder Engagement, Resilience Engineering, Full Stack Development) Are you an experienced and inspiring software leader who thrives on … hands-on leadership, technical strategy, and cross-functional collaboration. You will manage agile teams working on a mix of internal and client-facing applications, with a strong focus on application security, identity and access management, and platform resiliency. Working closely with architecture, design, infrastructure, and product teams, you will ensure the successful delivery of new and enhanced software More ❯

S/4 Security & Compliance Lead page is loaded S/4 Security & Compliance Leadlocations: UK - Greater Londontime type: Full timeposted on: Posted Todaytime left to apply: End Date: November 28, 2025 (13 days left to apply)job requisition id: 537736Welcome to Haleon. We're a purpose-driven, world-class consumer company putting everyday health in the hands … by SAP S/4HANA, this transformation will create a capability advantage, enhancing our performance, competitiveness, and adaptability in a rapidly changing environment. Detailed Responsibilities The S/4 Security & Compliance Lead is responsible for SAP user role and access processes, overseeing the design, development, testing, and deployment within SAP Governance, Risk, & Compliance (GRC) Platform. The role works closely … with the business, External and Internal Auditors to ensure compliance to SOx, GxP, and Digital & Technology controls. SAP S/4 HANA Cyber security transformation: Lead the end-to-end cyber security strategy for the SAP S/4HANA transformation, ensuring alignment with enterprise risk appetite, Haleon's digital trust objectives, and global regulatory frameworks (SOX, GxP, GDPR More ❯

As a Control Testing Lead, you will play a key role within the Information Security team, supporting the Control Test and Assurance Manager in the delivery of a robust and forward-looking Cybersecurity Control Testing & Assurance Programme. This role requires strong cybersecurity expertise combined with hands-on experience in control testing, particularly in evaluating the effectiveness of security … Manager, with whom you will work to deliver the goals of the company to have a stable and fit-for-purpose control testing environment that supports the organisation's security and compliance objectives. What you'll be doing as a Control Testing Lead - Cyber Security Support the implementation and continuous improvement of the Cybersecurity Control Testing Framework. Execute … To thrive in this role, the essential criteria you'll need are Proven experience in performing cybersecurity control assessments, including evaluating design and operational effectiveness. Strong understanding of information security principles, cyber risk management, and control frameworks. Experience in IT, OT and Cloud environments, with a focus on cybersecurity controls. Clear and professional verbal and written communication, including the More ❯

ability to keep our clients data secure is a bedrock for our reputation as a trustworthy professional services partner to many of the worlds large and prestigious organisations. Information security is not an afterthought; it is core to all that we do, to protect not only our data but that of our clients, and has the unwavering support of … the Board. Led by our new CISO, the in-house Information Security team is a core part of our technology services structure with mature or evolving capability across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with … you will do The Identity and Access Senior Architect will be part of the Digital Trust team, and will be responsible for maintaining the identity and access management (IAM) security of the firms assets. This role is critical in translating the organisations IAM vision into a workable, mature and optimized function and service. This role requires extensive experience across More ❯

when we work together, we can make a huge difference to bring lasting improvements to vulnerable children's lives. A bit about the role As the Head of Information Security at Action for Children, you will champion our cyber defences and ensure the safety of our digital landscape. In this pivotal role, you will steer the organisation through the … complexities of cyber threats with expertise and foresight. By leading a small team of cybersecurity experts, you will set up clear security rules and strong day-to-day processes that are both affordable and show real improvements in our services. Your leadership will not only safeguard our systems but will also inspire a culture of security awareness and … compliance that permeates every level of our charity. You will also enable effective decision making on information security matters and increase cyber resilience and awareness across the organisation to establish clear security controls and robust operational procedures that provide value for money whilst minimising risk to staff and service users. How you'll help to create brighter futures More ❯

Mobile Security Engineer Work Location: Bristol (2days) Your Profile Essential Skills/Knowledge/Experience Experience of Mobile platform security, threat modelling and mitigation techniques Capable of conducting regular reviews of our mobile application security posture using your hands-on experience Develop and maintain pen-testing security tools, scripts, policies and procedures In depth knowledge … of mobile app security standards (Android/iOS) Desirable Skills/Knowledge/Experience Familiarity with mobile development, DevSecOps tooling, testing and automation frameworks Have deep knowledge and experience using the mobile security tools Good understanding of authentication, authorisation, encryption, and cryptography patterns Experience in proactive researching of new technologies emerging in the security landscape More ❯

Mobile Security Engineer Location - Bristol, UK (Hybrid - 3days Onsite) Inside IR35 Contract ( 6months to start with) Banking sector Project Skills Required - Experience of Mobile platform security, threat modelling and mitigation techniques Capable of conducting regular reviews of our mobile application security posture using your hands-on experience. Develop and maintain pen-testing security tools, scripts … policies and procedures In depth knowledge of mobile app security standards (Android/iOS More ❯

Group's public cloud & developer architecture. Innovation is at the heart of this program and the role/key focus areas will continuously evolve to meet the business change, security, and our digital strategy!The Director, Cloud Architecture (Network) will provide the leadership, drive and focus on the strategy, design and evolution London Stock Exchange Group's strategic public … technical outcome. Retire and or decommission a number of the data centres across the globe to a cloud hosted environment Work with the Group CISO and the broader IT security teams to improve security controls Leverages emerging & innovative technologies in Cloud and development to enable simplification of technology landscape and service consumption to improve customer experience and drive … early and often as possible WHAT YOU'LL BRING: Proven deep technical background working with related infrastructure technologies Experience with the following technology areas + SDLC - Continuous Integration & Delivery, Application Security, Quality Assurance + Platforms - Istio, Serverless, Kubernetes + Processes - Agile, Lean, Product Development + Culture - DevSecOps, Continuous Change + Software engineering with exposure to event high performance More ❯

If you need support in completing the application or if you require a different format of this document, please get in touch with at UKI.recruitment@tcs.com or call TCS London Office number 02031552100/+44 204 520 2575 with the subject line: “Application Support Request”. Role: Technical Architect - Python Job Type: Permanent Location: Bradford Mode: Hybrid … challenging projects which demand ambitious innovation and thought leadership. The Role: We're seeking an experienced Technical Architect who is responsible for planning, designing , and implementation of python based application/projects ensuring they are completed on time, within scope, and within budget. They coordinate between teams, manage resources, mitigate risks, and ensure alignment with business goals. Your responsibilities … maintainability. • Evaluate and select appropriate Python frameworks (Django, Flask, FastAPI, etc.) based on project requirements. • Create detailed technical design documents, including system diagrams, data flow, and API specifications. • Ensure application security, performance, and scalability. • Collaborate with cross-functional teams, including designers, testers, and DevOps engineers. • Work with cloud platforms AWS, for deployment and monitoring. • Follow Agile methodologies (Scrum More ❯

Mobile Security Engineer Work Location: Bristol (2days) Your Profile Essential Skills/Knowledge/Experience Experience of Mobile platform security, threat modelling and mitigation techniques Capable of conducting regular reviews of our mobile application security posture using your hands-on experience Develop and maintain pen-testing security tools, scripts, policies and procedures In depth knowledge More ❯

Mobile Security Engineer Work Location: Bristol (2days) Your Profile Essential Skills/Knowledge/Experience Experience of Mobile platform security, threat modelling and mitigation techniques Capable of conducting regular reviews of our mobile application security posture using your hands-on experience Develop and maintain pen-testing security tools, scripts, policies and procedures In depth knowledge More ❯

vulnerability management lifecycle Vendor and market analysis and engagement Ability to translate technical information into Risks, Threats, and Vulnerabilities for both a technical and non-technical audience Cloud based security (AWS/GCP), with a specialism in vulnerability management Self-starter, able to work in technical detail and motivate a diverse group of stakeholders to build sponsorship for significant … and impactful change Desired: Establishing observability platforms Capabilities adjacent to exposure/vulnerability management capabilities (ie cyber security asset management, attack surface management, etc) Pragmatic application of zero-trust philosophies Cloud based security (GCP, AWS and Azure) Pentest scoping and analysis experience Application security Threat modelling To apply for this position please submit your CV. More ❯

you to achieve success faster and more effectively. Role Overview As a Senior Software Engineer, you will play a pivotal role in architecting and developing our next-generation web application and API. This role requires technical leadership, hands-on development, and mentoring of junior developers. You will drive the adoption of best practices, ensuring scalability, security, and performance. … record of leading development teams and managing large-scale projects. Database Expertise: In-depth experience with PostgreSQL/SQL, including design of complex schemas, writing queries and performance optimisation. Security & Performance: Deep understanding of application security best practices, performance tuning, and scalable architecture. Problem-Solving: Ability to troubleshoot complex technical issues, with a proactive and solution-oriented More ❯

you to achieve success faster and more effectively. Role Overview As a Senior Software Engineer, you will play a pivotal role in architecting and developing our next-generation web application and API. This role requires technical leadership, hands-on development, and mentoring of junior developers. You will drive the adoption of best practices, ensuring scalability, security, and performance. … record of leading development teams and managing large-scale projects. Database Expertise: In-depth experience with PostgreSQL/SQL, including design of complex schemas, writing queries and performance optimisation. Security & Performance: Deep understanding of application security best practices, performance tuning, and scalable architecture. Problem-Solving: Ability to troubleshoot complex technical issues, with a proactive and solution-oriented More ❯

architectural oversight and technical debt management Establish and drive comprehensive quality culture including TDD/BDD practices, testing standards, automated quality gates, and team code review excellence Define team security standards ensure team compliance governance, and drive security-first culture within the engineering team Stay technically current through code reviews, architectural discussions, strategic technical involvement and ensure alignment … dynamics Technical Skills Frontend Strategy: Strategic understanding of modern UI frameworks (e.g. Angular, React, Vue.js, Blazor) Backend Leadership: Strong understanding of .NET Core, C#, ASP.NET Core Web APIs, REST, application architectures, and distributed systems Data Architecture: Strategic knowledge of SQL, NoSQL and data architecture decisions CI/CD Strategy: Define team CI/CD strategy, establish team governance frameworks … and ensure adoption of deployment best practices across the team Infrastructure as Code: Infrastructure as Code with Terraform, ARM Templates or AWS CloudFormation/CDK Observability Strategy: DataDog, Application Insights or Amazon CloudWatch implementation with comprehensive observability strategy and cloud governance Cloud Strategy: Strategic SAAS using Azure (Functions, Queue, Blob Storage, VMs, etc) or AWS (Lambda, SQS/SNS More ❯

architectural oversight and technical debt management Establish and drive comprehensive quality culture including TDD/BDD practices, testing standards, automated quality gates, and team code review excellence Define team security standards ensure team compliance governance, and drive security-first culture within the engineering team Stay technically current through code reviews, architectural discussions, strategic technical involvement and ensure alignment … dynamics Technical Skills Frontend Strategy: Strategic understanding of modern UI frameworks (e.g. Angular, React, Vue.js, Blazor) Backend Leadership: Strong understanding of .NET Core, C#, ASP.NET Core Web APIs, REST, application architectures, and distributed systems Data Architecture: Strategic knowledge of SQL, NoSQL and data architecture decisions CI/CD Strategy: Define team CI/CD strategy, establish team governance frameworks … and ensure adoption of deployment best practices across the team Infrastructure as Code: Infrastructure as Code with Terraform, ARM Templates or AWS CloudFormation/CDK Observability Strategy: DataDog, Application Insights or Amazon CloudWatch implementation with comprehensive observability strategy and cloud governance Cloud Strategy: Strategic SAAS using Azure (Functions, Queue, Blob Storage, VMs, etc) or AWS (Lambda, SQS/SNS More ❯

C# and Azure Development C# Development, .NET core/.NET Framework Full understanding of Object Orientated and SOA design patterns Azure: APIM, including extensive use of policies, caching and security aspects Azure Functions Azure AI Search, using API and designing indexes Azure Blob and Table Storage used via Rest APIs Azure AD, Enterprise apps and interactions via Graph API … Postman GitHub or similar Containerization tech: Docker, Kubernetes Relevant Microsoft Certifications Essential functions of the job Development, Design, Architecture Ensure product managers and stakeholders requirements are met through development application solutions. Define and design good architectural solutions for implementation within agreed timeframes and predictable costs. Utilize, where appropriate, distributed and decoupled architectures, utilizing APIs and event- based architectures. Design … and maintain coding standards ensuring best practices are followed. Advocate for continuous improvement to development processes and code quality. Governance and Compliance Contribute to and follow coding standards and security policies, maintaining and supporting compliance with security standards/guidelines such as PCI v4, OWASP etc. Ensure Senior and Junior Developers are well trained in application security More ❯

About the Team Security is at the foundation of OpenAI's mission to ensure that artificial general intelligence benefits all of humanity. The Security team protects OpenAI's technology, people, and products. We are technical in what we build but are operational in how we do our work, and are committed to supporting all products and research at … OpenAI. Our Security team tenets include: prioritizing for impact, enabling researchers, preparing for future transformative technologies, and engaging a robust security culture. About the Role As a Security Engineer you will join our OpenAI engineers and researchers in building, operating and securing transformational AI technologies. This role will focus on all aspects of Detection & Response, including infrastructure … and operations, and will also contribute to the Security team as a strong generalist. In this role, you will: Drive projects in all major security verticals including: AppSec, InfraSec, OffSec and Detection and Response Innovate to solve novel security problems Collaborate on cutting-edge AI research, and use AI to improve OpenAI's Security posture This More ❯

Internal Pentester to join an international client secure their networks. This critical role, based in London (2-3 days per week), requires deep expertise in conducting manual and automated security assessments across networks, applications, cloud platforms, and infrastructure. You will identify and exploit vulnerabilities, simulate real-world attacks, and deliver actionable remediation guidance to strengthen defenses. Key Responsibilities: Plan … and execute penetration tests - perform manual and automated testing across applications, APIs, internal/external networks, cloud environments, and Active Directory. Identify, exploit, and validate vulnerabilities - uncover security flaws such as insecure authentication, authorization bypasses, misconfigurations, and privilege escalation paths. Simulate real-world attacks - use adversary techniques and offensive tools to test the resilience of networks, systems, and security controls. Develop detailed reports - produce both technical and executive-level documentation outlining findings, risk impact, and remediation steps What You Will Ideally Bring: Application security knowledge - strong grasp of OWASP Top 10 and API security issues.Contract Details: Hands-on pentesting experience - 3-7+ years in penetration testing, red teaming, or offensive security across networks More ❯

Internal Pentester to join an international client secure their networks. This critical role, based in London (2-3 days per week), requires deep expertise in conducting manual and automated security assessments across networks, applications, cloud platforms, and infrastructure. You will identify and exploit vulnerabilities, simulate real-world attacks, and deliver actionable remediation guidance to strengthen defenses. Key Responsibilities: Plan … and execute penetration tests - perform manual and automated testing across applications, APIs, internal/external networks, cloud environments, and Active Directory. Identify, exploit, and validate vulnerabilities - uncover security flaws such as insecure authentication, authorization bypasses, misconfigurations, and privilege escalation paths. Simulate real-world attacks - use adversary techniques and offensive tools to test the resilience of networks, systems, and security controls. Develop detailed reports - produce both technical and executive-level documentation outlining findings, risk impact, and remediation steps What You Will Ideally Bring: Application security knowledge - strong grasp of OWASP Top 10 and API security issues.Contract Details: Hands-on pentesting experience - 3-7+ years in penetration testing, red teaming, or offensive security across networks More ❯

Information Security Analyst - £80K Our client is a leading Software-as-a-Service (SaaS) development company – They build bespoke Big Data solutions for financial services, pharma and ecommerce client around the world. Offer great remote/hybrid flexible working, they’re looking for an experienced Cyber Security Analyst to join them. You’ll work directly with the CSO … and SOC team to create and deliver the security strategy, information security framework and risk mitigation activity for the company. You’ll have the chance to be involved in everything from security assessments and threat modelling to triage of security events, ownership of policies ad procedures and even working with development and engineering teams to drive … application security. Requirements: Proven experience as an Information/Cyber Security Analyst Certified Information Security Manager (CISM) or Certified Information Systems Auditor (CISA) or equivalent Extensive cyber and information security (InfoSec) experience Experience of working in demanding, environments Good undersyanding of Windows, Cloud and IT infrastructure Excellent communication skills More ❯

Information Security Analyst - £80K Our client is a leading Software-as-a-Service (SaaS) development company – They build bespoke Big Data solutions for financial services, pharma and ecommerce client around the world. Offer great remote/hybrid flexible working, they’re looking for an experienced Cyber Security Analyst to join them. You’ll work directly with the CSO … and SOC team to create and deliver the security strategy, information security framework and risk mitigation activity for the company. You’ll have the chance to be involved in everything from security assessments and threat modelling to triage of security events, ownership of policies ad procedures and even working with development and engineering teams to drive … application security. Requirements: Proven experience as an Information/Cyber Security Analyst Certified Information Security Manager (CISM) or Certified Information Systems Auditor (CISA) or equivalent Extensive cyber and information security (InfoSec) experience Experience of working in demanding, environments Good undersyanding of Windows, Cloud and IT infrastructure Excellent communication skills More ❯

This global insurance firm seeks a Cyber Security Consultant to work on large IT and business change projects across the company. You will work with senior stakeholders and technical teams, advising on security requirements, assessing security controls, managing cyber … assessments and suggesting remediations. The successful candidate will have a technical security background with good experience of conducting security assessments, the ability to review architectural diagrams, good AppSec or DevSecOps experience, and knowledge of cloud security (any platform). The role would be suit someone who is working as a senior security consultant or security More ❯