22 of 22 Remote Application Security Jobs in London

heart of our digital transformation. As we continue to grow and innovate, securing our applications and protecting customer data is a top priority. We are looking for a Senior Application Security Engineer to lead our efforts in strengthening application security, mitigating risks, and ensuring best-in-class security practices. If you are passionate about cybersecurity … and eager to make a real impact, we want you on our team! Key Responsibilities: Security Strategy: Help define and execute the Holland & Barrett application security strategy. Collaborate with both tech and non-tech teams to integrate security principles into the early stages of product design and development. Secure SLDC: Establish a secure Software Development Lifecycle … software integrity, authenticity, and third-party library management. Risk Assessments: Conduct risk assessments, threat modeling, and architecture reviews alongside development teams, producing artifacts to drive the implementation of effective security controls. Standards Development: Own the creation and maintenance of tailored security standards and guidelines, developing reusable resources for various development teams. Team Support: Provide guidance and support to More ❯

Your mission As a Security Engineer, you play a crucial role in developing and implementing comprehensive security strategies, policies, and procedures to safeguard Intigriti's information assets across corporate IT and the Intigriti platform. You are a passionate individual who enjoys building defences against today's cyber threats, targeting infrastructure, data, and employees. You should be able to … analyse the current threat environment and Intigriti's security posture, then design and implement controls in line with our risk appetite. This position requires strategic thinking, technical expertise, and a deep understanding of cybersecurity principles. You will be expected to deploy, manage and maintain preventive and detective controls leveraging security tools including EDR, SIEM, phishing simulation, compliance solutions … among others. You will collaborate with colleagues in security and across the organisation, including Engineering and Legal teams. If tackling complex security challenges using tools that make sense excites you, this position is for you! What you'll be doing Infrastructure Security Oversee the design, implementation, and maintenance of security across Intigriti infrastructure, ensuring the confidentiality More ❯

house , using new data sources, machine learning and AI to make machines do the heavy lifting About the role We're looking for a Head of InfoSec to champion security across Lendable, ensuring our products, platforms, and processes remain secure as we scale. This is a high-impact leadership role with broad responsibility across application security, operations … and regulators. You will lead a team of exceptional security engineers, delivering a technical roadmap that you will shape. What you'll be doing Application Security (AppSec) : Driving secure development practices, code analysis, and threat modelling. Security Operations (SOC) : Overseeing monitoring, incident response, vulnerability management, and operational resilience. Governance, Risk & Compliance (GRC) : Leading our efforts to … leader who is comfortable with: Building a team : You have prior management experience and a proven track record of growing a collaborative and cross-functional Security team. Scaling AppSec : You've owned and scaled a robust Application Security program, including secure development, code analysis, and threat modelling. Running Security Operations : You have deep experience overseeing a More ❯

Senior Application Security Engineer | Permanent | UK (Hybrid - a few times per month) | £84k We're working with a forward-thinking professional services firm on a key hire to embed security into every part of their digital product journey. They're looking for a Senior Application Security Engineer to drive secure-by-design principles across new … and evolving applications and act as a Subject Matter Expert for software security across the business. This is a high-impact role in a collaborative, ambitious, and people-focused IT team. You'll play a hands-on role, shaping security culture, guiding engineering teams, and ensuring that security is integrated into every stage of the software development … lifecycle. What you'll be doing: Leading the cultural shift towards secure software development across product teams Defining and implementing the software security strategy in line with business goals Collaborating with developers to automate security testing and embed security requirements into the SDLC Supporting penetration testing, vulnerability management, and remediation efforts Acting as a software security More ❯

Senior Application Security Engineer | Permanent | UK (Hybrid - a few times per month) | £84k We're working with a forward-thinking professional services firm on a key hire to embed security into every part of their digital product journey. They're looking for a Senior Application Security Engineer to drive secure-by-design principles across new … and evolving applications and act as a Subject Matter Expert for software security across the business. This is a high-impact role in a collaborative, ambitious, and people-focused IT team. You'll play a hands-on role, shaping security culture, guiding engineering teams, and ensuring that security is integrated into every stage of the software development … lifecycle. What you'll be doing: Leading the cultural shift towards secure software development across product teams Defining and implementing the software security strategy in line with business goals Collaborating with developers to automate security testing and embed security requirements into the SDLC Supporting penetration testing, vulnerability management, and remediation efforts Acting as a software security More ❯

team. Working closely with the Cyber team as well as the digital team to ensure cybersecurity is embedded across all digital platforms. Key skills & Responsibility Lead the integration of security into the software development lifecycle (SDLC) using DevSecOps principles. Define and implement release strategies with a strong emphasis on application security. Identify and remediate security vulnerabilities through … and automated tooling. Collaborate with cross-functional teams to establish secure coding standards and quality benchmarks. Provide expert consultancy and guidance to engineering teams, enabling them to meet strategic security goals. Drive adoption of security best practices across CI/CD pipelines and cloud-native environments. Accountabilities Provide technical cyber leadership across all development teams, focusing on application security for our various digital platforms (web and mobile). Secure our CI/CD pipelines and provide improvement plans and requirements to those that use them, while overseeing the consistent adoption of secure practices across teams. Support the vulnerability management process, raising awareness and embedding secure development principles with development teams. Evaluate, implement, support and communicate new More ❯

A leading Fintech/Payments company is looking for a proactive and technically skilled Application Security Engineer/DevSecOps to champion secure development practices across our software delivery lifecycle. In this role, youll play a key part in identifying and reducing application-layer risks, integrating security into the development pipeline, and ensuring that security considerations … are embedded throughout the SDLC. Working closely with engineering and platform teams, youll help automate security processes, lead threat modelling exercises, and continually improve the organisations application security posture. Key Responsibilities Secure Development Lifecycle (SDLC) Experience working with static and dynamic code analysis tools (SAST, DAST) is essentialwhile you dont need to have set them up, you … should have collaborated with developers to ensure code is scanned and critical vulnerabilities are blocked in the pipeline. Integrate security controls into CI/CD pipelines and development workflows. Manage and monitor SAST, DAST, and SCA tools to detect vulnerabilities early in the lifecycle. Conduct secure code reviews and support remediation efforts. Threat Modelling & Architecture Review Requirements (Primarily Essential More ❯

Candidates with strong Tenable expertise, particularly those who have embedded it at scale in large or regulated environments such as financial services, will be especially attractive for this role. Security Clearance - Due to the sensitive nature of the work, candidates must be eligible for SC clearance. Candidates with active or recently lapsed SC clearance will be prioritised. Applicants without … ONR). Drive automation, integrating tools and workflows to improve efficiency. Act as subject matter expert for Tenable and related tooling, ensuring platforms are fully leveraged. Mentor analysts and security champions, building maturity across the team. About You - You will bring experience leading vulnerability management at enterprise scale, ideally in financial services or similarly regulated industries. You should also … scanning Cloud integrations (AWS, Azure, GCP) Dashboards and risk-based prioritisation Patch & Endpoint Management - Microsoft Intune/SCCM/WSUS Jamf Workflow & ITSM Integration - ServiceNow (dashboards, SOAR) Jira Cloud & Application Security - AWS Security Hub Azure Defender for Cloud Veracode Threat Intelligence & Exploit Context - Tenable Threat Intelligence Exploit DB Metasploit SIEM, SOAR & Monitoring - Microsoft Sentinel SOAR platforms (ServiceNow More ❯

About Wallarm: Wallarm is the only solution that unifies best-in-class API Security and WAAP (Next-Gen WAF) capabilities to protect your entire API and web application portfolio in multi-cloud and cloud-native environments. We are on a mission to help companies counter the new style of attacks on the ever-changing landscape of cybersecurity. Wallarm … enables developers, Security Ops and DevSecOps teams the ability to secure their APIs via observability, and ensure Protection and Analytics to manage risk, protect the business, and enable speed of development with safety. As a Solution Architect aligned with Customer Engineering, you will be an integral part of defining our success at Wallarm and will play a key role … within a specified region. Additionally, you will be a subject matter expert for our Sales teams. The role requires excellent technical, communication, and organizational skills, and previous experience with application security and microservices architectures. You will help prospective customers and partners understand the benefits of Wallarm, explaining technical features and problem-solving any potential roadblocks. What you will More ❯

A leading fintech company is seeking a Lead AppSec Engineer to join their established team. Youll be instrumental in embedding security into every stage of the software development lifecycleguiding engineers, shaping best practices, and driving secure, scalable solutions across our platform. Key Responsibilities: Security Advisory : Serve as the go-to expert for application security across engineering … teamsproviding hands-on guidance, resolving concerns, and fostering a security-first mindset. DevSecOps Enablement : Promote and implement secure development practices across CI/CD pipelines, secrets and key management, dependency management, and secure design. Vulnerability Management : Lead vulnerability remediation effortstriaging findings, prioritizing risks, and partnering with teams to deliver effective, pragmatic fixes. Tooling & Automation : Integrate security tools (e.g. … SAST, DAST, SCA, secrets scanning) into developer workflows, ensuring automation is both scalable and developer-friendly. Cloud Security Collaboration : Work alongside infrastructure teams to ensure secure configuration of AWS and Azure environments, with a focus on IAM, network security, encryption, and observability. Architecture & Design Reviews : Provide input and recommendations to ensure new services and features are secure by More ❯

Type: Contract (6 months) | Rate: Market| Start Date: ASAP About the Role Our client, a leading global organization, is looking for an experienced DevSecOps Pentester to join a leading security team in London. Youll perform penetration tests and security assessments across CI/CD pipelines, cloud environments, and applications, integrating automated security tools and practices into DevOps … is ideal for someone who can identify vulnerabilities in code, containers, APIs, and infrastructure-as-code before production, collaborate closely with DevOps and development teams, and help improve enterprise security posture. Key Responsibilities Integrate security tools and practices into CI/CD pipelines for continuous validation. Conduct manual and automated security testing on web apps, APIs, pipelines … and actionable remediation guidance. Validate remediation efforts and perform retesting cycles. Advise on secrets management, IAM, and secure deployment practices. Educate and collaborate with development and operations teams on security best practices. Required Skills & Experience Strong application security knowledge (OWASP Top 10, API security). Manual pentesting experience on modern web apps, APIs, and CI/ More ❯

Role: Security Solutions Architect Job Type- Permanent (Remote/Hybrid) Industry- Real-estate/Property Management Location- London/Stockholm Salary- up to £100K About: We are seeking a hands-on Security Solutions Architect to join our global architecture function. This is a key role responsible for shaping, designing, and supporting the build and deployment of security … technology estate, with a strong emphasis on Azure. The successful candidate will work within a global organisation operating across 30+ Operating Companies (OpCos), helping to translate a recently defined security strategy into actionable technology choices, solution designs, and deliverable work packages. Key Responsibilities Design and support the deployment of scalable, secure infrastructure and application security solutions. Translate … high-level security strategy into actionable technical designs and implementation roadmaps. Define and select appropriate security technologies and tooling in line with business needs and technical constraints. Work closely with the InfoSec function to align solution designs with group-wide security policies and standards. Partner with infrastructure and application teams across multiple OpCos to ensure consistent More ❯

About the role: Join Our Team at Holland & Barrett! Are you passionate about cloud security and looking to make a significant impact? Holland & Barrett is seeking a Cloud Security Specialist to help us define and implement our cloud security strategy. If you're an experienced professional eager to work with cutting-edge technology and collaborate with diverse … teams, we want to hear from you! Key Responsibilities: Security Strategy: Help define and execute the Holland & Barrett cloud security strategy, partnering with platform and Site Reliability Engineering (SRE) teams to build robust infrastructure that supports our business. Perimeter Security: Establish platform perimeter security by implementing controls at ingress and egress points, including creating and maintaining … an edge network with a Web Application Firewall (WAF), Distributed Denial of Service (DDoS) protection, and a Content Delivery Network (CDN). Access Control: Establish an access control baseline focusing on the principle of least privilege and segregation of duties. Monitor and enforce these controls once roles and permissions are set. Security Controls: Design, implement, and maintain security More ❯

/2 days in London Salary: Circa 65K 75K + Benefits Cybersecurity Engineer required by fast-growing, revolutionary tech company! This is a challenging, hands-on role leading the security of their applications, APIs, infrastructure, and data. Youll identify vulnerabilities, define best practices, and implement controls without slowing delivery Essential: At least 3yrs in cybersecurity, application security, or cloud security roles Strong knowledge of web/mobile security (OWASP Top 10, API security), cloud security (AWS), and CI/CD pipeline hardening Familiar with SAST/DAST tools, vulnerability scanners, penetration testing frameworks, and monitoring platforms (e.g. Splunk, ELK, Datadog) Understanding of GDPR and data privacy best practices Tremendous opportunity offering plenty More ❯

DevSecOps Engineer | Permanent | UK (Hybrid - A few times per month) | £84k We're working with a highly respected, forward-thinking professional services firm on a mission to embed security into every part of their digital transformation journey. This is a key hire within their growing tech function - they're looking for a DevSecOps/Lead Software Security Engineer … its people, with a collaborative culture and real investment in development. They're agile, ambitious, and looking for someone who wants to play a hands-on role in moving security left - bringing DevSecOps to life and guiding engineering teams with confidence and clarity. What you'll be doing: Leading the cultural shift towards DevSecOps across multiple product teams Embedding … security requirements and tooling into the SDLC from the ground up Defining and implementing a product security strategy aligned with business goals Collaborating with developers to automate and streamline security testing Supporting pen test activity and guiding secure remediation efforts Serving as an internal SME on application and cloud security matters Keeping documentation, training, and More ❯

DevSecOps Engineer | Permanent | UK (Hybrid - A few times per month) | £84k We're working with a highly respected, forward-thinking professional services firm on a mission to embed security into every part of their digital transformation journey. This is a key hire within their growing tech function - they're looking for a DevSecOps/Lead Software Security Engineer … its people, with a collaborative culture and real investment in development. They're agile, ambitious, and looking for someone who wants to play a hands-on role in moving security left - bringing DevSecOps to life and guiding engineering teams with confidence and clarity. What you'll be doing: Leading the cultural shift towards DevSecOps across multiple product teams Embedding … security requirements and tooling into the SDLC from the ground up Defining and implementing a product security strategy aligned with business goals Collaborating with developers to automate and streamline security testing Supporting pen test activity and guiding secure remediation efforts Serving as an internal SME on application and cloud security matters Keeping documentation, training, and More ❯

controls specialists, or as part of a wider Oracle Finance/Supply Chain/HR Transformation programme; Assessing, designing and implementing Oracle controls across areas including: business process controls, application security/role based access controls, segregation of duties, IT general controls, programme management controls, etc; Assessing, designing and implementing Oracle Risk Management and Compliance (RMC) modules; Applying … management (both internally and client stakeholders) as required. Connect to your skills and professional experience Knowledge of Oracle Cloud (e.g. ERP/EPM/SCM/HCM or equivalent) application security and role design, automated configured controls and Oracle Risk Management & Compliance (RMC) modules. Background assessing, designing and/or implementing controls in an external audit, internal audit … automated controls, etc. Excellent communicator with the ability to articulate complex ideas, and effectively manage key stakeholders. Experience working in organisations subject to SOX requirements. Knowledge of other common application technologies e.g. S/4 Hana, MS Dynamics, Blackline, Workday. Knowledge of common infrastructure technologies e.g. AWS, Google Cloud, Azure, SQL Database, Oracle database. Holding or eligible for UK More ❯

controls specialists, or as part of a wider Oracle Finance/Supply Chain/HR Transformation programme; Assessing, designing and implementing Oracle controls across areas including: business process controls, application security/role based access controls, segregation of duties, IT general controls, programme management controls, etc; Assessing, designing and implementing Oracle Risk Management and Compliance (RMC) modules; Applying … the practice; and Leading and shaping the strategy and team. Connect to your skills and professional experience Knowledge of Oracle Cloud (e.g. ERP/EPM/SCM/HCM) application security and role design, automated configured controls and Oracle Risk Management & Compliance (RMC) modules Background assessing, designing and/or implementing controls in an external audit, internal audit … teams across multiple locations. Excellent people management and development skills with a strong focus on team development. Experience working in organisations subject to SOX requirements. Knowledge of other common application technologies e.g. S/4 Hana, MS Dynamics, Blackline, Workday Knowledge of common infrastructure technologies e.g. AWS, Google Cloud, Azure, SQL Database, Oracle database Experience of assessing AI risks More ❯

Role: Android Security EngineerSalary/Rate: £500-630 per day Location: hybrid London, mainly remoteContract Duration: until December 2025 A unique opportunity has arisen for a skilled professional with a strong background in mobile application security to join a specialist team tackling complex technical challenges. The successful candidate will be responsible for conducting in-depth analysis of … Android applications, providing clear and actionable insights into potential security and privacy risks. You would be operating at the top tier, handling the most complex and technically demanding cases that require advanced expertise and critical thinking. The role is based mainly remotely, however candidates must be willing to work in central London as required. This will run until the … experience required: Demonstrable experience in analysing and deconstructing Android applications ( Java essential; native code experience advantageous) Proficiency in vulnerability identification and penetration testing techniques Strong understanding of Android OS security features and architecture Ability to work independently, with excellent attention to detail and analytical skills Comfortable navigating large, unfamiliar codebases Excellent communication skills and a collaborative approach to problem More ❯

Location : London (Hybrid, 23 days in office) | Rate : Market About the Role Our client, a leading global organization, is looking for a skilled Internal Pentester to join a leading security team in London. This contract role is perfect for someone experienced in penetration testing across networks, systems, web applications, APIs, and cloud environments, who can identify vulnerabilities, simulate attacks … and deliver actionable remediation advice. Youll work in a compliance-driven, high-security environment, collaborating with cross-functional teams to strengthen the organizations security posture. What Youll Do Conduct full-scope penetration tests on applications, APIs, internal infrastructure, networks, and cloud environments (AWS, Azure, GCP). Identify and exploit security flaws: insecure authentication, authorization bypass, input validation … issues, cloud misconfigurations, AD misuse, etc. Perform internal/external network testing, AD enumeration, privilege escalation. Automate security testing where possible, integrating IaC and ServiceNow workflows. Simulate real-world attacks using the same techniques and tools as malicious actors. Produce detailed, actionable reports with executive summaries and technical findings. Collaborate with development, cloud, and infrastructure teams on remediation. Keep More ❯

across the organization. Key responsibilities: Design, implement, and maintain highly available and scalable infrastructure solutions on Microsoft Azure Develop and manage CI/CD pipelines using Azure DevOps for application and infrastructure deployment Build, manage, and scale Kubernetes clusters to support our microservices-based architecture Use Helm to manage and deploy Kubernetes applications Implement infrastructure as code using Terraform … ensuring reproducible and version-controlled deployments Collaborate with development and QA teams to optimize the software delivery lifecycle Monitor, troubleshoot, and resolve infrastructure and deployment issues Ensure infrastructure and application security, compliance, and performance Advocate for and implement DevOps best practices and culture across the organization Design and manage multiple Azure landing zones, ensuring alignment with security baselines Implement and maintain cloud security controls, including identity and access management Key Skills/experience required: 5+ years of professional experience in a DevOps or Site Reliability Engineering role Expert-level experience with Microsoft Azure and Azure DevOps Strong hands-on experience with Kubernetes in production environments Proficient with Helm for Kubernetes application packaging and deployment More ❯

be driving adoption of AI-enabled capabilities throughout the software development lifecycle (SDLC) leading client conversations, showcasing offerings, delivering technical demonstrations, and evolving the organisations UK&I strategy for application modernisation and augmented engineering/GenAI in SDLC. Whats on Offer Up to £125,000 base salary £5,000 car allowance 20% annual bonus Hybrid working 2 days per … belonging What you'll be doing Lead the solution architecture stream in large-scale pre-sales engagements (RFx lifecycle, proposals, pitches). Shape and present solutions in custom software, application modernisation, and digital architecture. Drive conversations and demonstrations around AI-enabled tools in software engineering. Define and evolve go-to-market strategies in application modernisation and AI in … teams. Nice-to-Have Skills Familiarity with major cloud platforms (Azure, AWS, GCP). Exposure to DevOps/CI-CD tools (GitHub, Azure DevOps, Jenkins, GitLab). Knowledge of application security, monitoring, and quality engineering practices. Experience working in global, matrixed IT service environments. O.K. I'm in what's next? Apply with your latest CV below More ❯