26 to 50 of 80 Application Security Jobs in London

Strong experience in building secure web and mobile apps Experience with Security architecture, Application Security assessments, penetration testing, vulnerability assessment, Secure SDLC, and Static code reviews Certified Secure Software Lifecycle Professional (CSSLP) (desirable) Responsibilities: - Design, develop, and implement security frameworks and solutions to safeguard company's assets and infrastructure. - Conduct regular security audits and risk … assessments to identify and address potential vulnerabilities. - Develop and maintain security policies and procedures in accordance with industry standards. - Configure and manage security tools, such as firewalls, intrusion detection systems, and encryption technologies. - Monitor network traffic and system logs for suspicious activity and respond to security incidents in a timely manner. - Stay updated on the latest security threats and trends to anticipate potential risks and adapt security strategies accordingly. - Collaborate with IT teams to ensure that security measures are integrated into all aspects of technology development and implementation. - Conduct employee training programs to promote awareness of security best practices and protocols. Requirements: - Bachelor's degree in Computer Science, Information Technology, or a related More ❯

Senior Cloud Security Engineer Department: Engineering Employment Type: Permanent - Full Time Location: London Reporting To: Sami Eltamawy Compensation: £80,000 - £90,000/year Description London, office-based Freetrade's mission is to become the default place to invest. Investing has been too complicated and expensive for too long, keeping millions from making the most of their savings. We … an even better experience for our customers. We're on a mission to build a secure, scalable, and resilient cloud infrastructure-and we're looking for a Senior Cloud Security Engineer to lead the way. In this foundational role, you'll architect and build our cloud security program from the ground up, helping to shape how we protect … our systems, services, and users in an ever-evolving digital landscape. You'll work closely with our DevOps and Platform teams to integrate security deeply into our development and deployment pipelines. This is your chance to define the standards, select the tools, and create the practices that will safeguard our cloud ecosystem now and into the future. If you More ❯

complexity and confidence to cloud-first design. You'll play a pivotal role in shaping secure architecture across our organisation; supporting squads, guiding integrations, and ensuring our approach to security is consistent, scalable, and aligned with business needs. This is a hands-on role blendingenterprise and technical security architecture. You'll collaborate with engineers, architects, and stakeholders to … helping future generations live in good health for longer, then we're keen to speak with you. What you'll be doing Leading the development of enterprise and technical security architecture across projects and platforms. Providing expert security guidance to squads, including product managers, engineers, and data teams. Collaborating with Cloud and Application Security Engineers to … embed security throughout system lifecycles. Partnering with technical and data architects to ensure architectural alignment and integration. Leading threat modelling activities and ensuring outputs are reflected in system designs. Ensuring our security architecture, and the controls that implement it, align to the threats we face and our organisation's objectives. Driving consistency and standardisation in security practices More ❯

Lead Java Security Engineer Department: Software Engineering Employment Type: Permanent - Full Time Location: Remote, UK Description At Hazelcast, we build a high-performance, real-time data platform used in mission-critical systems across industries like finance, e-commerce and telecoms. Our platform enables applications to access and process data in milliseconds, powering use cases such as fraud detection, real … time inventory tracking and dynamic pricing. We're looking for a Lead Software Security Engineer to take our product security program to the next level. This is a high-impact, hands-on role where you'll guide the secure design and development of distributed systems, shape engineering and product roadmaps, and foster a security-first mindset across … teams. WHAT YOU'LL DO Be a Security Champion Be a trusted advisor and advocate for security across the development lifecycle, influencing architecture, design and implementation decisions. Embed secure development practices into day-to-day workflows across engineering teams. Own the vulnerability management lifecycle: from discovery and triage to remediation tracking and coordinated disclosure. Build Secure Products by More ❯

for electrifying their homes, shifting usage to off-peak hours, and supporting grid stability-critical for scaling AI and energy-intensive industries. We're looking for a Chief Information Security Officer (CISO) to lead our company-wide security strategy. You'll protect our infrastructure, digital assets, and customer data while enabling fast, secure growth. Key Responsibilities Security Strategy & Leadership Define and lead Fuse's security strategy across infrastructure, applications, and data. Lead hands-on development of security roadmaps, maturity models, and control frameworks tailored to Fuse's risk profile. Directly contribute to architecture reviews, threat modelling sessions, and key design decisions across product and platform teams. Build and mentor a high-performing security team, including hiring, coaching, and managing performance. Develop KPIs and reporting structures to measure and communicate security posture to leadership and the board. Advise the executive team on security risks, regulatory exposure, and investment priorities to support long-term growth. Governance & Compliance Own company-wide security governance, including data protection, access control, and insider risk. Ensure More ❯

About the role: Join Our Team at Holland & Barrett! Are you passionate about cloud security and looking to make a significant impact? Holland & Barrett is seeking a Cloud Security Specialist to help us define and implement our cloud security strategy. If you're an experienced professional eager to work with cutting-edge technology and collaborate with diverse … teams, we want to hear from you! Key Responsibilities: Security Strategy: Help define and execute the Holland & Barrett cloud security strategy, partnering with platform and Site Reliability Engineering (SRE) teams to build robust infrastructure that supports our business. Perimeter Security: Establish platform perimeter security by implementing controls at ingress and egress points, including creating and maintaining … an edge network with a Web Application Firewall (WAF), Distributed Denial of Service (DDoS) protection, and a Content Delivery Network (CDN). Access Control: Establish an access control baseline focusing on the principle of least privilege and segregation of duties. Monitor and enforce these controls once roles and permissions are set. Security Controls: Design, implement, and maintain security More ❯

Our team of hundreds of skilled experts keep Formula 1 moving. We’re on the lookout for a Security Engineer. Reporting to the Cyber Security Manager, the main purpose of this role is to support the development and management of security technologies across F1’s growing technology landscape. Main Duties & Responsibilities: Assess and maintain high standards of … security maturity across Formula 1’s cloud infrastructure Focus on new and existing infrastructure, managing technical vulnerabilities, support continued system maintenance, and minimise technical debt Ensure visibility and reporting of Cloud infrastructure against Formula 1’s compliance and security standards (such as ISO 27001 and CIS) Main duties to be carried out include, but not limited to: Vulnerability … Management and reporting across Formula 1’s cloud environment(s), including: Development of requirements, design, and implementation of cloud security tools (E.g. compliance and host security) A key focus on threat detection and risks across cloud environments Identification, remediation, and reporting of security vulnerabilities Reporting on compliance to F1’s security standards Support in the delivery More ❯

Gartner and Forrester, and our sustained, aggressive growth has landed Smarsh in the annual Inc. 5000 list of fastest-growing American companies since 2008. We're seeking a Product Security Engineer to support secure development across our engineering teams. In this hands-on role, you'll help identify and mitigate product risks by participating in security reviews, improving … tooling, and supporting vulnerability remediation. You'll work closely with senior security engineers and cross-functional teams to build security into our software development lifecycle. This is a great opportunity for a security-minded engineer who wants to grow their technical breadth while making meaningful impact in a cloud-first, DevOps-centric environment. You must be comfortable … dynamic, fast-paced environment. Collaboration across time zones and geographies is a key part of our culture and success. How will you contribute? Secure SDLC Support : Assist in integrating security practices into the software development lifecycle, including design reviews and backlog grooming. Threat Modelling : Participate in structured threat modelling exercises with guidance from senior team members. Vulnerability Triage : Work More ❯

Bootcamp, tailored for individuals looking to gain practical, job-ready skills in protecting digital assets and systems. The bootcamp aims to enhance participants' abilities in areas such as network security, ethical hacking, incident response, and security operations, enabling them to secure new or higher-value opportunities in the cybersecurity field. You will be responsible for delivering engaging and … interactive sessions, guiding learners through complex security concepts, and helping them build practical, defensive, and offensive security skills. The ideal candidate will be confident teaching a range of cybersecurity topics, adaptable to different learner needs, and passionate about supporting underrepresented individuals in building successful careers in cybersecurity. The majority of course content will be provided, but you may … offering feedback for continuous improvement Areas of Knowledge We are looking for people who have working experience or comfortable teaching (or able to learn) in the following areas: Network Security (e.g., Firewalls, IDS/IPS, VPNs) Operating System Security (e.g., Windows, Linux hardening) Ethical Hacking and Penetration Testing (e.g., reconnaissance, vulnerability scanning, exploitation) Security Operations (e.g., SIEM More ❯

support our growing team and meet client needs for dependable and up-to-date technical expertise in the dynamic software industry, we are hiring. We are seeking a Cyber Security Specialist with experience in Azure and M365 security and administration. Full training will be provided to fill any skill gaps. Ideal candidates will have experience with Azure administration … and security, M365 administration and security, Intune, and AWS. Our client maintains a flat organizational structure, fostering a culture that values great ideas from anyone and promotes a healthy work-life balance. Responsibilities: Building and managing Azure Security and M365 Security environments to improve efficiency. Setting up new development tools and infrastructure in Azure, including Virtual … Machine backup and recovery using Azure PowerShell and Portal. Applying security patches on Azure IaaS VMs and managing update policies. Designing compliance policies and generating reports for AD-joined and registered devices. Working with automation deployment via Azure ARM templates, managing Azure Storage accounts, blob storage, and other storage solutions. Ensuring platforms are secure, efficient, and highly available, including More ❯

a month to the office. Key Skills and Responsibilities: Design, deliver, and support secure and scalable AWS infrastructure using services like EC2, S3, ECS, and FARGATE Integrate SAST (Static Application Security Testing) and DAST (Dynamic Application Security Testing) tools into CI/CD pipelines to enforce secure development practices Automate infrastructure provisioning using CloudFormation, Terraform, or More ❯

a month to the office. Key Skills and Responsibilities: Design, deliver, and support secure and scalable AWS infrastructure using services like EC2, S3, ECS, and FARGATE Integrate SAST (Static Application Security Testing) and DAST (Dynamic Application Security Testing) tools into CI/CD pipelines to enforce secure development practices Automate infrastructure provisioning using CloudFormation, Terraform, or More ❯

about healthcare, and we plan to be the largest digital primary healthcare platform for people across Europe. About the role We are seeking a motivated and detail-oriented Information Security Engineer to join our team here at ZAVA. In this role, the successful candidate will support the organisation's cybersecurity efforts by assisting with the implementation, monitoring, and maintenance … of security systems and processes. They will work closely with senior security team members to identify vulnerabilities, respond to incidents, and ensure compliance with security policies and frameworks. The role involves hands-on tasks such as configuring security tools, analysing alerts, and supporting investigations into potential threats, as well as contributing to the development ofa secure … IT environment. Additionally, the successful candidate will participate in security awareness initiatives, help document processes, and stay updated on emerging threats and technologies to enhance the organisation's security posture. Key Accountabilities You will be working from home, but you do have the opportunity to come to the office, if you wish. You will use our collaboration tools More ❯

Soho Place office opened in 2023 - in the heart of Central London and home to our Research Lab. The role Were looking for a seasoned and strategic Head of Security Engineering to shape the next phase of security at G-Research. This is a key leadership role, responsible for protecting sensitive data and maintaining a robust, forward-looking … security posture across our technology landscape. Based within the Technology department, the successful candidate will collaborate closely with the CTO, executive leadership and partner teams to ensure security engineering is tightly integrated with our broader objectives. Key responsibilities of the role include: Leadership and strategy Leading the Security Engineering function, including hiring, mentoring and performance management Defining … and delivering the security engineering roadmap aligned to technology strategy and enterprise risk appetite Developing talent in line with G-Research values, modelling leadership behaviours, coaching teams to their strengths and fostering a supportive environment Security architecture and engineering Driving secure design and implementation across on-premises and cloud environments Overseeing advanced security capabilities such as endpoint More ❯

65k - £78K + bonus, benefits) We are working with a globally renowned and industry leading UK brand who are going through an exciting phase of growth across their wider Security function, resulting in the need for a DevSecOps Engineer. As a DevSecOps Engineer, you will work within a newly established team in a role that sees you provide hands … on Application Security and DevSecOps responsibilities, as well as being involved in various strategic activities. Your duties would include setting-up, securing and enhancing pipelines, scripting and automation, as well as looking at how things are done, what improvements can be made, supporting cyber change initiatives and driving security awareness/practices as necessary. This role will … continue to evolve with the wider Security function and business, with the opportunity for progression and development unavailable at most companies of a similar size, who also offer some of the best perks & benefits available! Key skills and experience required: DevSecOps experience Application Security expertise across SAST, DAST & SCA Background and experience in Software Development/Scripting More ❯

ability to keep our clients data secure is a bedrock for our reputation as a trustworthy professional services partner to many of the worlds large and prestigious organisations. Information security is not an afterthought; it is core to all that we do, to protect not only our data but that of our clients, and has the unwavering support of … the Board. Led by our new CISO, the in-house Information Security team is a core part of our technology services structure with mature or evolving capability across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with … you will do The Identity and Access Senior Architect will be part of the Digital Trust team, and will be responsible for maintaining the identity and access management (IAM) security of the firms assets. This role is critical in translating the organisations IAM vision into a workable, mature and optimized function and service. This role requires extensive experience across More ❯

Technologies: Docker SQL NoSQL AWS Lambda DynamoDB application security HTML5 ES2018 React Redux Webpack NodeJS REST APIs Git Software Architecture Scalable Apps Optimisation The Benefits: Situated in the heart of London's Tech City with easy access to the mainline and tubes, the area is now a trendy area to live and work, with creative businesses and smart … campaigns Team mentoring and best practice guidance and code reviews Experience with running or contributing to hackathons Skillset - Expert Knowledge/Experience Docker SQL/NoSQL AWS Lambda DynamoDB Application Security Skillset: Degree in Computer Science or related area Excellent communication skills in English, both written and verbal HTML5 ES2018 Webpack Node.js REST APIs Git/workflow models More ❯

in the insurance sector. This is a pivotal role with real impact where your expertise will help protect critical systems, data, and services across multiple markets. Role Overview: Role: Security Architect. Location: Remote based with 1-2 days per month in Central London Package: £100,000- £130,000 per annum & Benefits Industry: Insurance What You’ll Be Doing: Designing … secure-by-default solutions across systems, apps and networks. Embedding robust security into enterprise and solution architecture from day one. Advising on risks, vulnerabilities and mitigation strategies across the tech estate. Shaping and maintaining internal security standards and governance frameworks. Ensuring compliance with ISO 27001, GDPR, SOC 2, PCI-DSS and similar regulations. Collaborating with IT, business stakeholders … to drive secure delivery. Supporting incident response and proactively planning for emerging threats. Translating complex risks into clear advice for technical and non-technical teams. Driving continuous improvement in security processes and tooling. Main Skills Needed: Minimum of 5 years of experience as a Security Architect. Strong background in security architecture and designing enterprise-level solutions. Deep More ❯

Role: Android Security EngineerSalary/Rate: £500-600 per day Location: hybrid London, mainly remoteContract Duration: until December 2025 A unique opportunity has arisen for a skilled professional with a strong background in mobile application security to join a specialist team tackling complex technical challenges. The successful candidate will be responsible for conducting in-depth analysis of … Android applications, providing clear and actionable insights into potential security and privacy risks. You would be operating at the top tier, handling the most complex and technically demanding cases that require advanced expertise and critical thinking. The role is based mainly remotely, however candidates must be willing to work in central London as required. This will run until the … extend. Local candidates will be preferred. Skills/experience required: Demonstrable experience in analysing and deconstructing Android applications ( Java essential; native code experience advantageous) Strong understanding of Android OS security features and architecture Proficiency in vulnerability identification and penetration testing techniques Ability to work independently, with excellent attention to detail and analytical skills Comfortable navigating large, unfamiliar codebases Excellent More ❯

Role: Android Security Engineer Salary/Rate: £500-600 per day Location: hybrid London, mainly remote Contract Duration: until December 2025 A unique opportunity has arisen for a skilled professional with a strong background in mobile application security to join a specialist team tackling complex technical challenges. The successful candidate will be responsible for conducting in-depth … analysis of Android applications, providing clear and actionable insights into potential security and privacy risks. You would be operating at the top tier, handling the most complex and technically demanding cases that require advanced expertise and critical thinking. The role is based mainly remotely, however candidates must be willing to work in central London as required. This will run … extend. Local candidates will be preferred. Skills/experience required: Demonstrable experience in analysing and deconstructing Android applications ( Java essential; native code experience advantageous) Strong understanding of Android OS security features and architecture Proficiency in vulnerability identification and penetration testing techniques Ability to work independently, with excellent attention to detail and analytical skills Comfortable navigating large, unfamiliar codebases Excellent More ❯

have the autonomy to shape the direction of the function, with the support of the Executive Director. Those with a background and deep expertise in any of the following: Security risk management, Security policies and governance, or Security controls testing will be the best fit for this position. To be considered for this role, you must have … lived experience or personal characteristics. We also invite applicants who meet most of the listed requirements, even if not all, to apply. If you require any adjustments to the application process, please let us know. Barclay Simpson acts as an Employment Agency for permanent positions and an Employment Business for temporary/contract engagements. Technical IAM Consultant required for … join an View job & apply SOC Manager Location: Fully Remote Job type: Contract Position Overview Rapidly growing FinTech company seeking an accomplished Cybersecurity Operation View job & apply Senior Cyber Security Analyst Location: London Job type: Permanent Financial Service firm seeks a Senior Cyber Security Analyst to join its Security team. This indi View job & apply Location: Fully More ❯

Months Initially (Extensions Likely) £625.00 p/d Remote Based (Adhoc London - Travel Expensed) ASAP Start The Role: In this role you will work closely with the clients Cyber Security team. In this role, you will ensure the security of products being released into production environments—across containers, hosts, and APIs. You will play a part in identifying … remediating, and mitigating risks and vulnerabilities, integrating security into every stage of the development lifecycle. Responsbilities Work directly with Cyber Security and DevOps teams to embed security best practices into the CI/CD pipeline. Proactively identify, assess, and remediate vulnerabilities in applications and infrastructure (containers, hosts, APIs). Implement and manage static and dynamic application security testing (SAST/DAST) tools and workflows. Support secure cloud deployments within AWS, ensuring compliance with internal and standards. Skills & Experience Strong experience in a DevSecOps or security-focused DevOps role. In-depth knowledge and hands-on experience with SAST, DAST and API security testing Solid understanding of AWS and security configurations. Experience in More ❯

This is a key role for someone with the technical skills, automation mindset, and proactive attitude to take the capability to the next level. Reporting to the Head of Security Engineering within the Information Security function , the ideal candidate will have strong scripting and automation skills, experience in hybrid environments (on-prem and cloud), and the initiative to … configurations, and best practices, aligned to frameworks such as ISO 27001, NIST, and CIS. Integrate vulnerability scanning and remediation into CI/CD pipelines and development workflows to ensure security at speed. Automate data collection, triage, reporting, and ticketing processes using scripting languages such as Python, Bash, PowerShell, or Go. Collaborate with IT, DevOps, and engineering teams to remediate … and coordinate penetration testing activities; track remediation and risk acceptance outcomes. Monitor, measure, and report on vulnerability management performance, including KPIs, SLAs, and risk metrics. Develop and document information security processes and policies related to vulnerability detection, triage, remediation, and escalation. Coordinate and lead regular remediation meetings with engineering, DevOps, and infrastructure teams to track progress and unblock issues. More ❯

take, guiding us to deliver impact how and where it mattersmost . Connect to your opportunity As a Senior Manager, you will lead and oversee a variety of SAP Security, Governance, Risk, and Compliance (GRC) and Identity Access management work for a portfolio of diversified clients in different industries where you will be required to lead and collaborate effectively. … The ideal candidate will have extensive experience with SAP Security architecture and implementation, SAP GRC solutions (Access Control, Identity Access Governance), and proven experience managing teams through complex SAP ERP Transformation engagements. You will demonstrate and develop your capabilities in the following areas: Apply problem solving and critical thinking to enable the identification of Technology and Risks associated. Access … the security requirements and risks for complex ERP environment supporting the core business and IT processes. Develop and implement a comprehensive SAP security and GRC strategy, policies, and procedure aligned with Organisational goals and industry best practice. Oversee SAP Security during implementations, ensuring compliance with regulatory requirements and internal security standards. Establish and maintain robust access More ❯

we're enabling the fully automated enterprise-but innovation must be secure to be transformative. That's where you come in. We're looking for a Field Chief Information Security Officer (Field CISO) to serve as a strategic security advisor to our customers and partners, guiding them through the complex landscape of compliance, governance, and secure development of … Automations and Agentic AI. You'll work at the intersection of customer success, product innovation, and cybersecurity thought leadership-translating strategic security insights into real-world impact. What you'll do Act as the primary security advisor for clients, assessing their needs, and providing strategic recommendations. Conduct security risk assessments and design tailored strategies that align with … business goals and regulatory requirements. Educate clients on how to leverage UiPath's platform for secure SDLC and best-in-class security outcomes. Deliver executive-level thought leadership, representing UiPath in industry forums, events, and customer engagements. Collaborate with internal teams (Product, Sales, Legal, Engineering) to align customer needs with product and roadmap decisions. Create and scale security More ❯