26 to 50 of 117 Application Security Jobs in London

Application Security Architect – UK remote - £70,000 - £90,000 Opus are looking for multiple experienced Application Security Architects to join our clients growing AppSec team. As our client continues the development and improvement of their overall cyber team, they’re looking for AppSec specialists to shape the strategic direction of our clients application security posture, collaborating with developers, product managers, and security stakeholders to ensure that security is embedded throughout the SDLC. Main Responsibilities: Define and enforce secure architecture standards and frameworks across web, mobile, and cloud-native applications. Provide security guidance throughout product development, including threat modeling, secure coding, design reviews, and architecture assessments. Lead the implementation of DevSecOps … practices, integrating security into CI/CD pipelines. Identify and remediate application-level vulnerabilities through static/dynamic analysis, manual code review, and security testing. Collaborate with engineering and platform teams to secure APIs, microservices, and containerized workloads. Evaluate and implement security tools for secure code analysis and runtime protection. To be considered for this role More ❯

an individual with deep technical expertise, strategic vision, and hands-on experience in building secure, AI-driven systems. As Director of Cybersecurity, you will oversee all aspects of our security architecture, operations, and threat intelligence functions—ensuring Nothreat’s platforms and clients remain resilient in an evolving threat landscape. You will also be expected to drive cross-functional collaboration … across product, engineering, compliance, and delivery teams, and lead the execution of complex, high-impact security initiatives. Key Responsibilities Define and drive Nothreat’s cybersecurity strategy across product, infrastructure, and operations. Lead security architecture reviews, threat modeling, and secure development practices across engineering teams. Oversee the implementation and operation of security controls, incident response plans, and risk … management frameworks. Work closely with the AI engineering team to address security implications of machine learning models and data pipelines. Evaluate and adopt new security technologies and frameworks aligned with our AI-powered platform. Collaborate with executive leadership on regulatory, compliance, and customer security expectations. Lead cross-functional cybersecurity initiatives across engineering, product, and operations, ensuring successful More ❯

We're looking for a highly motivated and enthusiastic Information Security Engineer to join our dynamic UK IT Security team. In this role, you'll play a key part in strengthening our security posture by: Supporting the development and implementation of application security controls Automating security-related tasks to improve efficiency and consistency Contributing … to the enhancement of our incident response capabilities This is a great opportunity to work in a collaborative environment where your ideas and technical skills will directly impact the security of our systems and services Key Responsibilities Support the development and implementation of secure coding practices. Assist in application security testing and vulnerability assessments. Collaborate with developers … to embed security into the SDLC. Help design and maintain automated security testing workflows. Contribute to vulnerability reporting and security recommendations. Apply security best practices to IT and security projects. Monitor applications for compliance with security standards. Promote application security awareness and best practices. Aid in maintaining incident response plans for security More ❯

Role Overview: Additional Information: Please note, this role requires working full-time onsite, five days per week. NON Negotiable We are seeking an experienced IT Security Engineer to become a vital part of a growing IT Department. This critical role will focus on protecting our information assets through robust cybersecurity measures, ensuring adherence to best practices, international standards, and … local regulations. Ideally suited to candidates who possess expert knowledge of security frameworks including NIST 800, ISO 27001, and cybersecurity guidelines from PRA, FCA, and ICO. Candidates with at least 3 years' relevant experience in finance or banking, particularly as an information security officer or involvement in regulatory technical projects, are strongly preferred. Key Responsibilities: Develop and maintain … cybersecurity policies and procedures, ensuring compliance with industry standards and local regulations. Real-time monitoring of cybersecurity incidents, including incident analysis, investigation, and mitigation. Oversee and maintain security equipment including firewalls, intrusion prevention systems (IPS), web application firewalls (WAF), and antivirus systems. Perform periodic security drills and regular penetration testing to ensure the integrity of security More ❯

Role Overview: Additional Information: Please note, this role requires working full-time onsite, five days per week. NON Negotiable We are seeking an experienced IT Security Engineer to become a vital part of a growing IT Department. This critical role will focus on protecting our information assets through robust cybersecurity measures, ensuring adherence to best practices, international standards, and … local regulations. Ideally suited to candidates who possess expert knowledge of security frameworks including NIST 800, ISO 27001, and cybersecurity guidelines from PRA, FCA, and ICO. Candidates with at least 3 years' relevant experience in finance or banking, particularly as an information security officer or involvement in regulatory technical projects, are strongly preferred. Key Responsibilities: Develop and maintain … cybersecurity policies and procedures, ensuring compliance with industry standards and local regulations. Real-time monitoring of cybersecurity incidents, including incident analysis, investigation, and mitigation. Oversee and maintain security equipment including firewalls, intrusion prevention systems (IPS), web application firewalls (WAF), and antivirus systems. Perform periodic security drills and regular penetration testing to ensure the integrity of security More ❯

Sr. Security Consultant, AWS Industries, AWSI-SDT-APJ The Amazon Web Services Industry (AWSI) Professional Services APJ (Korea) team is a consulting organization that works with our global enterprise customers in various industries to achieve their business outcomes securely and faster in the cloud. Through project-based support, our security consultants work with our customers on innovative solutions … that promote cloud technology for the purpose of solving customer business problems faster and for long-term business expansion. The AWSI Professional Services Korea team is seeking a Senior Security, Risk, Compliance Consultant who can lead a variety of customer engagements, including building security strategies and roadmaps, architecture design and implementation support, technical assessments, incident response, and security … will work with AWS sales, engineering, training & certifications, and support teams as well as partners to provide technical assistance to customers to ensure they are successful in achieving their security business outcomes on AWS. This includes leading pre-sales on-site visits, understanding customer security and compliance requirements, and proposing and delivering security solutions in customer engagements. More ❯

Senior Information Security Analyst Runa is pioneering a first-of-its-kind payment rail capable of issuing, sending and accepting digital value at scale. Banking and card payment infrastructure still struggles to serve low-volume, high-velocity payments both locally and globally. Businesses send over $20 trillion in refunds, rewards, or remittances to consumers, employees, or freelancers, every year … companies rely on Runa to power instant, flexible global payouts to tens of millions of consumers including Sodexo, TopCashback, Perkbox, Sweatcoin, Coinbase and Globetopper. The Role The Senior Information Security Analyst ensures security controls, policies, and processes are embedded across the organisation. You will enhance cybersecurity by implementing strategies, analysing breaches, and ensuring compliance. This role is key … in guiding engineering teams on application security and integrating security best practices across our technology stack. What Excites You Develop world-class security practices and controls within a high-growth financial technology business shaping the future of payments. Conduct vulnerability assessments, penetration testing, and risk analysis to identify and mitigate security weaknesses. Embed security More ❯

The opportunity We're looking for an Information Security Manager to take ownership of Attest's security posture as we scale. Our consumer research platform helps brands make better decisions; keeping our data, people, and customers secure is critical to our success. If you're excited about shaping security in a fast-growing SaaS company - without the … to collaborate in person while ensuring enough time remotely for deep, focused work. Learn more about our hybrid working philosophy here . What You'll Do As our Information Security Manager, you will define and implement security strategies, ensuring we maintain a strong security foundation without slowing down innovation. You'll work cross-functionally with Engineering, IT … and Legal to embed security across the business, enhance compliance, and proactively manage risks. Key Responsibilities Develop and implement security strategy : aligning security plans with business goals. Own our security program : building and maintaining an information security management system. Promote security culture : working closely with IT to educate and enable teams across Attest. Support More ❯

Title: Lead Application Security Engineer Location: Fully Remote (UK-based) Salary: £110,000 – £130,000 base + Bonus Sector: FinTech/Digital Consumer Finance We’re recruiting on behalf of a UK-based FinTech that’s simplifying how consumers engage with credit – offering digital credit cards and financial services built on cloud-native architecture and driven by data. … what’s already built. You’ll have impact and visibility : Reporting to the CIO , with close collaboration with the Head of Information Security (compliance), you’ll shape the AppSec strategy while also getting into the code. You’ll build your own team : This role includes team growth – you’ll start as a leader and grow your own capability beneath … Engineering Second stage with CIO Final conversation and potentially a take-home exercise If you're ready to be the attacker before the attacker is, and want to lead AppSec in an ambitious and growing FinTech, we’d love to hear from you. More ❯

Job Title: Application Security Engineer Location: London, UK Salary: £60,000 per annum Are you an experienced Application Security Engineer looking for your next challenge? Join a cutting-edge fintech firm in the heart of London and play a key role in safeguarding critical financial applications. About the Role: As an Application Security Engineer … you will work closely with development teams to ensure the security and integrity of our fintech applications. You will be responsible for identifying vulnerabilities, conducting security assessments, and implementing robust security measures to protect our systems and client data. Key Responsibilities: Perform security assessments and vulnerability scanning for web applications, APIs, and infrastructure. Collaborate with development … teams to implement secure coding practices and address vulnerabilities. Review and advise on secure architecture and design for new and existing applications. Stay up to date with the latest security threats and technologies to proactively improve security measures. Conduct penetration testing and code reviews to identify and mitigate risks. Contribute to the development of security policies, procedures More ❯

About the Role: Altura Partners Cyber practice are partnered with a Cyber SaaS vendor looking for a Senior Cloud Security Engineer (internal facing), responsible for safeguarding their cloud and application environments. You'll be spearheading the design and deployment of security controls in thier AWS environment, adopting and extending existing controls in Azure AD/MDM, finding … and addressing posture gaps, and expanding our ability to protect data that really matters. What You'll Do: Design and implement security controls and secure-by-default architecture in AWS and Azure, including but not limited to IAM. Implement secure guardrails for cloud deployments in Terraform Investigate security incidents in conjunction with team, perform root cause analysis, and … recommend corrective actions Participate in on-call and security support responsibilities Collaborate with Engineering, Platform and Development teams to address security issues and implement best practices Develop and maintain security documentation; ISO, NIST and CIS. Stay updated on the latest security trends, vulnerabilities, and technologies to ensure robust protection against evolving threats What You'll Bring More ❯

About the Role: Altura Partners Cyber practice are partnered with a Cyber SaaS vendor looking for a Senior Cloud Security Engineer (internal facing), responsible for safeguarding their cloud and application environments. You'll be spearheading the design and deployment of security controls in thier AWS environment, adopting and extending existing controls in Azure AD/MDM, finding … and addressing posture gaps, and expanding our ability to protect data that really matters. What You'll Do: Design and implement security controls and secure-by-default architecture in AWS and Azure, including but not limited to IAM. Implement secure guardrails for cloud deployments in Terraform Investigate security incidents in conjunction with team, perform root cause analysis, and … recommend corrective actions Participate in on-call and security support responsibilities Collaborate with Engineering, Platform and Development teams to address security issues and implement best practices Develop and maintain security documentation; ISO, NIST and CIS. Stay updated on the latest security trends, vulnerabilities, and technologies to ensure robust protection against evolving threats What You'll Bring More ❯

you attend the office a minimum of 1 day per week. About the Role We are seeking a highly motivated and experienced Vulnerability Management Engineer to join our Cyber Security team. As a Vulnerability Management Engineer, your primary responsibility will be to manage existing vulnerability management-specific tooling, and have an active role in improving existing processes. You will … approach to vulnerability management. Develop integrations for internal and external tools to capture data relevant to the vulnerability remediation process (e.g. by interacting with APIs) Ensure compliance with relevant security standards, frameworks, and regulations Stay up to date with the latest trends and developments in vulnerability management, security standards, and regulations Strong engineering and automation background with a … functional teams and stakeholders Good to have Practical experience in one or more of the Vulnerability Management fields would be desirable but not essential: Endpoint Vulnerability Scanning, Vulnerability Intelligence, AppSec Vulnerability Management, Vulnerability Management of cloud native workloads, External Attack Surface Management Familiar with with TypeScript/Vue.js Open source scanning tool such as Trivy or similar SQL database design More ❯

Do you have a passion for high scale services and working with some of Oracle's most critical customers? We are seeking an experienced, passionate, and talented cyber security engineer with a deep interest in vulnerability management and cloud security. This position is designed for technical security engineers adept at navigating the complexities of cloud security and … leading efforts to increase security posture. In this key role, you will critically assess security architecture decisions, and lead the charge in secure planning, development, and coordination. Your expertise will guide the team through intricate cloud security challenges, ensuring our defences are both robust and adaptable. Who We Are We are a world-class team of high … calibre application security researchers and engineers who thrive on new challenges. We are an inclusive and diverse team with a full spectrum of experience distributed globally. We have the resources of a large enterprise and the energy of a start-up, working on a critical Greenfield software assurance project collaboratively with our cloud and mobile engineering teams. The More ❯

of local communities - representing over a third of our economy - yet have been largely neglected both by traditional high street banks and modern fintech providers. Department Description The Allica Security team play a key role in protecting the bank and are responsible for all aspects of security surrounding Applications, Infrastructure and Security Operational Policy. Our mission is … to provide the best-in-class security to protect the bank. We live and breathe the Allica values and deliver services intelligently using automation, intelligence, and innovation. Role Description An experienced Head of IT Security is required to join a fast-paced IT division, to facilitate and enhance all aspects of security within the bank. The role … will have responsibility for identifying potential threats, proposing and implementing mitigative activities and managing these items through to delivery. Using a rich source of Application and Network data, you will have experience of designing and implementing effective security monitoring and alerting strategies whilst remaining a very much hands-on approach to driving forward continuous improvement and using your More ❯

Sr. Security Engineer, AppSec - Amazon Stores Security Job ID: Amazon Development Centre (London) Limited At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon's products and services. We offer talented security professionals the … pipelines, from leading-edge digital healthcare to no-checkout retail, we push the boundaries of technology in every direction using the globe's largest AWS deployment. As a Senior Security Engineer, you will collaborate with software development teams to ensure we keep our customers safe while developing these novel services. In a given day, you might be inspecting an … life harmony. We have dedicated resources that consistently innovate in reducing on-call time and ensuring the team spend their time on the highest-value tasks. Join the stores AppSec organization to work hard, have fun, and make history! Key job responsibilities Creating, updating, and maintaining threat models for a wide variety of software projects. Manual and Automated Secure Code More ❯

practices, and driving technical initiatives that improve the security of software in production. This is a great opportunity for someone looking to take the next step in their AppSec career while having a meaningful impact across multiple product teams. Application Security Engineer - Responsibilities: Identify and remediate application-level security issues through code analysis, tooling, and … application security or secure software development Strong understanding of common vulnerabilities and how to prevent them (OWASP Top 10) Experience with CI/CD pipelines and integrating AppSec tooling Familiarity with modern programming languages (JavaScript, Java, Python) Excellent communication skills and a collaborative mindset when working with developers *Unfortunately, we are not able to provide sponsorship for this … role.* If you're ready to grow your career in a hands-on AppSec role and help shape secure software at scale, apply now or reach out directly to j.ryan@lawrenceharvey.com . More ❯

flexibility in base location, as well as embracing remote working. What will you be doing? Aspects of the role include: HACKING! Learning and developing penetration testing skills in: Infrastructure, Application (web, mobile, desktop), Cloud and AI. Working through a clear and defined certification pathway. Delivering penetration tests to some of our most prestigious clients through well established frameworks. Collaborating … need to do it? Some demonstrable practical experience in penetration testing and vulnerability assessments Understanding of common vulnerabilities and how to exploit or mitigate them. Basic Knowledge of network security, application security and cloud security principles. A passion for all things hacking and the drive to learn more. Excellent communication and report writing skills. Amazing Extras … individuals with diverse backgrounds who all share the “hacker mindset”. If you have the experience, then we want you to apply. Didn’t do a degree in information security? A-Levels weren’t as good as you hoped. Haven’t attended every SANS course going, we don’t mind! Above all, KPMG is looking for someone who is More ❯

and microservices to support frontend and data services. Perform data wrangling, cleaning, and transformation for analytics and reporting. Write clean, modular, and high-performance code with strong documentation. Ensure application security, performance, and scalability across services. Stay up-to-date with the latest technologies in data engineering and Python development. Requirements Technical Skills 2–3 years of hands More ❯

and microservices to support frontend and data services. Perform data wrangling, cleaning, and transformation for analytics and reporting. Write clean, modular, and high-performance code with strong documentation. Ensure application security, performance, and scalability across services. Stay up-to-date with the latest technologies in data engineering and Python development. Requirements Technical Skills 2–3 years of hands More ❯

Security Architect – AWS focused – London hybrid - £80,000 - £100,000 + Benefits + Bonus After continued success throughout 2024, and so far in 2025, our client is looking to further add to their Security Architecture team with an experienced Security Architect. Our client is looking for an Architect strong in Application Security, DevSecOps, and IAM. … designing and implementing secure architectures within AWS cloud environments, ensuring best practices are followed to protect applications, data, and infrastructure. The ideal candidate will collaborate with development, DevOps, and security teams to embed security into the software development lifecycle while leveraging cloud-native security tools. Main responsibilities: Design and implement secure architectures for applications and cloud-native … services within AWS. Develop and enforce DevSecOps principles by integrating security into CI/CD pipelines. Lead efforts in application security, including secure coding practices, threat modelling, and vulnerability assessments. Architect and manage IAM policies, roles, and permissions across AWS resources. Guide development teams on security best practices related to AWS security services such as More ❯

Security Architect – AWS focused – London hybrid - £80,000 - £100,000 + Benefits + Bonus After continued success throughout 2024, and so far in 2025, our client is looking to further add to their Security Architecture team with an experienced Security Architect. Our client is looking for an Architect strong in Application Security, DevSecOps, and IAM. … designing and implementing secure architectures within AWS cloud environments, ensuring best practices are followed to protect applications, data, and infrastructure. The ideal candidate will collaborate with development, DevOps, and security teams to embed security into the software development lifecycle while leveraging cloud-native security tools. Main responsibilities: Design and implement secure architectures for applications and cloud-native … services within AWS. Develop and enforce DevSecOps principles by integrating security into CI/CD pipelines. Lead efforts in application security, including secure coding practices, threat modelling, and vulnerability assessments. Architect and manage IAM policies, roles, and permissions across AWS resources. Guide development teams on security best practices related to AWS security services such as More ❯

in energy. Help us make a real impact on shaping a better, more sustainable future. We are very excited to be building a small and efficient Cyber and Information Security team at Octopus Energy Group. We're hiring for both Mid-Level and Senior Security Engineers . We are looking for ambitious, knowledgeable, and experienced Security Engineers … grow with the rest of the company, and ensure we continue to do so in a secure and safe way. You will be a key partner in defining what Security is at Octopus Energy Group. We will be shaping this team to provide a world class support service to our employees, building our way out of problems with engineering … firepower and undertaking transformational organisational change. You'll play a crucial role in helping to secure our software development processes, securing our platform services, integrating security practices, and shaping a culture of security. This is a creative, and collaborative position that is a full-time member of a Cloud-First organisation. If you're passionate about Cloud technologies and More ❯

Security Incident Response Engineer, AWS CorpSec Response Job ID: Amazon Development Centre (London) Limited - C26 The Amazon Web Services team is looking for a passionate Security Incident Response Engineer who can lead the response to security issues across the largest cloud provider in the world. You must thrive in dynamic/ambiguous situations, and think like both … an attacker and defender, while working through the entire incident response lifecycle. You'll be working in a global team environment where clear and accurate communication and collaboration on security issues is critical. In this role you'll be conducting security monitoring and response activities for the Amazon internal network. We value broad and deep technical knowledge, specifically … in the fields of operating system security, network security, cryptography, software security, malware analysis, forensics, security operations, incident response, and emergent security intelligence. We don't expect you to be an expert in all of the domains mentioned above, but we do expect you to be excited to learn about them! You'll apply your More ❯

sports federations, media outlets, betting operators, and consumer platforms across 120 countries rely on our know-how and technology to boost their business. Job Description ABOUT US: The Security Engineering squad is a group of security engineers with the clear mission to enable IT Security and Information Security processes by internally providing specialized services. The squad … acts as an internal service provider supporting both security focused teams and other business units. As Subject Matter Experts (SME), Security Engineers are required to be technically equipped to take over responsibility of services operated and offered internally. The services in scope currently cover typical SOC solutions (SIEM, NIDS, SOAR, WAF, etc.). THE CHALLENGE: Take responsibility over … updates. Adapt the service based on self-driven recommendations and user requirements. Ensure service availability by continuous monitoring of resources, service usage and license utilization. Identifying opportunities to improve security services and monitoring. Act as a primary point of contact towards internal users in addition to conducting ongoing and on demand training internally. Ensure and maintain compliance of the More ❯