26 to 50 of 61 Application Security Jobs in London

junior team members through design discussions and code reviews, fostering an open and constructive workplace culture. Enhance test automation , either by improving the platform or adding new tests. Ensure application security aligns with CFC Application Security Standards . Validate APIs against CFC API Standards . More ❯

DevSecOps Engineer Permanent | UK (Hybrid - a few times per month) | Up to £84k We're partnering with a respected, forward-thinking professional services firm that's serious about embedding security into every corner of its digital transformation journey. This is a pivotal hire within their growing tech function - they're after a DevSecOps Engineer (or Lead Software Security … that genuinely backs its people. They've built a collaborative, agile culture where innovation is encouraged and development is a priority. If you're someone who thrives on moving security left, guiding engineering teams with clarity, and making a real impact - this is your kind of role. What you'll be doing: You'll lead the charge in shifting … the culture towards DevSecOps across multiple product teams, embedding security from the ground up. That means defining and rolling out a product security strategy that aligns with business goals, working closely with developers to automate and streamline security testing, and supporting pen test activity with smart, secure remediation. You'll be the go-to expert on application More ❯

DevSecOps Engineer Permanent | UK (Hybrid - a few times per month) | Up to £84k We're partnering with a respected, forward-thinking professional services firm that's serious about embedding security into every corner of its digital transformation journey. This is a pivotal hire within their growing tech function - they're after a DevSecOps Engineer (or Lead Software Security … that genuinely backs its people. They've built a collaborative, agile culture where innovation is encouraged and development is a priority. If you're someone who thrives on moving security left, guiding engineering teams with clarity, and making a real impact - this is your kind of role. What you'll be doing: You'll lead the charge in shifting … the culture towards DevSecOps across multiple product teams, embedding security from the ground up. That means defining and rolling out a product security strategy that aligns with business goals, working closely with developers to automate and streamline security testing, and supporting pen test activity with smart, secure remediation. You'll be the go-to expert on application More ❯

ability to keep our clients data secure is a bedrock for our reputation as a trustworthy professional services partner to many of the worlds large and prestigious organisations. Information security is not an afterthought; it is core to all that we do, to protect not only our data but that of our clients, and has the unwavering support of … the Board. Led by our new CISO, the in-house Information Security team is a core part of our technology services structure with mature or evolving capability across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with … you will do The Identity and Access Senior Architect will be part of the Digital Trust team, and will be responsible for maintaining the identity and access management (IAM) security of the firms assets. This role is critical in translating the organisations IAM vision into a workable, mature and optimized function and service. This role requires extensive experience across More ❯

you to achieve success faster and more effectively. Role Overview As a Senior Software Engineer, you will play a pivotal role in architecting and developing our next-generation web application and API. This role requires technical leadership, hands-on development, and mentoring of junior developers. You will drive the adoption of best practices, ensuring scalability, security, and performance. … record of leading development teams and managing large-scale projects. Database Expertise: In-depth experience with PostgreSQL/SQL, including design of complex schemas, writing queries and performance optimisation. Security & Performance: Deep understanding of application security best practices, performance tuning, and scalable architecture. Problem-Solving: Ability to troubleshoot complex technical issues, with a proactive and solution-oriented More ❯

you to achieve success faster and more effectively. Role Overview As a Senior Software Engineer, you will play a pivotal role in architecting and developing our next-generation web application and API. This role requires technical leadership, hands-on development, and mentoring of junior developers. You will drive the adoption of best practices, ensuring scalability, security, and performance. … record of leading development teams and managing large-scale projects. Database Expertise: In-depth experience with PostgreSQL/SQL, including design of complex schemas, writing queries and performance optimisation. Security & Performance: Deep understanding of application security best practices, performance tuning, and scalable architecture. Problem-Solving: Ability to troubleshoot complex technical issues, with a proactive and solution-oriented More ❯

Internal Pentester to join an international client secure their networks. This critical role, based in London (2-3 days per week), requires deep expertise in conducting manual and automated security assessments across networks, applications, cloud platforms, and infrastructure. You will identify and exploit vulnerabilities, simulate real-world attacks, and deliver actionable remediation guidance to strengthen defenses. Key Responsibilities: Plan … and execute penetration tests - perform manual and automated testing across applications, APIs, internal/external networks, cloud environments, and Active Directory. Identify, exploit, and validate vulnerabilities - uncover security flaws such as insecure authentication, authorization bypasses, misconfigurations, and privilege escalation paths. Simulate real-world attacks - use adversary techniques and offensive tools to test the resilience of networks, systems, and security controls. Develop detailed reports - produce both technical and executive-level documentation outlining findings, risk impact, and remediation steps What You Will Ideally Bring: Application security knowledge - strong grasp of OWASP Top 10 and API security issues.Contract Details: Hands-on pentesting experience - 3-7+ years in penetration testing, red teaming, or offensive security across networks More ❯

Internal Pentester to join an international client secure their networks. This critical role, based in London (2-3 days per week), requires deep expertise in conducting manual and automated security assessments across networks, applications, cloud platforms, and infrastructure. You will identify and exploit vulnerabilities, simulate real-world attacks, and deliver actionable remediation guidance to strengthen defenses. Key Responsibilities: Plan … and execute penetration tests - perform manual and automated testing across applications, APIs, internal/external networks, cloud environments, and Active Directory. Identify, exploit, and validate vulnerabilities - uncover security flaws such as insecure authentication, authorization bypasses, misconfigurations, and privilege escalation paths. Simulate real-world attacks - use adversary techniques and offensive tools to test the resilience of networks, systems, and security controls. Develop detailed reports - produce both technical and executive-level documentation outlining findings, risk impact, and remediation steps What You Will Ideally Bring: Application security knowledge - strong grasp of OWASP Top 10 and API security issues.Contract Details: Hands-on pentesting experience - 3-7+ years in penetration testing, red teaming, or offensive security across networks More ❯

Information Security Analyst - £80K Our client is a leading Software-as-a-Service (SaaS) development company – They build bespoke Big Data solutions for financial services, pharma and ecommerce client around the world. Offer great remote/hybrid flexible working, they’re looking for an experienced Cyber Security Analyst to join them. You’ll work directly with the CSO … and SOC team to create and deliver the security strategy, information security framework and risk mitigation activity for the company. You’ll have the chance to be involved in everything from security assessments and threat modelling to triage of security events, ownership of policies ad procedures and even working with development and engineering teams to drive … application security. Requirements: Proven experience as an Information/Cyber Security Analyst Certified Information Security Manager (CISM) or Certified Information Systems Auditor (CISA) or equivalent Extensive cyber and information security (InfoSec) experience Experience of working in demanding, environments Good undersyanding of Windows, Cloud and IT infrastructure Excellent communication skills More ❯

Information Security Analyst - £80K Our client is a leading Software-as-a-Service (SaaS) development company – They build bespoke Big Data solutions for financial services, pharma and ecommerce client around the world. Offer great remote/hybrid flexible working, they’re looking for an experienced Cyber Security Analyst to join them. You’ll work directly with the CSO … and SOC team to create and deliver the security strategy, information security framework and risk mitigation activity for the company. You’ll have the chance to be involved in everything from security assessments and threat modelling to triage of security events, ownership of policies ad procedures and even working with development and engineering teams to drive … application security. Requirements: Proven experience as an Information/Cyber Security Analyst Certified Information Security Manager (CISM) or Certified Information Systems Auditor (CISA) or equivalent Extensive cyber and information security (InfoSec) experience Experience of working in demanding, environments Good undersyanding of Windows, Cloud and IT infrastructure Excellent communication skills More ❯

This global insurance firm seeks a Cyber Security Consultant to work on large IT and business change projects across the company. You will work with senior stakeholders and technical teams, advising on security requirements, assessing security controls, managing cyber … assessments and suggesting remediations. The successful candidate will have a technical security background with good experience of conducting security assessments, the ability to review architectural diagrams, good AppSec or DevSecOps experience, and knowledge of cloud security (any platform). The role would be suit someone who is working as a senior security consultant or security More ❯

This global insurance firm seeks a Cyber Security Consultant to work on large IT and business change projects across the company. You will work with senior stakeholders and technical teams, advising on security requirements, assessing security controls, managing cyber … assessments and suggesting remediations. The successful candidate will have a technical security background with good experience of conducting security assessments, the ability to review architectural diagrams, good AppSec or DevSecOps experience, and knowledge of cloud security (any platform). The role would be suit someone who is working as a senior security consultant or security More ❯

IT Security Engineer- £70K Our client is a leading London professional services and law firm, they work with client in technology, financial services, pharma and ecommerce around the world. Offer great remote/hybrid flexible working, they’re looking for an experienced InfoSec/Cyber Security Engineer to join them. You’ll work directly with the CSO and … SOC team to create and deliver the security strategy, information security framework and risk mitigation activity for the company. You’ll have the chance to be involved in everything from security assessments and threat modelling to triage of security events, ownership of policies and procedures and even working with development and engineering teams to drive application security. Requirements: Proven experience as an Information/Cyber Security Engineer Extensive and broad cyber and information security (InfoSec) experience Knowledge of concepts such as ethical hacking, network security, penetration testing and cryptography etc Good understanding of Windows, Cloud and IT infrastructure Excellent communication skills More ❯

IT Security Engineer- £70K Our client is a leading London professional services and law firm, they work with client in technology, financial services, pharma and ecommerce around the world. Offer great remote/hybrid flexible working, they’re looking for an experienced InfoSec/Cyber Security Engineer to join them. You’ll work directly with the CSO and … SOC team to create and deliver the security strategy, information security framework and risk mitigation activity for the company. You’ll have the chance to be involved in everything from security assessments and threat modelling to triage of security events, ownership of policies and procedures and even working with development and engineering teams to drive application security. Requirements: Proven experience as an Information/Cyber Security Engineer Extensive and broad cyber and information security (InfoSec) experience Knowledge of concepts such as ethical hacking, network security, penetration testing and cryptography etc Good understanding of Windows, Cloud and IT infrastructure Excellent communication skills More ❯

A leading fintech company is seeking a Lead AppSec Engineer to join their established team. Youll be instrumental in embedding security into every stage of the software development lifecycleguiding engineers, shaping best practices, and driving secure, scalable solutions across our platform. Key Responsibilities: Security Advisory : Serve as the go-to expert for application security across engineering More ❯

A leading fintech company is seeking a Lead AppSec Engineer to join their established team. Youll be instrumental in embedding security into every stage of the software development lifecycleguiding engineers, shaping best practices, and driving secure, scalable solutions across our platform. Key Responsibilities: Security Advisory : Serve as the go-to expert for application security across engineering More ❯

Hibernate, and REST APIs. Solid understanding of microservices architecture. Knowledge of frontend frameworks (React/Angular). Familiarity with CI/CD pipelines, Docker, and Kubernetes. Strong understanding of application security and performance optimisation. Experience with JUnit, Mockito , or other testing frameworks. Good communication and collaboration skills. If you are interested or would like to know more, please More ❯

and Mainframe data systems to support secure data exchange, authentication services, and integration between legacy and modern platforms. The ideal candidate will combine data engineering fundamentals with middleware/security gateway expertise , ensuring data integrity, authentication, and performance across complex enterprise environments. Key Responsibilities: Design, implement, and maintain IBM DataPower Gateway solutions for secure API, web service, and data … systems (z/OS, DB2, MQ) and modern data platforms. Develop, test, and optimise data flows, ensuring scalability, performance, and compliance . Troubleshoot DataPower and mainframe data connectivity or security issues. Work closely with application, security, and infrastructure teams to support enterprise data exchange initiatives. Skills & Experience: Strong hands-on experience with IBM DataPower Gateway (XI52/ More ❯

and Mainframe data systems to support secure data exchange, authentication services, and integration between legacy and modern platforms. The ideal candidate will combine data engineering fundamentals with middleware/security gateway expertise , ensuring data integrity, authentication, and performance across complex enterprise environments. Key Responsibilities: Design, implement, and maintain IBM DataPower Gateway solutions for secure API, web service, and data … systems (z/OS, DB2, MQ) and modern data platforms. Develop, test, and optimise data flows, ensuring scalability, performance, and compliance . Troubleshoot DataPower and mainframe data connectivity or security issues. Work closely with application, security, and infrastructure teams to support enterprise data exchange initiatives. Skills & Experience: Strong hands-on experience with IBM DataPower Gateway (XI52/ More ❯

opportunity to be a foundational hire, shaping the future of a product designed to protect hundreds of millions of users. We are building two core products: the Telco-Verified Security Shield (our primary, pre-call fraud detection) and the Personal Welcome Manager (our premium, AI-powered call screening experience). As the Senior Android Engineer for the Welcome Manager … an expert in designing for our < 1000ms V2V (voice-to-voice) latency budget, ensuring the entire UX flow feels fast and responsive. ? API & Backend Integration: Partner with our backend (Application & AI Orchestration) engineers to define and integrate the client-side APIs and data models required to power the Welcome Manager's features, from live transcription to post-call entity … extracted summaries. ? MWC Demo Ownership: Be directly responsible for the polish, stability, and performance of the Welcome Manager application for its critical debut at MWC 2026. ? Cross-Functional Partnership: Collaborate closely with the other Senior Android Engineer (who owns the native CallScreeningService and Security Shield overlay) to ensure a seamless and unified user experience between our two core More ❯

Primary Details Time Type: Full time Worker Type: Employee Cyber Security Consultant Permanent London/Hybrid At QBE, our purpose is to enable a more resilient future. We are an international insurer and reinsurer with a local presence in 27 countries. The opportunity We're hiring a Cyber Security Consultant on a permanent, full-time basis based in … London, where you’ll help shape how cyber and information security risks are understood and managed across our business. This is your chance to be part of a global team that’s always one step ahead - keeping QBE safe, secure, and resilient in a fast-moving digital world. Your new role: This is a hands-on, collaborative role where … under pressure while maintaining a healthy work-life balance. Focus on outcomes and follow through on problem-solving from start to finish. Bonus points if you bring: Experience with AppSec and DevSecOps. Hands-on knowledge of Azure, AWS, and/or Google Cloud. Familiarity with standards like ISO2700X, ISO31000, NIST800, PCI-DSS. Certifications such as CISSP, CCSP, CRISC, CISM, or More ❯

projects. What you'll do: Embed security across the SDLC, promoting secure coding (OWASP) Automate security in CI/CD workflows (SAST, DAST, IAST, SCA, IaC) Perform appsec testing, code reviews, and vulnerability remediation Drive secure DevOps culture through training, playbooks, and developer champions Strengthen cloud & container security (AWS, Azure, GCP, Kubernetes, Docker) What you'll bring … years' experience in AppSec/DevSecOps Hands-on with tools like Checkmarx, Veracode, SonarQube, OWASP ZAP Strong coding skills (Java, Python, JavaScript, Go, .NET) Familiar with CI/CD (Jenkins, GitHub Actions, Azure DevOps) and IaC (Terraform) Knowledge of OWASP Top 10, API security, and compliance (ISO 27001, SOC 2) Eligibility for SC clearance is mandatory (UK nationals only More ❯

with Flutter Type: Contract (6 Months) Location: UK (Fully Remote) MUST HAVES: Proficient in Flutter/React Native/MAUI , Mobile App Payment Services , strong API consumption, and App security best practices. Work in an agile team on high-impact national services. Immediate start! This is an urgent vacancy with a deadline where the hiring manager is shortlisting for More ❯

with Flutter Type: Contract (6 Months) Location: UK (Fully Remote) MUST HAVES: Proficient in Flutter/React Native/MAUI , Mobile App Payment Services , strong API consumption, and App security best practices. Work in an agile team on high-impact national services. Immediate start! This is an urgent vacancy with a deadline where the hiring manager is shortlisting for More ❯

change and clarity Qualifications Recommended: The ideal candidate will have a two-year degree or the equivalent in work experience and preferably 3 years' Customer Support and/or security experience. The successful candidate will have the ability to communicate effectively with corporate customers, possess an understanding of the Onboarding process and demonstrate a vision for the future of … handle difficult and sensitive situations involving the most critical and politically charged customer situations. Minimum Experience: A minimum of 1 year of hands-on experience deploying, configuring and administering security solutions, ideally MDE/MDO/MCAS/MDI/M365 Defender in large organizations of more than 1,000 managed devices/users, covering the following areas MDE … the Microsoft Defender MDE service by deploying an ATP agent profile using an onboard endpoint. Set Microsoft Defender MDE configuration profiles (including endpoint protection and device restriction). Set Security Center settings to personalize how Microsoft Defender MDE addresses the customer needs. Simulations and tutorials (like practice scenarios, fake malware, and automated investigations). Reporting and threat analytics. MDO More ❯