101 to 125 of 156 Application Security Jobs in the UK

you have Test Lead experience and you’re seeking a new role in London, we want to hear from you. Cognizant is recruiting a Security Test Lead for a Government and Public Sector client, and the role comes with an attractive salary and benefits package. As a Security … you an idea of how this flexible role would look and feel, here are some of the things you could expect to do: Static application security testing using tools like Checkmarx, Veracode Dynamic application security testing using tools such as AppScan, WebInspect, etc False positive analysis … and working with Developers fixing security vulnerabilities End-to-end security testing. To apply for this Security Test Lead role, your soft skills, expertise and experience should include: Extensive experience in security testing with expertise in SAST using tools like Fortify, App Scan Source, Checkmarx, VeraCode more »

Our client is a leading provider of information security services. Specializing in application security, cloud security, IoT security and payment security services, Certus Cybersecurity currently serves Fortune 100 enterprises, leading law global firms, and innovative, high-growth businesses worldwide. About the Role: The Business more »

A well-known software development company is looking to grow their London based cyber security team with talented Application Security Engineers. This will be 3 days per week in the office (central London). Hiring at multiple levels, you can expect a salary anywhere from … than 50% last year and use the most cutting edge technology available. If you're someone who is deeply technical and passionate about implementing security into the SDLC then I would love to speak with you. If you have expertise within software development/engineering and champion security … within your current role, you're very likely to be successful. You will be training developers on writing secure code, perform threat modelling and security testing of applications, run SAST, DAST, SCA and secret scanning tools, manage the bug bounty program and lead incident response for software bugs. Please more »

A well-known software development company is looking to grow their London based cyber security team with talented Application Security Engineers. This will be 3 days per week in the office (central London). Hiring at multiple levels, you can expect a salary anywhere from … than 50% last year and use the most cutting edge technology available. If you're someone who is deeply technical and passionate about implementing security into the SDLC then I would love to speak with you. If you have expertise within software development/engineering and champion security … within your current role, you're very likely to be successful. You will be training developers on writing secure code, perform threat modelling and security testing of applications, run SAST, DAST, SCA and secret scanning tools, manage the bug bounty program and lead incident response for software bugs. Please more »

Security Engineer - Cloud/Appsec £600-£650 p.d Outside IR35 Occasional Travel to Leeds Office 3 Months + Likely extension Start Date - ASAP Key Responsibilities: Secure Configurations & Compliance Implementation: Planning and implementation of the Center for Internet Security Microsoft Dynamics 365 Power Platform benchmark. Planning and implementation of … the Center for Internet Security Microsoft 365 Foundations Benchmark. Collaborating with cloud and DevOps engineers to refactor Terraform code for secure configurations and compliance with the Center for Internet Security Microsoft Azure Foundations Benchmark. Work with colleagues to raise any required exceptions with Information Security Governance Risk … and Compliance so that any associated operational risk is identified, assessed and managed. Work with Security Operations to onboard Azure Landing Zones into Qualys Total Cloud and address any findings relating to non-compliance. Auditing configurations in order to plan remediations and verify compliance requirements are met. SIEM Integration more »

THE COMPANY: Our client is a leading international banking group based in the City. They are looking for an Information Security Assistant Manager to join the Business. THE RESPONSIBILITIES: Support for the oversight of the state of information security and cybersecurity and provide periodic reports (at least annually … on the state of information security to/Top management Adopt, implement and update Cybersecurity policies, rules, processes and procedures in line with Head Office regulatory Framework In reporting to the Top Management, considers to the extent applicable the confidentiality of Non-public Information and the integrity and security of Information Systems, the cybersecurity policies and procedures, the material cyber risks, the overall effectiveness of information security and cybersecurity program and possible material cybersecurity events involving the branch Work strategically with Head Office to ensure that all aspects of information security and cybersecurity are properly monitored more »

expanding consultancy team. This is as an integral part of our team to primarily deliver high-quality penetration testing, red teaming, and other bespoke security consultancy work for our clients. Our team is dynamic, innovative, and dedicated to making a difference in our customers’ security efforts. Career development … making a real impact on customer security. Flexible working conditions with a primarily remote workforce and travel opportunities. Responsibilities: Deliver high-quality penetration testing, application security testing, and red-team engagements. Organise own and others' schedules. Assist in proposal writing and scoping. Manage customer relationships and debriefing sessions. … delivering technical engagements. Engage in training, research projects, and industry events/conferences. Skills/Must have: Proven experience as a penetration tester/security consultant. OSCP or CREST CRT certification - must be valid Excellent penetration and application security testing skills. Willingness to undergo UK government clearance more »

Information Security Officer (ISO) Location: Farnborough Salary: £45,000 DOE The Role The Information Security Officer (ISO) will be responsible for policies, standards and procedures that fall within the scope of the ISO27001 accreditation. The ISO will continually develop, implement, and oversee the organization's information security strategy, policies, and practices. The ISO also oversees security awareness training programs and manages security audits and compliance assessments. This role requires a deep understanding of information security principles, regulations, and best practices, as well as the ability to communicate and collaborate effectively with stakeholders across … the organization. Accountability The Information Security Officer (ISO) is accountable for maintaining the company ISMS and onward maintenance of ISO27001 certification. This includes keeping policies current and evidence up to date and involves marshalling other departments to ensure required procedures are followed and evidence provided, as well as organising more »

time allotted for interviews and any other needs. We also welcome any feedback on how we can improve the experience for future candidates. Lead Security Engineer As a Lead Security Engineer you will work closely with clients to help inform their security strategy and to ensure our … have written some blog posts about your discipline, or perhaps even delivered a talk or two. The following skills will be assessed during the application process Working within a technology consultancy Strong understanding of integrating security as part of a multidisciplinary approach to delivering digital services (products) and … platforms utilising a DevSecOps approach and enabling Continuous Security as part of wider CI/CD tools and practices Up-to-date understanding of, and ensuring compliance to, security standards and regulations including GDS Technology Code of Practice, NCSC Cyber Principles, ISO27001, SoC, NIST, PCI, and GDPR Up more »

time allotted for interviews and any other needs. We also welcome any feedback on how we can improve the experience for future candidates. Lead Security Engineer As a Lead Security Engineer you will work closely with clients to help inform their security strategy and to ensure our … have written some blog posts about your discipline, or perhaps even delivered a talk or two. The following skills will be assessed during the application process Working within a technology consultancy Strong understanding of integrating security as part of a multidisciplinary approach to delivering digital services (products) and … platforms utilising a DevSecOps approach and enabling Continuous Security as part of wider CI/CD tools and practices Up-to-date understanding of, and ensuring compliance to, security standards and regulations including GDS Technology Code of Practice, NCSC Cyber Principles, ISO27001, SoC, NIST, PCI, and GDPR Up more »

We are partnered with a reputable global consultancy that are recruiting SECURITY ARCHITECTS to work on a very exciting LONG-TERM CONTRACT within the financial service sector. Role: Security Architect (Data Solutions) Rate: Up to £500 per day (inside IR35) Location: Swindon/London – Hybrid (2 days onsite … Duration: 6 months (initially – view to extend) Role Description: As a Security Architect within the internal integrations team, you will play a crucial role in ensuring the security and integrity of systems related to service mesh, container platforms, and data solutions. Your responsibilities will involve designing, implementing, and … maintaining robust security measures to protect sensitive data, prevent unauthorized access, and mitigate risks. Key responsibilities: Collaborate with development and operations teams to design secure and scalable architectures for containerized applications, data mesh, and Kafka. Assess and implement security controls for container platforms (e.g., Kubernetes, Docker). Define more »

We are partnered with a reputable global consultancy that are recruiting SECURITY ARCHITECTS to work on a very exciting LONG-TERM CONTRACT within the financial service sector. Role: Security Architect (Data Solutions) Rate: Up to £500 per day (inside IR35) Location: Swindon/London – Hybrid (2 days onsite … Duration: 6 months (initially – view to extend) Role Description: As a Security Architect within the internal integrations team, you will play a crucial role in ensuring the security and integrity of systems related to service mesh, container platforms, and data solutions. Your responsibilities will involve designing, implementing, and … maintaining robust security measures to protect sensitive data, prevent unauthorized access, and mitigate risks. Key responsibilities: Collaborate with development and operations teams to design secure and scalable architectures for containerized applications, data mesh, and Kafka. Assess and implement security controls for container platforms (e.g., Kubernetes, Docker). Define more »

Lead Security Software Engineer We are seeking a software-focused Lead Security Engineer to join a 1Billion user social media giant, dealing with the complexity of mega scale systems and infrastructure. The Security group come from diverse technical backgrounds, Reliability, Software Engineering and Security Engineering, and … have a broad remit ensuring high availability and performance, and currently have a particular focus on security system efficiency, monitoring and sustainability, looking at threat intelligence, IAM, data and application security across the Kubernetes and Linux based environments. They are very open to background, but tend to … worked in securing large scale post-production container based environments, and who are comfortable with complex Linux challenges. We are looking for a Lead Security Engineer with: A background in Cybersecurity, anywhere ranging from system level to the application layer Strong software engineering experience, with proficiency in at more »

Lead Security Software Engineer We are seeking a software-focused Lead Security Engineer to join a 1Billion user social media giant, dealing with the complexity of mega scale systems and infrastructure. The Security group come from diverse technical backgrounds, Reliability, Software Engineering and Security Engineering, and … have a broad remit ensuring high availability and performance, and currently have a particular focus on security system efficiency, monitoring and sustainability, looking at threat intelligence, IAM, data and application security across the Kubernetes and Linux based environments. They are very open to background, but tend to … worked in securing large scale post-production container based environments, and who are comfortable with complex Linux challenges. We are looking for a Lead Security Engineer with: A background in Cybersecurity, anywhere ranging from system level to the application layer Strong software engineering experience, with proficiency in at more »

Senior IT Security Analyst Up to £60,000 Hybrid – 2 days per week at either the London, Weymouth, or Newcastle offices We are representing a leading B2C retailer who are in the process of modernising their technology estate, with significant investment in IT. As the Senior IT Security Analyst, you will report to the Head of Information Security, whilst leading a team of two IT Security Analysts. You will be the SME for technical security, have the responsibility for the managed SOC and associated vendor relationships, as well as the vulnerability, penetration, and application security testing. We are looking for: Proven experience with incident management and the ability to lead on this Experience leading and managing a team Prior experience managing a 3rd party It would be a bonus if you had: Previous experience/knowledge of the Retail or eCommerce space more »

excellent working knowledge of Windows server OS’s, Microsoft Exchange, virtualisation technologies, server applications, server hardware and cloud technologies. Provide technical leadership to infrastructure, application, and information security teams, ensuring best practices implementation and technological advancement alignment. You will oversee the design of IT Infrastructure including hardware, networking … storage, and virtualisation, ensuring infrastructure security, resilience and high performance and availability. You'll provide strategic oversight in the implementation of integrated applications and collaborate with application providers to align systems with business needs – introducing continuous improvements to enhance system robustness. You will build strong relationships with stakeholders … Licenses understanding and managing. Server Hardware configuration and builds both on premise and in the cloud. Mimecast design and implementation. FortiGate administration. Network and application security – best practice, RADIUS, ACL, IAM Wireless network design and implementation Miraki and Cisco switches administration. Manage solution design with 3rd party suppliers more »

platform monitoring services. Build and maintain automated deployment of the platform’s cloud infrastructure. Build and maintain secure continuous deployment pipelines and automat continuous security monitoring and alerting using cloud capabilities. Help with threat assessment and penetration testing as early as necessary/possible. Help identify problem points within … day operational problems with the production environment. Ensure, robust, stable, and secure back-end infrastructure to support product portfolio. Support the development team during application enhancements. Contribute to Business Continuity & Disaster Recovery design. Stay up to date with industry trends. Maintain JIRA data accuracy Ensure top-notch documentation of … Technical Infrastructure and Operations teams – includes being the point of contact for new environments & architectural components when needed Work with the AOK (User/Application support team), DevOps and Business Unit teams on any emergency issues Nice to Haves: Hands-on experience in administering cloud technologies on AWS, especially more »

within the Cybersecurity landscape. Experience using vulnerability scanning tools such as Nessus, Qualys, Rapid7, Wiz, OpenVAS, and penetration testing frameworks like Metasploit. Knowledge of security and risk frameworks, plus regulatory compliance frameworks e.g. NIST, Cobit, ISO 27001. Understanding of OWASP, MITRE, CVSS and other standards/frameworks relevant to … application security and vulnerability management. Experience with cloud technologies, preferably Azure and AWS. Familiarity with security methodologies: Attack and Defensive, Threat Hunting, etc. Scripting experience would be beneficial i.e. Python, Shell, Ansible, Jenkins, etc. Hold relevant industry certifications such as CISSP, CISM, CRISC, etc. Candidates must be more »

Hi all, I'm helping helping a well established FS organisation find a talented AppSec engineer interested in joining a well-funded security function! The company is responsible for c.£80 billion in assets so security is seen as a true necessity and business enabler. Top be successful … in this role you will need experience with: Security engineering Working with dev teams Project work OWASP principles T... more »

APIs such as Mapbox, Turf.js, QGIS, GDAL, and PostGIS. Familiarity with Docker, Microsoft Azure, CI/CD pipelines, and Kubernetes. Strong understanding of web application security practices. Proficient in using Git in a team environment and familiar with agile project management tools like Jira, Trello, Azure DevOps, etc. more »

exciting opportunity whereby you will have the opportunity to successfully deliver a number of neo banks. As the Engineering Director, you will join the Application Engineering and Architecture team to lead a broad programme of technology across application, security, data and cloud. Main responsibilities: Establish the overarching … profound understanding of cloud architecture and services. Experience across AWS, Azure or Google Cloud allowing you to make informed decisions about infrastructure, scalability and security A comprehensive grasp of DevOps practices including CI/CD Client relationship management and strong stakeholder management Banking industry background with a preference on more »

across remote and office locations. There will be opportunities to guide continual improvement of the vulnerability management process. Responsibilities Lead a team of information security professionals to: Assess, investigate and provide guidance on emerging vulnerabilities, incorporating information from threat intelligence sources, internal software and infrastructure scans. Collate and prioritise … applicable vulnerabilities based on Starling Bank's environmental factors and risk frameworks Collaborate with relevant technology (security, engineering, workplace technology, data, infrastructure) teams to ensure resolution of findings within agreed timeframes. Track and report on progress of mitigations/resolutions to relevant audiences Identify trends and themes in issues … willingness to learn new technologies and adapt to evolving security landscapes Practical experience in Vulnerability Management fields, including: Endpoint Vulnerability Scanning Vulnerability Intelligence AppSec Vulnerability Management Vulnerability Management of cloud native workloads External Attack Surface Management Technical knowledge in the following areas is desirable: Cloud (AWS, GCP) Containers MacOS more »

across remote and office locations. There will be opportunities to guide continual improvement of the vulnerability management process. Responsibilities Lead a team of information security professionals to: Assess, investigate and provide guidance on emerging vulnerabilities, incorporating information from threat intelligence sources, internal software and infrastructure scans. Collate and prioritise … applicable vulnerabilities based on Starling Bank's environmental factors and risk frameworks Collaborate with relevant technology (security, engineering, workplace technology, data, infrastructure) teams to ensure resolution of findings within agreed timeframes. Track and report on progress of mitigations/resolutions to relevant audiences Identify trends and themes in issues … willingness to learn new technologies and adapt to evolving security landscapes Practical experience in Vulnerability Management fields, including: Endpoint Vulnerability Scanning Vulnerability Intelligence AppSec Vulnerability Management Vulnerability Management of cloud native workloads External Attack Surface Management Technical knowledge in the following areas is desirable: Cloud (AWS, GCP) Containers MacOS more »

existing offerings with key accounts, work to uplift those renewals Understand clients' business objectives, challenges, and opportunities related to Cyber Security, DevOps and AppSec to grow existing accounts into whitespaces Develop account plans outlining objectives, strategies, and tactics for account growth and retention, working closely with the designated key more »

Job Title - IT Infrastructure & Security Technician Location - Devizes, Wiltshire Salary - £45-50K DOE, plus bonuses Type - Permanent Hours - Fulltime, based onsite The Company My client is a leading manufacturing business located in the Southwest, and they manufacture precision parts, primarily serving the automotive, aerospace and power generation industries … be located within the Devizes sites but also covering the Bath site as and when required. The role: Within the role of IT Infrastructure & Security Technician, you will support all areas of the business, providing technical support and expertise to resolve IT issues, ensuring the smooth operation and the … new servers (Virtual and Physical) Secure access and availability to cloud-based systems (IAAS, PAAS, SAAS) Maintain patching of firmware, driver, operating system, and application security updates for the above technologies Routinely test and document the recovery process of implemented technologies. Manage the Endpoint security suite, including more »