26 to 50 of 150 Application Security Jobs in the UK

Senior Security Engineer Remote - occasional travel into London (need to be based in the UK) Up to 85,000 BOE + 9% bonus We are looking for a highly skilled and experienced Senior Security Engineer to join a dynamic and growing team for a leading SaaS technology company … customer conversations. About you You will play a crucial role in securing the organisations infrastructure, systems, and data against cyber threats. As a Senior Security Engineer, you will be responsible for designing, innovating, deploying, and maintaining security measures to safeguard their information assets. What you will be doing … You will be securing the existing infrastructure/application architecture. -You will act as a advocate for infrastructure/application Security Design. -You will be collaborating within cross-functional teams to lead security system design and deployment. (DevSecOps approach). -You will be reviewing new technologies more »

across remote and office locations. There will be opportunities to guide continual improvement of the vulnerability management process. Responsibilities Lead a team of information security professionals to: Assess, investigate and provide guidance on emerging vulnerabilities, incorporating information from threat intelligence sources, internal software and infrastructure scans. Collate and prioritise … applicable vulnerabilities based on Starling Bank's environmental factors and risk frameworks Collaborate with relevant technology (security, engineering, workplace technology, data, infrastructure) teams to ensure resolution of findings within agreed timeframes. Track and report on progress of mitigations/resolutions to relevant audiences Identify trends and themes in issues … willingness to learn new technologies and adapt to evolving security landscapes Practical experience in Vulnerability Management fields, including: Endpoint Vulnerability Scanning Vulnerability Intelligence AppSec Vulnerability Management Vulnerability Management of cloud native workloads External Attack Surface Management Technical knowledge in the following areas is desirable: Cloud (AWS, GCP) Containers MacOS more »

but an environment that both promotes a social working environment aswell as a very accommodating work life balance. About Logiq: Logiq Consulting are Cyber Security and Information Assurance experts. We specialise in providing leading edge consultancy to high-threat clients, as well as delivering a range of security … Online, Azure AD, OneDrive for business, Teams, and Outlook. 2+ years' experience working in a Service Desk environment. Office 365 ATP & DLP configuration including security monitoring & logging (e.g. Microsoft Cloud App Security). Experience with Office 365 and Azure AD security, compliance & auditing. Service Desk management within more »

Senior Application Security Engineer, strategy, stakeholder conversations, thought leader, proactive, identity management, consulting, influencing, forward thinking, autonomy, code review, audits, pen testing, application reviews A fantastic opportunity has arisen for a skilled Senior Application Security Engineer with excellent communication skills to join a global cloud … company who develop cutting-edge solutions for an impressive portfolio of UK and International clients – clients that will accept nothing less than first-class security for their confidential information, so this is an exceptional opportunity to use your application security skills to provide forward thinking solutions and … background (.Net, Java or C++ or similar OO languages ideally)as you will be fully embedded into their world class technology team, ensuring the security of applications that are built specifically for needs. These clients will need constant re-assurance of your ability to provide secure solutions and high more »

Positions: 1 Role Description: We are looking for an experienced ZTA Architect with 8 to 10 years of technical experience in two or three security domains (Network Security, IT Security, Cloud Security, Identity and Access Management, Application Security, Data Security, PKI & Encryption) at … the enterprise level. This role will have a significant impact by ensuring the implementation of key security projects using cutting-edge technologies. Key Responsibilities: Review and validate the architecture and design of new and existing projects (IT Infrastructure Projects, Applications) against industry standards, organization’s architecture principles, and design … patterns. Highlight risks and areas for improvement. Ensure adherence to applicable compliances, security policies, and regulatory requirements. Understand and document business requirements for cybersecurity projects, map them to functional/non-functional requirements, identify appropriate technologies, and evaluate market tools to meet business needs. Utilize knowledge of Secure Design more »

Who we are looking for An Information Security Specialist who will focus on the technical side of IT Security, specifically looking at application security and code analysis to ensure applications are built securely. The Information Security team deal with the security of closed-sourced … open-source and in-house written applications. The objective is to ensure that systems and services are built with privacy and security by design. You will be working closely with the Software Development team, to confirm that application based vulnerabilities are understood and mitigated. This is done from … a security assessment point of view rather than code QA, therefore code reading skills are desirable. The team comprises of a variety of individuals, ranging from graduates to time served engineers with backgrounds as sys-admin, networks, service operation as well as security. We use first-class, enterprise-level more »

edge, cloud, and on-premise experience with cloud services and their WAF controls, ideally including one or more WAF vendor experience. understanding of Web Application security attack methods and mitigations in WAF tuning and configuration, coupled with a strong foundation in web security principles and practices. DevSecOps … pipeline maintenance support for the automation works with IDAM protocols and access control measures for WAF management, informed by strong web security knowledge. of HTTPS inspection, including Termination and Certificate management, grounded in robust web security practices. custom WAF rules and features, addressing gaps and enhancing overall security measures. to design and implement bespoke WAF processes and documentation, underpinned by a thorough understanding of web application security. They are also accepting candidates who have experience with Web Application Security log analysis and that is derived from a Cyber SOC/CSIRT work background who more »

A well-known software development company is looking to grow their London based cyber security team with talented Application Security Engineers. This will be 3 days per week in the office (central London). Hiring at multiple levels, you can expect a salary anywhere from … than 50% last year and use the most cutting edge technology available. If you're someone who is deeply technical and passionate about implementing security into the SDLC then I would love to speak with you. If you have expertise within software development/engineering and champion security … within your current role, you're very likely to be successful. You will be training developers on writing secure code, perform threat modelling and security testing of applications, run SAST, DAST, SCA and secret scanning tools, manage the bug bounty program and lead incident response for software bugs. Please more »

Security Engineer - Cloud/Appsec £600-£650 p.d Outside IR35 Occasional Travel to Leeds Office 3 Months + Likely extension Start Date - ASAP Key Responsibilities: Secure Configurations & Compliance Implementation: Planning and implementation of the Center for Internet Security Microsoft Dynamics 365 Power Platform benchmark. Planning and implementation of … the Center for Internet Security Microsoft 365 Foundations Benchmark. Collaborating with cloud and DevOps engineers to refactor Terraform code for secure configurations and compliance with the Center for Internet Security Microsoft Azure Foundations Benchmark. Work with colleagues to raise any required exceptions with Information Security Governance Risk … and Compliance so that any associated operational risk is identified, assessed and managed. Work with Security Operations to onboard Azure Landing Zones into Qualys Total Cloud and address any findings relating to non-compliance. Auditing configurations in order to plan remediations and verify compliance requirements are met. SIEM Integration more »

Application Security Lead - Financial Services - London (3 days a week in office) - up to £95,000 + bonus + benefits La Fosse has partnered with a leading Insurance Organization who are looking to hire an Application Security Lead. This role will be responsible for establishing an … Application Security function from the ground up, which will involve the implementation of tooling, processes and frameworks. As the first Application Security hire, you will work closely with Application, Platform, and Support teams, to embed a shift left culture within SDLC. Responsibilities: Lead on application … Enterprise Security for deploying and maintaining scanning solutions. Requirements: Experience in building Application Security programmes. Previous hands-on experience as an AppSec Engineer, Software Security Engineer or Software Engineer will be advantageous. Experience in implementing SAST/DAST/SCA tooling. Knowledge of frameworks such as more »

strong commitment to sustainability and good corporate citizenship, we have over 250,000 dedicated employees serving clients across 66 countries. About the role: Experienced Security Engineer - Cloud WAF who has expertise in web application security, content distribution and other IT infrastructure services. We expect the candidate to … experience with cloud services and their WAF controls, ideally including one or more of the following: AWS, Azure, and GCP Strong understanding of Web Application security attack methods and mitigations Proficiency in WAF tuning and configuration, coupled with a strong foundation in web security principles and practices. … Develop custom WAF rules and features, addressing gaps and enhancing overall security measures Capability to design and implement bespoke WAF processes and documentation, underpinned by a thorough understanding of web application security. Analytical skills to review and align platforms with MVP and Baseline Configurations, leveraging a deep knowledge more »

Information Security Officer (ISO) Location: Farnborough Salary: £45,000 DOE The Role The Information Security Officer (ISO) will be responsible for policies, standards and procedures that fall within the scope of the ISO27001 accreditation. The ISO will continually develop, implement, and oversee the organization's information security strategy, policies, and practices. The ISO also oversees security awareness training programs and manages security audits and compliance assessments. This role requires a deep understanding of information security principles, regulations, and best practices, as well as the ability to communicate and collaborate effectively with stakeholders across … the organization. Accountability The Information Security Officer (ISO) is accountable for maintaining the company ISMS and onward maintenance of ISO27001 certification. This includes keeping policies current and evidence up to date and involves marshalling other departments to ensure required procedures are followed and evidence provided, as well as organising more »

APIs such as Mapbox, Turf.js, QGIS, GDAL, and PostGIS. Experience with Docker, Microsoft Azure, CI/CD pipelines, and Kubernetes. Strong understanding of web application security practices. Skilled in Git version control and agile project management tools like Jira, Trello, or Azure DevOps. Proven ability to solve problems more »

APIs such as Mapbox, Turf.js, QGIS, GDAL, and PostGIS. Familiarity with Docker, Microsoft Azure, CI/CD pipelines, and Kubernetes. Strong understanding of web application security practices. Proficient in using Git in a team environment and familiar with agile project management tools like Jira, Trello, Azure DevOps, etc. more »

a global provider of information-based analytics and decision tools for professional and business customers About the Role We are looking for an experienced Application Security Leader to lead the Application Security discipline across RX Global. The Security Application Leader will play a critical … role in ensuring that all applications are developed, deployed, and maintained with security as a top priority, helping to protect sensitive data, mitigate risks, and maintain the trust of customers and stakeholders Responsibilities Conducting assessments of applications (web, cloud, mobile, API) using range of manual and automated source code … review techniques (PASTA and STRIDE) Working with development teams to analyse,evaluate and enhance the effectiveness of their application/product security posture at all levels. Owning and administration of security tooling such as Sonarcube, Acunetix, Dtrack, and others Collaborating with respective peer groups to safeguard company more »

Lead Security Software Engineer We are seeking a software-focused Lead Security Engineer to join a 1Billion user social media giant, dealing with the complexity of mega scale systems and infrastructure. The Security group come from diverse technical backgrounds, Reliability, Software Engineering and Security Engineering, and … have a broad remit ensuring high availability and performance, and currently have a particular focus on security system efficiency, monitoring and sustainability, looking at threat intelligence, IAM, data and application security across the Kubernetes and Linux based environments. They are very open to background, but tend to … worked in securing large scale post-production container based environments, and who are comfortable with complex Linux challenges. We are looking for a Lead Security Engineer with: A background in Cybersecurity, anywhere ranging from system level to the application layer Strong software engineering experience, with proficiency in at more »

Senior IT Security Analyst Up to £60,000 Hybrid – 2 days per week at either the London, Weymouth, or Newcastle offices We are representing a leading B2C retailer who are in the process of modernising their technology estate, with significant investment in IT. As the Senior IT Security Analyst, you will report to the Head of Information Security, whilst leading a team of two IT Security Analysts. You will be the SME for technical security, have the responsibility for the managed SOC and associated vendor relationships, as well as the vulnerability, penetration, and application security testing. We are looking for: Proven experience with incident management and the ability to lead on this Experience leading and managing a team Prior experience managing a 3rd party It would be a bonus if you had: Previous experience/knowledge of the Retail or eCommerce space more »

exciting opportunity whereby you will have the opportunity to successfully deliver a number of neo banks. As the Engineering Director, you will join the Application Engineering and Architecture team to lead a broad programme of technology across application, security, data and cloud. Main responsibilities: Establish the overarching … profound understanding of cloud architecture and services. Experience across AWS, Azure or Google Cloud allowing you to make informed decisions about infrastructure, scalability and security A comprehensive grasp of DevOps practices including CI/CD Client relationship management and strong stakeholder management Banking industry background with a preference on more »

A well-known software development company is looking to grow their London based cyber security team with talented Application Security Engineers. This will be 3 days per week in the office (central London). Hiring at multiple levels, you can expect a salary anywhere from … than 50% last year and use the most cutting edge technology available. If you're someone who is deeply technical and passionate about implementing security into the SDLC then I would love to speak with you. If you have expertise within software development/engineering and champion security … within your current role, you're very likely to be successful. You will be training developers on writing secure code, perform threat modelling and security testing of applications, run SAST, DAST, SCA and secret scanning tools, manage the bug bounty program and lead incident response for software bugs. Please more »

time allotted for interviews and any other needs. We also welcome any feedback on how we can improve the experience for future candidates. Lead Security Engineer As a Lead Security Engineer you will work closely with clients to help inform their security strategy and to ensure our … have written some blog posts about your discipline, or perhaps even delivered a talk or two. The following skills will be assessed during the application process Working within a technology consultancy Strong understanding of integrating security as part of a multidisciplinary approach to delivering digital services (products) and … platforms utilising a DevSecOps approach and enabling Continuous Security as part of wider CI/CD tools and practices Up-to-date understanding of, and ensuring compliance to, security standards and regulations including GDS Technology Code of Practice, NCSC Cyber Principles, ISO27001, SoC, NIST, PCI, and GDPR Up more »

We are partnered with a reputable global consultancy that are recruiting SECURITY ARCHITECTS to work on a very exciting LONG-TERM CONTRACT within the financial service sector. Role: Security Architect (Data Solutions) Rate: Up to £500 per day (inside IR35) Location: Swindon/London – Hybrid (2 days onsite … Duration: 6 months (initially – view to extend) Role Description: As a Security Architect within the internal integrations team, you will play a crucial role in ensuring the security and integrity of systems related to service mesh, container platforms, and data solutions. Your responsibilities will involve designing, implementing, and … maintaining robust security measures to protect sensitive data, prevent unauthorized access, and mitigate risks. Key responsibilities: Collaborate with development and operations teams to design secure and scalable architectures for containerized applications, data mesh, and Kafka. Assess and implement security controls for container platforms (e.g., Kubernetes, Docker). Define more »

Senior Application Security Engineer, strategy, stakeholder conversations, thought leader, proactive, identity management, consulting, influencing, forward thinking, autonomy, code review, audits, pen testing, application reviews A fantastic opportunity has arisen for a skilled Senior Application Security Engineer with excellent communication skills to join a global cloud … company who develop cutting-edge solutions for an impressive portfolio of UK and International clients – clients that will accept nothing less than first-class security for their confidential information, so this is an exceptional opportunity to use your application security skills to provide forward thinking solutions and … background (.Net, Java or C++ or similar OO languages ideally)as you will be fully embedded into their world class technology team, ensuring the security of applications that are built specifically for needs. These clients will need constant re-assurance of your ability to provide secure solutions and high more »

Title: Lead Product Security Engineer Location: Hybrid Remote (Central London Office); Sector: Finance/Retail, Apparel and Fashion Salary: Banding of £85,000 - 115,000 per year plus package (to be discussed during vetting call). Please note that to apply for this opportunity, you must be a British … may arise. Demonstrate exceptional communication skills, capable of effectively conveying information to both technical and non-technical key stakeholders. Own and manage the Information Security relationship with an identified portfolio of change initiatives within the organisation. Identify situations where additional Information Security support is required from areas such … as Security Architecture, Security Design, or Security Engineering, and facilitate the necessary engagement. Provide comprehensive security requirements and guidance to support the change activities within the assigned portfolio. Collaborate with the Governance, Risk, and Compliance (GRC) team to inform on risk, compliance, and assurance matters related more »

Lead Security Architect - Application £80,000 - £95,000 + 10% bonus + benefits West Yorkshire/Hybrid Fruition IT are partnering with a UK national services provider who are going through change, and looking to bring in a skilled Architect to help them set direction and architecture roadmaps … Security. This is a newly created role within a structure of SME domain specialists. This a fantastic opportunity to really take ownership of the application security domain and really be autonomous within that space, own the process and the business unit. The role: Setting the direction and implementing … architecture roadmaps. Be the SME specialist for Application Security. Be autonomous within Application Security, take true ownership! Establish and advocate for security best practices. Take a lead, own the process and business unit. Act as the go-to expert, leveraging internal and external resources to deliver more »

of issues and incidents. Participate in the upgrade/patching planning and execution of the Middleware software. Provide subject matter expertise (SME) for Issues, security related threats and vulnerabilities as it pertains to middleware. Participation in establishing and test disaster recovery policies and procedures across all Middleware environments. Ensure … and Release Management processes. Develop technical documentation and procedure on monitoring, performance. Lead problem determination on system errors or malfunctions and works with the application team/supplier to identify, diagnose and rectify the problem. Supports internal and external audit exercises for the maintenance of various certifications and contractual … new software or hardware solutions that may affect decisions on systems building or enhancements Role Requirements: ITIL Foundation-level knowledge. Experience in the following security domain areas; Vulnerability Assessment and Management, Security Risk and Compliance, Cloud Security Architecture, Application Security, Security Operations Centre and more »