26 to 50 of 88 Application Security Jobs in the UK

Role/Job Title: DevSecOps Pentester Work Location: London (2 - 3days) The Role Conducts security assessments and penetration tests across CI/CD pipelines, cloud infrastructure, and application environments. Integrates automated security tools and practices within DevOps workflows to ensure continuous security validation. Identifies and exploits vulnerabilities in code, containers, APIs, and infrastructure-as-code before … they reach production. Collaborates with development, security, and operations teams to implement remediation and improve security posture. Stays current with threat landscapes, tools, and methodologies to proactively defend against evolving cyber risks in general and more specific to an airline industry, transportation sector. Your Responsibilities Integrate security practices and tools into the DevOps pipeline to ensure security is a continuous process. Perform IaC Automation and ServiceNow integrations to automate AWS Service catalogues. Contribute to security tooling, checklists, and automation efforts. Identify potential security threats and vulnerabilities during the design phase identify flaws in CI/CD, IaC, and cloud/containerized environments. Perform manual and automated security testing on web apps, APIs, pipelines. More ❯

Security Engineer Kent, Hybrid Competitive Salary VIQU have partnered with a leading automotive organisation in Kent to search for an experineced Security Engineer . This role is all about protecting and improving cloud and infrastructure environments, driving security automation, and helping shape DevSecOps practices. You’ll work across AWS and modern platforms, supporting both day-to-day … security operations and longer-term strategic projects. Key Responsibilities: Maintain strong security posture across cloud infrastructure Manage vulnerabilities and support regular system maintenance Design, implement, and manage security tooling in cloud environments ( AWS focus ) Support threat detection, incident response, and risk mitigation activities Contribute to compliance initiatives (ISO 27001, CIS benchmarks ) Collaborate with infrastructure and platform teams … to embed security controls Apply secure DevOps practices (code scanning, container security, IaC) Support governance, reporting, and vulnerability management processes Participate in security reviews, threat assessments, and architecture decisions Key Requirements: 3+ years’ hands-on experience with AWS security services (CloudTrail, GuardDuty, WAF, IAM, Security Hub) Strong knowledge of cloud governance and security best More ❯

Security Engineer Kent, Hybrid Competitive Salary VIQU have partnered with a leading automotive organisation in Kent to search for an experineced Security Engineer . This role is all about protecting and improving cloud and infrastructure environments, driving security automation, and helping shape DevSecOps practices. You’ll work across AWS and modern platforms, supporting both day-to-day … security operations and longer-term strategic projects. Key Responsibilities: Maintain strong security posture across cloud infrastructure Manage vulnerabilities and support regular system maintenance Design, implement, and manage security tooling in cloud environments ( AWS focus ) Support threat detection, incident response, and risk mitigation activities Contribute to compliance initiatives (ISO 27001, CIS benchmarks ) Collaborate with infrastructure and platform teams … to embed security controls Apply secure DevOps practices (code scanning, container security, IaC) Support governance, reporting, and vulnerability management processes Participate in security reviews, threat assessments, and architecture decisions Key Requirements: 3+ years’ hands-on experience with AWS security services (CloudTrail, GuardDuty, WAF, IAM, Security Hub) Strong knowledge of cloud governance and security best More ❯

Type: Contract (6 months) | Rate: Market| Start Date: ASAP About the Role Our client, a leading global organization, is looking for an experienced DevSecOps Pentester to join a leading security team in London. Youll perform penetration tests and security assessments across CI/CD pipelines, cloud environments, and applications, integrating automated security tools and practices into DevOps … is ideal for someone who can identify vulnerabilities in code, containers, APIs, and infrastructure-as-code before production, collaborate closely with DevOps and development teams, and help improve enterprise security posture. Key Responsibilities Integrate security tools and practices into CI/CD pipelines for continuous validation. Conduct manual and automated security testing on web apps, APIs, pipelines … and actionable remediation guidance. Validate remediation efforts and perform retesting cycles. Advise on secrets management, IAM, and secure deployment practices. Educate and collaborate with development and operations teams on security best practices. Required Skills & Experience Strong application security knowledge (OWASP Top 10, API security). Manual pentesting experience on modern web apps, APIs, and CI/ More ❯

Identification and crafting of complex custom WAF rules & features to mitigate MVP and security posture gaps Crafting efficacy testing for baseline & custom rules and features and integrating testing in the automation pipelines Providing SME support for other security testing such as WAF PoCs, new features and solutions with a potential cost saving if we use in-house resource … policies and rules tailored to specific applications and environments. Proactively assist with identifying false positives Collaborate with cross-functional teams to ensure seamless integration of WAF solutions into existing security infrastructure. Provide recommendations for WAF configuration based on best practices and security requirements. Perform regular assessments and audits of WAF configurations to ensure optimal security posture and … strong understanding of web application security principles. Proven track record of proactively identifying and mitigating false positives to optimize WAF performance. Background in SOC or CSIRT and AppSec or Ethical Hacking, demonstrating hands-on experience for the key responsibilities Proficiency in log analysis tools and techniques, with the ability to identify patterns and anomalies in web traffic Experience More ❯

Role: Senior Cyber Security Engineer (Cyber SME) Salary: Up to £70,000 Location: Reading/Birmingham - Hybrid (1 day/week in office) Be the Cyber Security Subject Matter Expert protecting the backbone of our business.Are you a highly skilled cyber security professional ready to take ownership of security engineering and infrastructure hardening? We're looking … for a Senior Cyber Security Engineer to join our team and act as the go-to expert for all things security.Reporting to the head of security, you'll play a critical role in protecting our infrastructure, networks, and data, while guiding teams across the business with your deep technical expertise. What You'll Do Serve as the Cyber … Security Subject Matter Expert, advising on secure systems design, change control, and implementation of robust security controls. Lead the technical vulnerability management programme, with a strong focus on application security, web application firewalls, and secure DevOps pipelines. Provide security leadership and mentoring , supporting colleagues and enhancing security awareness across the business. Actively contribute More ❯

My client, a Global organisation based in Newcastle city centre are seeking an experienced Head of Security and Platform Engineering to start ASAP. This pivotal role takes the lead in delivering breakthrough improvements in reliability and performance across technology platforms, ensuring our systems consistently exceed expectations. As the leading force behind our cyber security agenda, you will champion … a step change in modern security controls—introducing cutting-edge measures that protect the business. You will lead four core technology towers, and inspire teams to set bold targets, measure progress, and celebrate success as we raise the bar for platform resilience, scalability, and security. Key Responsibilities: Strategic Leadership & Governance Define and drive the vision, strategy, and roadmaps for … objectives and risk appetite. Oversee integration and collaboration across the four core platform towers: Digital Workspace Services (DWS) Support and System Reliability Engineering (SSRE) Platform and Cloud Engineering (PaCE) Security & Network Operations (SNOPs) Establish and socialise the Cyber Security Strategy and Roadmap, ensuring alignment with enterprise resilience and regulatory requirements Cyber Security Leadership Shape the cyber security More ❯

Security Architect £95,000 - £125,000 GBP Hybrid WORKING Location: Manchester, North West - United Kingdom Type: Permanent Role: Security Architect Salary: £95,000 - £120,000 per annum + Benefits Location: Open to UK-wide candidates (Remote/Hybrid options available) Overview We are hiring for a Security Architect with a strong consultancy background to lead the secure … services across a diverse range of digital transformation projects. This is a hands-on leadership role suited to someone who thrives in Agile environments and is passionate about embedding security throughout the software development lifecycle. Key Responsibilities Lead the secure design of cloud services and solutions in line with defined security strategies Identify and mitigate security risks … in existing system designs, balancing cost, risk, and usability Guide Agile delivery teams on secure development practices and tooling Educate internal teams and clients on security principles and standards Manage, mentor, and develop a small team of security professionals Provide technical direction and leadership across projects Essential Skills & Experience Proven expertise in secure cloud architecture and solution design More ❯

Role: Security Solutions Architect Job Type- Permanent (Remote/Hybrid) Industry- Real-estate/Property Management Location- London/Stockholm Salary- up to £100K About: We are seeking a hands-on Security Solutions Architect to join our global architecture function. This is a key role responsible for shaping, designing, and supporting the build and deployment of security … technology estate, with a strong emphasis on Azure. The successful candidate will work within a global organisation operating across 30+ Operating Companies (OpCos), helping to translate a recently defined security strategy into actionable technology choices, solution designs, and deliverable work packages. Key Responsibilities Design and support the deployment of scalable, secure infrastructure and application security solutions. Translate … high-level security strategy into actionable technical designs and implementation roadmaps. Define and select appropriate security technologies and tooling in line with business needs and technical constraints. Work closely with the InfoSec function to align solution designs with group-wide security policies and standards. Partner with infrastructure and application teams across multiple OpCos to ensure consistent More ❯

for electrifying their homes, shifting usage to off-peak hours, and supporting grid stability-critical for scaling AI and energy-intensive industries. We're looking for a Chief Information Security Officer (CISO) to lead our company-wide security strategy. You'll protect our infrastructure, digital assets, and customer data while enabling fast, secure growth. Key Responsibilities Security Strategy & Leadership Define and lead Fuse's security strategy across infrastructure, applications, and data. Lead hands-on development of security roadmaps, maturity models, and control frameworks tailored to Fuse's risk profile. Directly contribute to architecture reviews, threat modelling sessions, and key design decisions across product and platform teams. Build and mentor a high-performing security team, including hiring, coaching, and managing performance. Develop KPIs and reporting structures to measure and communicate security posture to leadership and the board. Advise the executive team on security risks, regulatory exposure, and investment priorities to support long-term growth. Governance & Compliance Own company-wide security governance, including data protection, access control, and insider risk. Ensure More ❯

About the role: Join Our Team at Holland & Barrett! Are you passionate about cloud security and looking to make a significant impact? Holland & Barrett is seeking a Cloud Security Specialist to help us define and implement our cloud security strategy. If you're an experienced professional eager to work with cutting-edge technology and collaborate with diverse … teams, we want to hear from you! Key Responsibilities: Security Strategy: Help define and execute the Holland & Barrett cloud security strategy, partnering with platform and Site Reliability Engineering (SRE) teams to build robust infrastructure that supports our business. Perimeter Security: Establish platform perimeter security by implementing controls at ingress and egress points, including creating and maintaining … an edge network with a Web Application Firewall (WAF), Distributed Denial of Service (DDoS) protection, and a Content Delivery Network (CDN). Access Control: Establish an access control baseline focusing on the principle of least privilege and segregation of duties. Monitor and enforce these controls once roles and permissions are set. Security Controls: Design, implement, and maintain security More ❯

Technical Azure Security Engineer - Audit Technology £60,000 - £70,000 GBP Hybrid WORKING Location: Central London, Greater London - United Kingdom Type: Permanent Location: London Salary: £70,000 Contract Type: Permanent, Full-Time Shape the future of audit through secure cloud engineering. Join a high-impact technology team delivering secure, scalable solutions for a leading audit platform. This is a … hands-on, delivery-focused role embedded within a cloud-native engineering group, with a dotted-line relationship to a central security architecture function to ensure alignment with governance and standards. Your Impact As a trusted security engineer, you will: Secure CI/CD pipelines and infrastructure-as-code (IaC) deployments across Azure. Lead container, API, and web application security initiatives, including code reviews. Support threat modelling, vulnerability management, and penetration testing activities. Drive logging integration with SIEM tools, enabling SOC monitoring and incident response. Coach engineering teams on cloud security principles and manage audit-related actions. What You'll Bring Essential Skills: Deep expertise in Azure security controls and cloud-native security practices. More ❯

/2 days in London Salary: Circa 65K 75K + Benefits Cybersecurity Engineer required by fast-growing, revolutionary tech company! This is a challenging, hands-on role leading the security of their applications, APIs, infrastructure, and data. Youll identify vulnerabilities, define best practices, and implement controls without slowing delivery Essential: At least 3yrs in cybersecurity, application security, or cloud security roles Strong knowledge of web/mobile security (OWASP Top 10, API security), cloud security (AWS), and CI/CD pipeline hardening Familiar with SAST/DAST tools, vulnerability scanners, penetration testing frameworks, and monitoring platforms (e.g. Splunk, ELK, Datadog) Understanding of GDPR and data privacy best practices Tremendous opportunity offering plenty More ❯

DevSecOps Engineer | Permanent | UK (Hybrid - A few times per month) | £84k We're working with a highly respected, forward-thinking professional services firm on a mission to embed security into every part of their digital transformation journey. This is a key hire within their growing tech function - they're looking for a DevSecOps/Lead Software Security Engineer … its people, with a collaborative culture and real investment in development. They're agile, ambitious, and looking for someone who wants to play a hands-on role in moving security left - bringing DevSecOps to life and guiding engineering teams with confidence and clarity. What you'll be doing: Leading the cultural shift towards DevSecOps across multiple product teams Embedding … security requirements and tooling into the SDLC from the ground up Defining and implementing a product security strategy aligned with business goals Collaborating with developers to automate and streamline security testing Supporting pen test activity and guiding secure remediation efforts Serving as an internal SME on application and cloud security matters Keeping documentation, training, and More ❯

DevSecOps Engineer | Permanent | UK (Hybrid - A few times per month) | £84k We're working with a highly respected, forward-thinking professional services firm on a mission to embed security into every part of their digital transformation journey. This is a key hire within their growing tech function - they're looking for a DevSecOps/Lead Software Security Engineer … its people, with a collaborative culture and real investment in development. They're agile, ambitious, and looking for someone who wants to play a hands-on role in moving security left - bringing DevSecOps to life and guiding engineering teams with confidence and clarity. What you'll be doing: Leading the cultural shift towards DevSecOps across multiple product teams Embedding … security requirements and tooling into the SDLC from the ground up Defining and implementing a product security strategy aligned with business goals Collaborating with developers to automate and streamline security testing Supporting pen test activity and guiding secure remediation efforts Serving as an internal SME on application and cloud security matters Keeping documentation, training, and More ❯

Role: Security Solutions Architect Job Type- Permanent (Remote/Hybrid) Industry- Real-estate/Property Management Location- London/Stockholm Salary- up to £100K About: We are seeking ahands-on Security Solutions Architectto join our global architecture function. This is a key role responsible for shaping, designing, and supporting the build and deployment of security solutions across … technology estate, with a strong emphasis on Azure. The successful candidate will work within a global organisation operating across 30+ Operating Companies (OpCos), helping to translate a recently defined security strategy into actionable technology choices, solution designs, and deliverable work packages. Key Responsibilities Design and support the deployment of scalable, secure infrastructure and application security solutions. Translate … high-level security strategy into actionable technical designs and implementation roadmaps. Define and select appropriate security technologies and tooling in line with business needs and technical constraints. Work closely with the InfoSec function to align solution designs with group-wide security policies and standards. Partner with infrastructure and application teams across multiple OpCos to ensure consistent More ❯

controls specialists, or as part of a wider Oracle Finance/Supply Chain/HR Transformation programme; Assessing, designing and implementing Oracle controls across areas including: business process controls, application security/role based access controls, segregation of duties, IT general controls, programme management controls, etc; Assessing, designing and implementing Oracle Risk Management and Compliance (RMC) modules; Applying … management (both internally and client stakeholders) as required. Connect to your skills and professional experience Knowledge of Oracle Cloud (e.g. ERP/EPM/SCM/HCM or equivalent) application security and role design, automated configured controls and Oracle Risk Management & Compliance (RMC) modules. Background assessing, designing and/or implementing controls in an external audit, internal audit … automated controls, etc. Excellent communicator with the ability to articulate complex ideas, and effectively manage key stakeholders. Experience working in organisations subject to SOX requirements. Knowledge of other common application technologies e.g. S/4 Hana, MS Dynamics, Blackline, Workday. Knowledge of common infrastructure technologies e.g. AWS, Google Cloud, Azure, SQL Database, Oracle database. Holding or eligible for UK More ❯

controls specialists, or as part of a wider Oracle Finance/Supply Chain/HR Transformation programme; Assessing, designing and implementing Oracle controls across areas including: business process controls, application security/role based access controls, segregation of duties, IT general controls, programme management controls, etc; Assessing, designing and implementing Oracle Risk Management and Compliance (RMC) modules; Applying … management (both internally and client stakeholders) as required. Connect to your skills and professional experience Knowledge of Oracle Cloud (e.g. ERP/EPM/SCM/HCM or equivalent) application security and role design, automated configured controls and Oracle Risk Management & Compliance (RMC) modules. Background assessing, designing and/or implementing controls in an external audit, internal audit … automated controls, etc. Excellent communicator with the ability to articulate complex ideas, and effectively manage key stakeholders. Experience working in organisations subject to SOX requirements. Knowledge of other common application technologies e.g. S/4 Hana, MS Dynamics, Blackline, Workday. Knowledge of common infrastructure technologies e.g. AWS, Google Cloud, Azure, SQL Database, Oracle database. Holding or eligible for UK More ❯

controls specialists, or as part of a wider Oracle Finance/Supply Chain/HR Transformation programme; Assessing, designing and implementing Oracle controls across areas including: business process controls, application security/role based access controls, segregation of duties, IT general controls, programme management controls, etc; Assessing, designing and implementing Oracle Risk Management and Compliance (RMC) modules; Applying … management (both internally and client stakeholders) as required. Connect to your skills and professional experience Knowledge of Oracle Cloud (e.g. ERP/EPM/SCM/HCM or equivalent) application security and role design, automated configured controls and Oracle Risk Management & Compliance (RMC) modules. Background assessing, designing and/or implementing controls in an external audit, internal audit … automated controls, etc. Excellent communicator with the ability to articulate complex ideas, and effectively manage key stakeholders. Experience working in organisations subject to SOX requirements. Knowledge of other common application technologies e.g. S/4 Hana, MS Dynamics, Blackline, Workday. Knowledge of common infrastructure technologies e.g. AWS, Google Cloud, Azure, SQL Database, Oracle database. Holding or eligible for UK More ❯

controls specialists, or as part of a wider Oracle Finance/Supply Chain/HR Transformation programme; Assessing, designing and implementing Oracle controls across areas including: business process controls, application security/role based access controls, segregation of duties, IT general controls, programme management controls, etc; Assessing, designing and implementing Oracle Risk Management and Compliance (RMC) modules; Applying … management (both internally and client stakeholders) as required. Connect to your skills and professional experience Knowledge of Oracle Cloud (e.g. ERP/EPM/SCM/HCM or equivalent) application security and role design, automated configured controls and Oracle Risk Management & Compliance (RMC) modules. Background assessing, designing and/or implementing controls in an external audit, internal audit … automated controls, etc. Excellent communicator with the ability to articulate complex ideas, and effectively manage key stakeholders. Experience working in organisations subject to SOX requirements. Knowledge of other common application technologies e.g. S/4 Hana, MS Dynamics, Blackline, Workday. Knowledge of common infrastructure technologies e.g. AWS, Google Cloud, Azure, SQL Database, Oracle database. Holding or eligible for UK More ❯

controls specialists, or as part of a wider Oracle Finance/Supply Chain/HR Transformation programme; Assessing, designing and implementing Oracle controls across areas including: business process controls, application security/role based access controls, segregation of duties, IT general controls, programme management controls, etc; Assessing, designing and implementing Oracle Risk Management and Compliance (RMC) modules; Applying … management (both internally and client stakeholders) as required. Connect to your skills and professional experience Knowledge of Oracle Cloud (e.g. ERP/EPM/SCM/HCM or equivalent) application security and role design, automated configured controls and Oracle Risk Management & Compliance (RMC) modules. Background assessing, designing and/or implementing controls in an external audit, internal audit … automated controls, etc. Excellent communicator with the ability to articulate complex ideas, and effectively manage key stakeholders. Experience working in organisations subject to SOX requirements. Knowledge of other common application technologies e.g. S/4 Hana, MS Dynamics, Blackline, Workday. Knowledge of common infrastructure technologies e.g. AWS, Google Cloud, Azure, SQL Database, Oracle database. Holding or eligible for UK More ❯

controls specialists, or as part of a wider Oracle Finance/Supply Chain/HR Transformation programme; Assessing, designing and implementing Oracle controls across areas including: business process controls, application security/role based access controls, segregation of duties, IT general controls, programme management controls, etc; Assessing, designing and implementing Oracle Risk Management and Compliance (RMC) modules; Applying … the practice; and Leading and shaping the strategy and team. Connect to your skills and professional experience Knowledge of Oracle Cloud (e.g. ERP/EPM/SCM/HCM) application security and role design, automated configured controls and Oracle Risk Management & Compliance (RMC) modules Background assessing, designing and/or implementing controls in an external audit, internal audit … teams across multiple locations. Excellent people management and development skills with a strong focus on team development. Experience working in organisations subject to SOX requirements. Knowledge of other common application technologies e.g. S/4 Hana, MS Dynamics, Blackline, Workday Knowledge of common infrastructure technologies e.g. AWS, Google Cloud, Azure, SQL Database, Oracle database Experience of assessing AI risks More ❯

controls specialists, or as part of a wider Oracle Finance/Supply Chain/HR Transformation programme; Assessing, designing and implementing Oracle controls across areas including: business process controls, application security/role based access controls, segregation of duties, IT general controls, programme management controls, etc; Assessing, designing and implementing Oracle Risk Management and Compliance (RMC) modules; Applying … the practice; and Leading and shaping the strategy and team. Connect to your skills and professional experience Knowledge of Oracle Cloud (e.g. ERP/EPM/SCM/HCM) application security and role design, automated configured controls and Oracle Risk Management & Compliance (RMC) modules Background assessing, designing and/or implementing controls in an external audit, internal audit … teams across multiple locations. Excellent people management and development skills with a strong focus on team development. Experience working in organisations subject to SOX requirements. Knowledge of other common application technologies e.g. S/4 Hana, MS Dynamics, Blackline, Workday Knowledge of common infrastructure technologies e.g. AWS, Google Cloud, Azure, SQL Database, Oracle database Experience of assessing AI risks More ❯

controls specialists, or as part of a wider Oracle Finance/Supply Chain/HR Transformation programme; Assessing, designing and implementing Oracle controls across areas including: business process controls, application security/role based access controls, segregation of duties, IT general controls, programme management controls, etc; Assessing, designing and implementing Oracle Risk Management and Compliance (RMC) modules; Applying … the practice; and Leading and shaping the strategy and team. Connect to your skills and professional experience Knowledge of Oracle Cloud (e.g. ERP/EPM/SCM/HCM) application security and role design, automated configured controls and Oracle Risk Management & Compliance (RMC) modules Background assessing, designing and/or implementing controls in an external audit, internal audit … teams across multiple locations. Excellent people management and development skills with a strong focus on team development. Experience working in organisations subject to SOX requirements. Knowledge of other common application technologies e.g. S/4 Hana, MS Dynamics, Blackline, Workday Knowledge of common infrastructure technologies e.g. AWS, Google Cloud, Azure, SQL Database, Oracle database Experience of assessing AI risks More ❯

controls specialists, or as part of a wider Oracle Finance/Supply Chain/HR Transformation programme; Assessing, designing and implementing Oracle controls across areas including: business process controls, application security/role based access controls, segregation of duties, IT general controls, programme management controls, etc; Assessing, designing and implementing Oracle Risk Management and Compliance (RMC) modules; Applying … the practice; and Leading and shaping the strategy and team. Connect to your skills and professional experience Knowledge of Oracle Cloud (e.g. ERP/EPM/SCM/HCM) application security and role design, automated configured controls and Oracle Risk Management & Compliance (RMC) modules Background assessing, designing and/or implementing controls in an external audit, internal audit … teams across multiple locations. Excellent people management and development skills with a strong focus on team development. Experience working in organisations subject to SOX requirements. Knowledge of other common application technologies e.g. S/4 Hana, MS Dynamics, Blackline, Workday Knowledge of common infrastructure technologies e.g. AWS, Google Cloud, Azure, SQL Database, Oracle database Experience of assessing AI risks More ❯