51 to 75 of 232 Application Security Jobs in the UK

Role Overview: Additional Information: Please note, this role requires working full-time onsite, five days per week. NON Negotiable We are seeking an experienced IT Security Engineer to become a vital part of a growing IT Department. This critical role will focus on protecting our information assets through robust cybersecurity measures, ensuring adherence to best practices, international standards, and … local regulations. Ideally suited to candidates who possess expert knowledge of security frameworks including NIST 800, ISO 27001, and cybersecurity guidelines from PRA, FCA, and ICO. Candidates with at least 3 years' relevant experience in finance or banking, particularly as an information security officer or involvement in regulatory technical projects, are strongly preferred. Key Responsibilities: Develop and maintain … cybersecurity policies and procedures, ensuring compliance with industry standards and local regulations. Real-time monitoring of cybersecurity incidents, including incident analysis, investigation, and mitigation. Oversee and maintain security equipment including firewalls, intrusion prevention systems (IPS), web application firewalls (WAF), and antivirus systems. Perform periodic security drills and regular penetration testing to ensure the integrity of security More ❯

Role Overview: Additional Information: Please note, this role requires working full-time onsite, five days per week. NON Negotiable We are seeking an experienced IT Security Engineer to become a vital part of a growing IT Department. This critical role will focus on protecting our information assets through robust cybersecurity measures, ensuring adherence to best practices, international standards, and … local regulations. Ideally suited to candidates who possess expert knowledge of security frameworks including NIST 800, ISO 27001, and cybersecurity guidelines from PRA, FCA, and ICO. Candidates with at least 3 years' relevant experience in finance or banking, particularly as an information security officer or involvement in regulatory technical projects, are strongly preferred. Key Responsibilities: Develop and maintain … cybersecurity policies and procedures, ensuring compliance with industry standards and local regulations. Real-time monitoring of cybersecurity incidents, including incident analysis, investigation, and mitigation. Oversee and maintain security equipment including firewalls, intrusion prevention systems (IPS), web application firewalls (WAF), and antivirus systems. Perform periodic security drills and regular penetration testing to ensure the integrity of security More ❯

Role Overview: Additional Information: Please note, this role requires working full-time onsite, five days per week. NON Negotiable We are seeking an experienced IT Security Engineer to become a vital part of a growing IT Department. This critical role will focus on protecting our information assets through robust cybersecurity measures, ensuring adherence to best practices, international standards, and … local regulations. Ideally suited to candidates who possess expert knowledge of security frameworks including NIST 800, ISO 27001, and cybersecurity guidelines from PRA, FCA, and ICO. Candidates with at least 3 years' relevant experience in finance or banking, particularly as an information security officer or involvement in regulatory technical projects, are strongly preferred. Key Responsibilities: Develop and maintain … cybersecurity policies and procedures, ensuring compliance with industry standards and local regulations. Real-time monitoring of cybersecurity incidents, including incident analysis, investigation, and mitigation. Oversee and maintain security equipment including firewalls, intrusion prevention systems (IPS), web application firewalls (WAF), and antivirus systems. Perform periodic security drills and regular penetration testing to ensure the integrity of security More ❯

Sr. Security Consultant, AWS Industries, AWSI-SDT-APJ The Amazon Web Services Industry (AWSI) Professional Services APJ (Korea) team is a consulting organization that works with our global enterprise customers in various industries to achieve their business outcomes securely and faster in the cloud. Through project-based support, our security consultants work with our customers on innovative solutions … that promote cloud technology for the purpose of solving customer business problems faster and for long-term business expansion. The AWSI Professional Services Korea team is seeking a Senior Security, Risk, Compliance Consultant who can lead a variety of customer engagements, including building security strategies and roadmaps, architecture design and implementation support, technical assessments, incident response, and security … will work with AWS sales, engineering, training & certifications, and support teams as well as partners to provide technical assistance to customers to ensure they are successful in achieving their security business outcomes on AWS. This includes leading pre-sales on-site visits, understanding customer security and compliance requirements, and proposing and delivering security solutions in customer engagements. More ❯

Senior Information Security Analyst Runa is pioneering a first-of-its-kind payment rail capable of issuing, sending and accepting digital value at scale. Banking and card payment infrastructure still struggles to serve low-volume, high-velocity payments both locally and globally. Businesses send over $20 trillion in refunds, rewards, or remittances to consumers, employees, or freelancers, every year … companies rely on Runa to power instant, flexible global payouts to tens of millions of consumers including Sodexo, TopCashback, Perkbox, Sweatcoin, Coinbase and Globetopper. The Role The Senior Information Security Analyst ensures security controls, policies, and processes are embedded across the organisation. You will enhance cybersecurity by implementing strategies, analysing breaches, and ensuring compliance. This role is key … in guiding engineering teams on application security and integrating security best practices across our technology stack. What Excites You Develop world-class security practices and controls within a high-growth financial technology business shaping the future of payments. Conduct vulnerability assessments, penetration testing, and risk analysis to identify and mitigate security weaknesses. Embed security More ❯

Requisition: 1739 Location: United Kingdom (remote) Short description: We are looking for a skilled Cloud & Infrastructure Security Engineer (w/m/d) to lead the security of our cloud environments and supporting infrastructure. This role will drive the implementation of best practices in cloud architecture, network security, and infrastructure hardening across our SaaS and IoT platforms. … Responsibilities Design and implement secure cloud architecture across Azure/AWS/GCP. Manage identity and access controls (IAM), network segmentation, and key management systems. Develop and enforce cloud security policies, standards, and guidelines. Collaborate with DevOps and engineering teams to integrate security into CI/CD pipelines (e.g., IaC scanning, secrets detection). Perform regular cloud … security assessments, misconfiguration checks, and threat modeling. Monitor infrastructure for vulnerabilities, misconfigurations, and anomalous activity. Lead incident response planning and contribute to business continuity efforts. Work closely with AppSec, GRC, and IoT teams to ensure comprehensive platform security. Qualifications 5+ years of experience in cloud and infrastructure security. Hands-on experience with at least one major cloud provider (Preferably More ❯

The opportunity We're looking for an Information Security Manager to take ownership of Attest's security posture as we scale. Our consumer research platform helps brands make better decisions; keeping our data, people, and customers secure is critical to our success. If you're excited about shaping security in a fast-growing SaaS company - without the … to collaborate in person while ensuring enough time remotely for deep, focused work. Learn more about our hybrid working philosophy here . What You'll Do As our Information Security Manager, you will define and implement security strategies, ensuring we maintain a strong security foundation without slowing down innovation. You'll work cross-functionally with Engineering, IT … and Legal to embed security across the business, enhance compliance, and proactively manage risks. Key Responsibilities Develop and implement security strategy : aligning security plans with business goals. Own our security program : building and maintaining an information security management system. Promote security culture : working closely with IT to educate and enable teams across Attest. Support More ❯

Title: Lead Application Security Engineer Location: Fully Remote (UK-based) Salary: £110,000 – £130,000 base + Bonus Sector: FinTech/Digital Consumer Finance We’re recruiting on behalf of a UK-based FinTech that’s simplifying how consumers engage with credit – offering digital credit cards and financial services built on cloud-native architecture and driven by data. … what’s already built. You’ll have impact and visibility : Reporting to the CIO , with close collaboration with the Head of Information Security (compliance), you’ll shape the AppSec strategy while also getting into the code. You’ll build your own team : This role includes team growth – you’ll start as a leader and grow your own capability beneath … Engineering Second stage with CIO Final conversation and potentially a take-home exercise If you're ready to be the attacker before the attacker is, and want to lead AppSec in an ambitious and growing FinTech, we’d love to hear from you. More ❯

Title: Lead Application Security Engineer Location: Fully Remote (UK-based) Salary: £110,000 – £130,000 base + Bonus Sector: FinTech/Digital Consumer Finance We’re recruiting on behalf of a UK-based FinTech that’s simplifying how consumers engage with credit – offering digital credit cards and financial services built on cloud-native architecture and driven by data. … what’s already built. You’ll have impact and visibility : Reporting to the CIO , with close collaboration with the Head of Information Security (compliance), you’ll shape the AppSec strategy while also getting into the code. You’ll build your own team : This role includes team growth – you’ll start as a leader and grow your own capability beneath … Engineering Second stage with CIO Final conversation and potentially a take-home exercise If you're ready to be the attacker before the attacker is, and want to lead AppSec in an ambitious and growing FinTech, we’d love to hear from you. More ❯

Job Title: Application Security Engineer Location: London, UK Salary: £60,000 per annum Are you an experienced Application Security Engineer looking for your next challenge? Join a cutting-edge fintech firm in the heart of London and play a key role in safeguarding critical financial applications. About the Role: As an Application Security Engineer … you will work closely with development teams to ensure the security and integrity of our fintech applications. You will be responsible for identifying vulnerabilities, conducting security assessments, and implementing robust security measures to protect our systems and client data. Key Responsibilities: Perform security assessments and vulnerability scanning for web applications, APIs, and infrastructure. Collaborate with development … teams to implement secure coding practices and address vulnerabilities. Review and advise on secure architecture and design for new and existing applications. Stay up to date with the latest security threats and technologies to proactively improve security measures. Conduct penetration testing and code reviews to identify and mitigate risks. Contribute to the development of security policies, procedures More ❯

clients locally based skills and technical expertise to drive innovation and adoption of new technology. Your role and responsibilities As a Cybersecurity Architect, you will specialize in DevSecOps, integrating security into the software development lifecycle, automating security practices, and ensuring robust threat modeling and vulnerability management. Your primary focus will be on cloud-native and on-premises environments … with a strong emphasis on application security, infrastructure as code (IaC) security, and cloud security posture management. Additionally, you will contribute to data security efforts, securing data at rest, managing key management systems, and ensuring strong governance across data access. Responsibilities: Integrate security into the software development lifecycle, automating security practices into CI …/CD pipelines. Implement automated security testing (SCA, SAST, DAST) to identify and remediate vulnerabilities at every stage of development. Secure IaC configurations, ensuring secure provisioning, configuration management, and continuous monitoring of infrastructure. Utilize CNAPP and CSPM tools to secure cloud-native environments, focusing on application security and cloud posture management. Design and deploy PKI solutions for More ❯

About the Role: Altura Partners Cyber practice are partnered with a Cyber SaaS vendor looking for a Senior Cloud Security Engineer (internal facing), responsible for safeguarding their cloud and application environments. You'll be spearheading the design and deployment of security controls in thier AWS environment, adopting and extending existing controls in Azure AD/MDM, finding … and addressing posture gaps, and expanding our ability to protect data that really matters. What You'll Do: Design and implement security controls and secure-by-default architecture in AWS and Azure, including but not limited to IAM. Implement secure guardrails for cloud deployments in Terraform Investigate security incidents in conjunction with team, perform root cause analysis, and … recommend corrective actions Participate in on-call and security support responsibilities Collaborate with Engineering, Platform and Development teams to address security issues and implement best practices Develop and maintain security documentation; ISO, NIST and CIS. Stay updated on the latest security trends, vulnerabilities, and technologies to ensure robust protection against evolving threats What You'll Bring More ❯

About the Role: Altura Partners Cyber practice are partnered with a Cyber SaaS vendor looking for a Senior Cloud Security Engineer (internal facing), responsible for safeguarding their cloud and application environments. You'll be spearheading the design and deployment of security controls in thier AWS environment, adopting and extending existing controls in Azure AD/MDM, finding … and addressing posture gaps, and expanding our ability to protect data that really matters. What You'll Do: Design and implement security controls and secure-by-default architecture in AWS and Azure, including but not limited to IAM. Implement secure guardrails for cloud deployments in Terraform Investigate security incidents in conjunction with team, perform root cause analysis, and … recommend corrective actions Participate in on-call and security support responsibilities Collaborate with Engineering, Platform and Development teams to address security issues and implement best practices Develop and maintain security documentation; ISO, NIST and CIS. Stay updated on the latest security trends, vulnerabilities, and technologies to ensure robust protection against evolving threats What You'll Bring More ❯

you attend the office a minimum of 1 day per week. About the Role We are seeking a highly motivated and experienced Vulnerability Management Engineer to join our Cyber Security team. As a Vulnerability Management Engineer, your primary responsibility will be to manage existing vulnerability management-specific tooling, and have an active role in improving existing processes. You will … approach to vulnerability management. Develop integrations for internal and external tools to capture data relevant to the vulnerability remediation process (e.g. by interacting with APIs) Ensure compliance with relevant security standards, frameworks, and regulations Stay up to date with the latest trends and developments in vulnerability management, security standards, and regulations Strong engineering and automation background with a … functional teams and stakeholders Good to have Practical experience in one or more of the Vulnerability Management fields would be desirable but not essential: Endpoint Vulnerability Scanning, Vulnerability Intelligence, AppSec Vulnerability Management, Vulnerability Management of cloud native workloads, External Attack Surface Management Familiar with with TypeScript/Vue.js Open source scanning tool such as Trivy or similar SQL database design More ❯

Are you a passionate security researcher with experience assessing large, complex software products? We are looking for talented individuals who are excited about security research and developing creative solutions for some of Oracle’s most critical customers. Finding and combining bugs to create new attacks is essential in this role. Who We Are We are a world-class … team of application security researchers who love new challenges. We are an inclusive and diverse, with a full range of experience and a global reach. We have the resources of a large enterprise and the energy of a start-up, and we’re working on a critical software assurance initiative with our cloud and mobile engineering teams. Our … mission is to make application security and software assurance a reality, at scale. We’re a dedicated team that leverages each other’s strengths to produce cutting-edge solutions to difficult problems. Join us to grow your career and create the future of software assurance at scale. Work You’ll Do As a member of our team, you More ❯

Do you have a passion for high scale services and working with some of Oracle's most critical customers? We are seeking an experienced, passionate, and talented cyber security engineer with a deep interest in vulnerability management and cloud security. This position is designed for technical security engineers adept at navigating the complexities of cloud security and … leading efforts to increase security posture. In this key role, you will critically assess security architecture decisions, and lead the charge in secure planning, development, and coordination. Your expertise will guide the team through intricate cloud security challenges, ensuring our defences are both robust and adaptable. Who We Are We are a world-class team of high … calibre application security researchers and engineers who thrive on new challenges. We are an inclusive and diverse team with a full spectrum of experience distributed globally. We have the resources of a large enterprise and the energy of a start-up, working on a critical Greenfield software assurance project collaboratively with our cloud and mobile engineering teams. The More ❯

Do you have a passion for high scale services and working with some of Oracle's most critical customers? We are seeking an experienced, passionate, and talented cyber security engineer with a deep interest in vulnerability management and cloud security. This position is designed for technical security engineers adept at navigating the complexities of cloud security and … leading efforts to increase security posture. In this key role, you will critically assess security architecture decisions, and lead the charge in secure planning, development, and coordination. Your expertise will guide the team through intricate cloud security challenges, ensuring our defences are both robust and adaptable. Who We Are We are a world-class team of high … calibre application security researchers and engineers who thrive on new challenges. We are an inclusive and diverse team with a full spectrum of experience distributed globally. We have the resources of a large enterprise and the energy of a start-up, working on a critical Greenfield software assurance project collaboratively with our cloud and mobile engineering teams. The More ❯

of local communities - representing over a third of our economy - yet have been largely neglected both by traditional high street banks and modern fintech providers. Department Description The Allica Security team play a key role in protecting the bank and are responsible for all aspects of security surrounding Applications, Infrastructure and Security Operational Policy. Our mission is … to provide the best-in-class security to protect the bank. We live and breathe the Allica values and deliver services intelligently using automation, intelligence, and innovation. Role Description An experienced Head of IT Security is required to join a fast-paced IT division, to facilitate and enhance all aspects of security within the bank. The role … will have responsibility for identifying potential threats, proposing and implementing mitigative activities and managing these items through to delivery. Using a rich source of Application and Network data, you will have experience of designing and implementing effective security monitoring and alerting strategies whilst remaining a very much hands-on approach to driving forward continuous improvement and using your More ❯

Sr. Security Engineer, AppSec - Amazon Stores Security Job ID: Amazon Development Centre (London) Limited At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon's products and services. We offer talented security professionals the … pipelines, from leading-edge digital healthcare to no-checkout retail, we push the boundaries of technology in every direction using the globe's largest AWS deployment. As a Senior Security Engineer, you will collaborate with software development teams to ensure we keep our customers safe while developing these novel services. In a given day, you might be inspecting an … life harmony. We have dedicated resources that consistently innovate in reducing on-call time and ensuring the team spend their time on the highest-value tasks. Join the stores AppSec organization to work hard, have fun, and make history! Key job responsibilities Creating, updating, and maintaining threat models for a wide variety of software projects. Manual and Automated Secure Code More ❯

months of hands-on penetration testing experience and a strong interest in developing advanced technical skills. This is a rare opportunity to join a highly skilled and diverse security team committed to continuous growth and excellence in the field of offensive security. Key Responsibilities: Conduct hands-on Web Application Penetration Testing Support and contribute to Infrastructure and Cloud … Security Assessments Be mentored and trained towards Adversarial Simulation , Red Team Operations , and other advanced offensive security techniques Write detailed, clear, and professional reports for technical and non-technical stakeholders Collaborate with a team of skilled professionals and contribute to knowledge sharing Requirements: Minimum 6 months of practical penetration testing experience (freelance, consultancy, or internal testing roles considered … OSCP certification is essential (OSEP, OSCE3, or other advanced Offensive Security certifications also accepted) Demonstrable knowledge of Web Application security , including common vulnerabilities (e.g., OWASP Top 10) Strong desire to deepen technical capabilities across various domains, including infrastructure, cloud, and red teaming Excellent written and verbal communication skills Full right to work in the UK (UK Passport More ❯

months of hands-on penetration testing experience and a strong interest in developing advanced technical skills. This is a rare opportunity to join a highly skilled and diverse security team committed to continuous growth and excellence in the field of offensive security. Key Responsibilities: Conduct hands-on Web Application Penetration Testing Support and contribute to Infrastructure and Cloud … Security Assessments Be mentored and trained towards Adversarial Simulation , Red Team Operations , and other advanced offensive security techniques Write detailed, clear, and professional reports for technical and non-technical stakeholders Collaborate with a team of skilled professionals and contribute to knowledge sharing Requirements: Minimum 6 months of practical penetration testing experience (freelance, consultancy, or internal testing roles considered … OSCP certification is essential (OSEP, OSCE3, or other advanced Offensive Security certifications also accepted) Demonstrable knowledge of Web Application security , including common vulnerabilities (e.g., OWASP Top 10) Strong desire to deepen technical capabilities across various domains, including infrastructure, cloud, and red teaming Excellent written and verbal communication skills Full right to work in the UK (UK Passport More ❯

practices, and driving technical initiatives that improve the security of software in production. This is a great opportunity for someone looking to take the next step in their AppSec career while having a meaningful impact across multiple product teams. Application Security Engineer - Responsibilities: Identify and remediate application-level security issues through code analysis, tooling, and … application security or secure software development Strong understanding of common vulnerabilities and how to prevent them (OWASP Top 10) Experience with CI/CD pipelines and integrating AppSec tooling Familiarity with modern programming languages (JavaScript, Java, Python) Excellent communication skills and a collaborative mindset when working with developers *Unfortunately, we are not able to provide sponsorship for this … role.* If you're ready to grow your career in a hands-on AppSec role and help shape secure software at scale, apply now or reach out directly to j.ryan@lawrenceharvey.com . More ❯

practices, and driving technical initiatives that improve the security of software in production. This is a great opportunity for someone looking to take the next step in their AppSec career while having a meaningful impact across multiple product teams. Application Security Engineer - Responsibilities: Identify and remediate application-level security issues through code analysis, tooling, and … application security or secure software development Strong understanding of common vulnerabilities and how to prevent them (OWASP Top 10) Experience with CI/CD pipelines and integrating AppSec tooling Familiarity with modern programming languages (JavaScript, Java, Python) Excellent communication skills and a collaborative mindset when working with developers *Unfortunately, we are not able to provide sponsorship for this … role.* If you're ready to grow your career in a hands-on AppSec role and help shape secure software at scale, apply now or reach out directly to j.ryan@lawrenceharvey.com . More ❯

flexibility in base location, as well as embracing remote working. What will you be doing? Aspects of the role include: HACKING! Learning and developing penetration testing skills in: Infrastructure, Application (web, mobile, desktop), Cloud and AI. Working through a clear and defined certification pathway. Delivering penetration tests to some of our most prestigious clients through well established frameworks. Collaborating … need to do it? Some demonstrable practical experience in penetration testing and vulnerability assessments Understanding of common vulnerabilities and how to exploit or mitigate them. Basic Knowledge of network security, application security and cloud security principles. A passion for all things hacking and the drive to learn more. Excellent communication and report writing skills. Amazing Extras … individuals with diverse backgrounds who all share the “hacker mindset”. If you have the experience, then we want you to apply. Didn’t do a degree in information security? A-Levels weren’t as good as you hoped. Haven’t attended every SANS course going, we don’t mind! Above all, KPMG is looking for someone who is More ❯

flexibility in base location, as well as embracing remote working. What will you be doing? Aspects of the role include: HACKING! Learning and developing penetration testing skills in: Infrastructure, Application (web, mobile, desktop), Cloud and AI. Working through a clear and defined certification pathway. Delivering penetration tests to some of our most prestigious clients through well established frameworks. Collaborating … need to do it? Some demonstrable practical experience in penetration testing and vulnerability assessments Understanding of common vulnerabilities and how to exploit or mitigate them. Basic Knowledge of network security, application security and cloud security principles. A passion for all things hacking and the drive to learn more. Excellent communication and report writing skills. Amazing Extras … individuals with diverse backgrounds who all share the “hacker mindset”. If you have the experience, then we want you to apply. Didn’t do a degree in information security? A-Levels weren’t as good as you hoped. Haven’t attended every SANS course going, we don’t mind! Above all, KPMG is looking for someone who is More ❯