Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Conduct security reviews of web applications and identify vulnerabilities.
- Company: Join Evolution Project Consulting, a leader in application security consulting.
- Benefits: Enjoy remote work flexibility and focus solely on advisory tasks.
- Why this job: Make a real-world impact with high visibility projects and structured communication.
- Qualifications: 4+ years in Application Security with knowledge of OWASP and secure coding standards.
- Other info: No remediation work required; just pure review and advisory.
The predicted salary is between 36000 - 60000 £ per year.
About the Role
We are seeking a highly experienced Application Security Consultant to conduct a comprehensive security review of a web-based application. This is a non-invasive, review-only assignment — no remediation or code modifications are required. You’ll work independently to assess application code and related configurations, identify any security vulnerabilities, and deliver a detailed, evidence-based security audit report.
Key Responsibilities
- Perform static code analysis and security audit of a web application.
- Identify potential vulnerabilities in logic, data handling, authentication, and access control.
- Assess the application against OWASP Top 10 and other secure coding standards.
- Review third-party dependencies for known issues.
- Produce a professional security report with risk ratings, findings, and recommendations.
Required Skills & Experience
- 4+ years in Application Security, AppSec consulting, or Secure Code Review roles.
- Familiarity with tools like Snyk, Checkmarx, Veracode, or Burp Suite (passive scanning).
- Knowledge of OWASP, CWE, and general secure software development principles.
- Strong technical writing and communication skills.
- Preferred certifications: OSCP, CSSLP, GWAPT, CEH, or equivalent.
Executive summary for non-technical stakeholders. Technical breakdown of findings with severity and impact. Recommended mitigation guidance (no implementation expected).
Why Join Us?
- Remote flexibility
- No remediation work — fully focused on review and advisory
- A project with high visibility and real-world impact
- Prompt onboarding and structured communication
How to Apply
Message us directly or email [emailprotected] with your CV, availability, and examples of previous audit/reporting work if available.
Senior Application Security Consultant employer: JR United Kingdom
Contact Detail:
JR United Kingdom Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Senior Application Security Consultant
✨Tip Number 1
Familiarise yourself with the OWASP Top 10 vulnerabilities, as this role heavily focuses on identifying these issues. Being able to discuss these vulnerabilities in detail during your interview will demonstrate your expertise and understanding of application security.
✨Tip Number 2
Make sure you have a solid grasp of the tools mentioned in the job description, like Snyk and Burp Suite. If you can showcase your experience with these tools or even provide examples of how you've used them in past projects, it will set you apart from other candidates.
✨Tip Number 3
Prepare to discuss your previous audit and reporting work in detail. Highlight specific findings, risk ratings, and recommendations you've made in the past, as this will show your ability to produce professional security reports that align with the expectations of this role.
✨Tip Number 4
Since this position involves working independently, be ready to demonstrate your self-management skills. Share examples of how you've successfully managed projects or tasks on your own, which will reassure us of your capability to handle the responsibilities of this role.
We think you need these skills to ace Senior Application Security Consultant
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights your experience in application security, particularly focusing on roles related to AppSec consulting and secure code review. Include specific tools you've used, such as Snyk or Burp Suite, and any relevant certifications.
Craft a Strong Cover Letter: Write a cover letter that addresses the key responsibilities mentioned in the job description. Emphasise your ability to conduct static code analysis and your familiarity with OWASP standards. Make it personal and show your enthusiasm for the role.
Showcase Relevant Experience: If you have previous audit or reporting work, include examples in your application. Highlight any significant findings or recommendations you've made in past roles, as this will demonstrate your capability to produce a professional security report.
Proofread Your Application: Before submitting, carefully proofread your CV and cover letter. Ensure there are no spelling or grammatical errors, as attention to detail is crucial in security roles. A polished application reflects your professionalism.
How to prepare for a job interview at JR United Kingdom
✨Know Your Tools
Familiarise yourself with the tools mentioned in the job description, such as Snyk, Checkmarx, Veracode, and Burp Suite. Be prepared to discuss your experience with these tools and how you've used them in previous roles.
✨Understand OWASP Top 10
Make sure you have a solid understanding of the OWASP Top 10 vulnerabilities. Be ready to explain how you would assess an application against these standards and provide examples from your past work.
✨Prepare Your Audit Report
Since you'll need to produce a professional security report, think about how you would structure your findings. Prepare to discuss how you would present risk ratings, findings, and recommendations clearly and effectively.
✨Communicate Clearly
Strong communication skills are essential for this role. Practice explaining complex technical concepts in simple terms, especially for non-technical stakeholders. This will demonstrate your ability to bridge the gap between technical and non-technical audiences.
