Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Join us as an Application Security Test Engineer, ensuring secure applications through testing and collaboration.
- Company: Market-leading software house with a focus on security and innovation.
- Benefits: Earn up to £70k, enjoy hybrid working, bonuses, and great perks like gym memberships.
- Why this job: Make a real impact by embedding security into applications used by millions worldwide.
- Qualifications: Strong understanding of secure software development and hands-on experience with security testing tools.
- Other info: Diverse workplace with excellent learning opportunities and a commitment to equality.
The predicted salary is between 42000 - 84000 £ per year.
Are you a security focussed Test Engineer? You could be joining a market leading software house that’s remote access product is used by hundreds of millions of users worldwide.
What’s in it for you:
- Salary to £70k
- Bonus
- Hybrid working
- Pension, Private Medical Care, Life Assurance, Travel Insurance
- Subsidised gym membership and a range of other perks
Your role:
As an Application Security Test Engineer you’ll play a key role in building security into applications, carrying out threat modelling and risk assessments during the design phase to ensure solutions are secure by default. You’ll help define security requirements for new features and take part in architecture reviews to spot and address potential risks early.
Working closely with development teams, you’ll carry out secure code reviews and provide guidance on best practices, including alignment with CIS Critical Security Controls and the OWASP Top 10, collaborating with engineers to embed security into development workflows rather than treating it as an afterthought.
You’ll be hands-on with security testing across a range of environments, running Dynamic Application Security Testing (DAST) against live applications, focusing on issues such as cross-site scripting, SQL injection and broken access control. You’ll also use Interactive Application Security Testing (IAST) tools for runtime analysis, including tools such as Burp Suite, OWASP ZAP and Frida, alongside Static Application Security Testing (SAST) and software composition analysis to assess source code, binaries, and third-party dependencies.
Location / WFH:
You can work from home most of the time, meeting up with colleagues in the Cambridge office on a weekly / monthly basis.
About you:
- You have a strong understanding of the secure software development lifecycle and DevSecOps principles
- You have a good knowledge of Application Security principles and common vulnerabilities (e.g., XSS, SQL Injection, Broken Access Control)
- You have hands-on experience with DAST, IAST and Penetration Testing tools (e.g., Burp Suite, OWASP ZAP, Frida) and Static Application Security Testing (SAST)
- You can read and understand code (e.g. Java, Python, C++ or similar)
- You’re familiar with using software composition analysis (SCA) tools such as Blackduck, Mend / Whitesource, Snyk or similar
- You’re collaborative and pragmatic with great communications skills
Apply now to find out more about this opportunity. At Client Server we believe in a diverse workplace that allows people to play to their strengths and continually learn. We’re an equal opportunities employer whose people come from all walks of life and will never discriminate based on race, colour, religion, sex, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. The clients we work with share our values.
Application Security Test Engineer in Cambridge employer: Client Server
Contact Detail:
Client Server Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Application Security Test Engineer in Cambridge
✨Tip Number 1
Network like a pro! Reach out to folks in the industry on LinkedIn or at local meetups. You never know who might have the inside scoop on job openings or can refer you directly.
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your projects, especially those related to application security. This gives potential employers a taste of what you can do.
✨Tip Number 3
Prepare for interviews by brushing up on common security vulnerabilities and testing tools. Be ready to discuss how you've tackled issues like XSS or SQL injection in past roles.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who are proactive about their job search.
We think you need these skills to ace Application Security Test Engineer in Cambridge
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Application Security Test Engineer role. Highlight your experience with DAST, IAST, and any relevant tools like Burp Suite or OWASP ZAP. We want to see how your skills align with what we're looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about application security and how your background makes you a great fit for our team. Keep it engaging and personal – we love a bit of personality!
Showcase Your Projects: If you've worked on any projects related to application security, make sure to mention them! Whether it's a personal project or something from a previous job, we want to see how you've applied your skills in real-world scenarios.
Apply Through Our Website: Don't forget to apply through our website! It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it gives you a chance to explore more about us and what we do!
How to prepare for a job interview at Client Server
✨Know Your Security Stuff
Make sure you brush up on your knowledge of application security principles and common vulnerabilities like XSS and SQL Injection. Be ready to discuss how you've applied these in past projects, as this will show your practical understanding.
✨Familiarise with Tools
Get hands-on experience with tools like Burp Suite, OWASP ZAP, and Frida before the interview. Being able to talk about specific instances where you've used these tools will demonstrate your technical skills and readiness for the role.
✨Understand the Secure Development Lifecycle
Be prepared to discuss the secure software development lifecycle and DevSecOps principles. Think of examples from your experience where you've integrated security into development workflows, as this is crucial for the position.
✨Show Your Collaborative Side
Since the role involves working closely with development teams, highlight your communication skills and any collaborative projects you've been part of. Share how you’ve guided teams on best practices and security requirements to embed security from the start.
