Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Conduct security reviews of web applications and produce detailed audit reports.
- Company: Join a forward-thinking company focused on application security and innovation.
- Benefits: Enjoy remote work flexibility and a focus on advisory tasks without remediation.
- Why this job: Make a real-world impact while working independently on high-visibility projects.
- Qualifications: 4+ years in Application Security with strong coding knowledge and technical writing skills.
- Other info: Prompt onboarding and structured communication for a smooth start.
The predicted salary is between 48000 - 72000 £ per year.
We are seeking a highly experienced Application Security Consultant to conduct a comprehensive security review of a web-based application. This is a non-invasive, review-only assignment — no remediation or code modifications are required.
You’ll work independently to assess application code and related configurations, identify any security vulnerabilities, and deliver a detailed, evidence-based security audit report.
Key Responsibilities- Perform static code analysis and security audit of a web application.
- Identify potential vulnerabilities in logic, data handling, authentication, and access control.
- Assess the application against OWASP Top 10 and other secure coding standards.
- Review third-party dependencies for known issues.
- Produce a professional security report with risk ratings, findings, and recommendations.
- 4+ years in Application Security, AppSec consulting, or Secure Code Review roles.
- Deep understanding of secure coding practices in web frameworks (e.g., JavaScript, Python, PHP, Node.js).
- Familiarity with tools like Snyk, Checkmarx, Veracode, or Burp Suite (passive scanning).
- Knowledge of OWASP, CWE, and general secure software development principles.
- Strong technical writing and communication skills.
- Preferred certifications: OSCP, CSSLP, GWAPT, CEH, or equivalent.
- One formal written report including:
- Executive summary for non-technical stakeholders.
- Technical breakdown of findings with severity and impact.
- Recommended mitigation guidance (no implementation expected).
- Remote flexibility
- No remediation work — fully focused on review and advisory
- A project with high visibility and real-world impact
- Prompt onboarding and structured communication
Message us directly or email dylan@evlpc.com with your CV, availability, and examples of previous audit/reporting work if available.
Contact Detail:
EVOLUTION PROJECT CONSULTING LIMITED Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Senior Application Security Consultant
✨Tip Number 1
Familiarise yourself with the OWASP Top 10 vulnerabilities and ensure you can discuss them in detail. This will not only show your expertise but also demonstrate your understanding of the specific requirements for the role.
✨Tip Number 2
Prepare to showcase your experience with static code analysis tools like Snyk or Checkmarx. Be ready to discuss specific projects where you've used these tools to identify vulnerabilities, as this will highlight your practical skills.
✨Tip Number 3
Brush up on your technical writing skills, as producing a professional security report is a key part of the role. Consider creating a sample report based on a previous project to demonstrate your ability to communicate findings effectively.
✨Tip Number 4
Network with professionals in the application security field. Engaging with others in the industry can provide insights into current trends and challenges, which may come in handy during discussions with us at StudySmarter.
We think you need these skills to ace Senior Application Security Consultant
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights your experience in Application Security, particularly focusing on your roles in AppSec consulting and Secure Code Review. Emphasise your familiarity with secure coding practices and the tools mentioned in the job description.
Craft a Strong Cover Letter: Write a cover letter that specifically addresses the key responsibilities of the role. Mention your experience with static code analysis, OWASP standards, and your ability to produce detailed security reports. This is your chance to showcase your communication skills.
Showcase Relevant Projects: If you have examples of previous audit or reporting work, include them in your application. Highlight any projects where you identified vulnerabilities or produced security reports, as this will demonstrate your capability for the role.
Proofread Your Application: Before submitting, carefully proofread your CV and cover letter. Ensure there are no grammatical errors and that your documents are clear and professional. A polished application reflects your attention to detail, which is crucial in security roles.
How to prepare for a job interview at EVOLUTION PROJECT CONSULTING LIMITED
✨Showcase Your Technical Expertise
Be prepared to discuss your experience with secure coding practices and the specific web frameworks mentioned in the job description. Highlight any relevant projects where you performed static code analysis or security audits.
✨Familiarise Yourself with OWASP
Since the role involves assessing applications against the OWASP Top 10, make sure you can articulate these vulnerabilities and how they apply to real-world scenarios. This will demonstrate your understanding of application security standards.
✨Prepare for Technical Questions
Expect questions about tools like Snyk, Checkmarx, and Burp Suite. Be ready to explain how you've used these tools in past roles and the outcomes of your assessments.
✨Communicate Clearly and Professionally
As you'll be producing a formal security report, strong communication skills are essential. Practice explaining complex technical concepts in a way that non-technical stakeholders can understand, as this will be crucial during the interview.
