At a Glance
- Tasks: Own security in the software development lifecycle and embed automated testing.
- Company: Join HealthHero, Europe's largest digital clinic, and shape security in a fast-growing business.
- Benefits: Flexible working in London or Bristol, competitive salary, and potential for permanent role.
- Other info: Collaborate with teams across the UK and France in a dynamic environment.
- Why this job: Make a real impact on digital healthcare security while working with innovative tech.
- Qualifications: Experience in application security and familiarity with DevSecOps practices.
The predicted salary is between 60000 - 75000 £ per year.
We are HealthHero, Europe’s largest digital clinic. Join us at a pivotal moment as we scale our digital healthcare platform across Europe — giving you the chance to shape security at the heart of a fast-growing, AI-driven business. We are recruiting an exciting Application Security Engineer on an initial 12 month fixed term contract, with a view to becoming permanent – based in either our London or Bristol office two days per week.
About the role
You will own security across the software development lifecycle, embedding automated security testing into CI/CD pipelines and enabling development teams to ship secure code quickly. This role works closely with UK and France engineering teams.
As an experienced Application Security Engineer, your working day will include but not be limited to:
- DevSecOps Pipeline Security
- Implement and maintain security testing in GitLab CI pipelines
- Configure and tune SAST, DAST, dependency scanning, and secrets detection
- Build automated security gates that balance rigour with delivery velocity
- Enable self-serve security tooling for development teams
- Contribute code and patches to security tooling and configurations
Secure Development
- Define and enforce secure coding standards
- Conduct security-focused code reviews
- Provide guidance and training to development teams on secure coding practices
Application Security Engineer employer: Health Hero
At HealthHero, we pride ourselves on being a leading employer in the digital healthcare sector, offering a dynamic work culture that fosters innovation and collaboration. Our commitment to employee growth is evident through continuous learning opportunities and the chance to shape security practices within a fast-paced, AI-driven environment. With flexible working arrangements in vibrant locations like London and Bristol, we provide a unique opportunity to make a meaningful impact while enjoying a supportive and inclusive workplace.
StudySmarter Expert Advice🤫
We think this is how you could land Application Security Engineer
✨Tip Number 1
Network like a pro! Reach out to folks in the industry on LinkedIn or at meetups. We can’t stress enough how personal connections can lead to job opportunities, so don’t be shy!
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your projects and contributions to security tooling. This gives potential employers a taste of what you can bring to the table.
✨Tip Number 3
Prepare for those interviews! Brush up on common application security questions and be ready to discuss your experience with CI/CD pipelines and automated testing. We want you to shine!
✨Tip Number 4
Apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who are genuinely interested in joining our team.
We think you need these skills to ace Application Security Engineer
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Application Security Engineer role. Highlight your experience with DevSecOps, CI/CD pipelines, and any relevant security tools you've worked with. We want to see how your skills align with what we're looking for!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're passionate about application security and how you can contribute to our mission at HealthHero. Keep it concise but impactful – we love a good story!
Showcase Your Projects:If you've worked on any projects related to security testing or secure coding, make sure to mention them. We’re keen to see real examples of your work and how you've implemented security measures in past roles.
Apply Through Our Website:We encourage you to apply through our website for the best chance of getting noticed. It helps us keep track of applications and ensures you’re considered for the role. Plus, it’s super easy – just a few clicks and you’re done!
How to prepare for a job interview at Health Hero
✨Know Your Stuff
Make sure you brush up on your knowledge of DevSecOps and the specific security tools mentioned in the job description, like GitLab CI, SAST, and DAST. Being able to discuss how you've implemented these in past roles will show that you're not just familiar with the concepts but have practical experience.
✨Showcase Your Collaboration Skills
Since this role involves working closely with engineering teams in the UK and France, be prepared to talk about your experience collaborating across teams. Share examples of how you've successfully communicated security needs to developers and how you've helped them integrate security into their workflows.
✨Demonstrate Problem-Solving Abilities
Be ready to discuss specific challenges you've faced in application security and how you overcame them. This could include instances where you had to balance security with delivery speed or how you’ve built automated security gates. Real-world examples will make your answers more impactful.
✨Ask Insightful Questions
Prepare some thoughtful questions about the company's approach to security and how they envision the role evolving. This shows your genuine interest in the position and helps you gauge if the company culture aligns with your values, especially in a fast-growing environment like HealthHero.
