Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Ensure the security of Jaja's software applications throughout their lifecycle.
- Company: Join Jaja, a rapidly growing consumer finance business redefining the finance experience.
- Benefits: Enjoy 25 days holiday, private healthcare options, and annual salary reviews.
- Why this job: Make a real impact in a start-up aiming to revolutionise consumer finance.
- Qualifications: Bachelor's degree in Computer Science or related field with 5 years in Application Security.
- Other info: Collaborate with cross-functional teams and promote a culture of security awareness.
The predicted salary is between 43200 - 72000 £ per year.
Jaja is a consumer finance business that launched its first product, a digital credit card, in 2018. Since then, it has grown rapidly, completed the acquisition of a multi-£000m credit card portfolio, and launched a significant partnership with the UK supermarket giant Asda. With backing from several major Private Equity funds, Jaja has an ambitious growth strategy that includes providing consumer finance in partnership with leading consumer brands, with a number of partnerships secured alongside an exciting pipeline of opportunities. Jaja is on a mission to redefine the consumer finance experience and liberate customers from needless complexity, wasted time, and frustration.
As an Application Security Specialist, you will be responsible for ensuring the security of our Jaja software applications throughout their lifecycle. You will work closely with our development teams to identify and mitigate security risks, implement best practices, and establish robust security measures to protect our applications from potential threats.
Key Accountabilities
- Security Assessment: Conduct comprehensive security assessments of new and existing applications to identify vulnerabilities, security weaknesses, and potential risks.
- Threat Modeling: Collaborate with development teams to perform threat modelling exercises, identifying potential security threats and implementing appropriate security controls to mitigate risks.
- Code Review: Review application code to identify security flaws, coding errors, and vulnerabilities, providing guidance and recommendations for remediation.
- Security Testing: Plan and execute security testing activities, including SAST/DAST/IAST, penetration testing, fuzz testing, and vulnerability scanning to evaluate the effectiveness of security controls and identify weaknesses.
- Security Compliance: Ensure that applications comply with relevant security standards, regulations, and industry best practices, such as OWASP Top 10, OWASP ASVS, MAVS, PCI DSS, and GDPR.
- Security Architecture: Assist in designing and implementing secure application architectures, including authentication mechanisms, access controls, encryption, and secure communication protocols.
- Incident Response: Collaborate with incident response teams to investigate security incidents, analyze root causes, and implement corrective actions to prevent recurrence.
- Security Awareness: Promote security awareness among development teams through training sessions, workshops, and educational materials, fostering a culture of security responsibility.
- Documentation: Maintain documentation related to application security, including security policies, procedures, and guidelines, ensuring accuracy and accessibility for relevant stakeholders.
Essential Skills and Experience
- Bachelor's degree in Computer Science, Information Security, or related field.
- Minimum 5 years experience in Application Security.
- Experience with secure software development methodologies, such as Secure SDLC and DevSecOps.
- Understanding of IDEs, Code repositories & CI/CD Solutions.
- Proven experience in application security assessment, penetration testing, and vulnerability management.
- Strong understanding of web application security concepts, including secure coding practices, authentication mechanisms, and common vulnerabilities.
- Proficiency in security testing tools and techniques, such as Burp Suite, SonarQube, Checkmarx, Veracode, etc.
- Excellent analytical and problem-solving skills, with the ability to think critically and creatively to address complex security challenges.
- Strong communication and interpersonal skills, with the ability to effectively collaborate with cross-functional teams and communicate technical concepts to non-technical stakeholders.
Desirable Skills and Experience
- Knowledge of relevant regulatory requirements and compliance standards, such as GDPR, PCI DSS, and ISO 27001.
What’s in it for you?
- The chance to make a real impact in a growing start-up on a mission to change the face of the consumer finance industry forever.
- Annual Salary Review
- 4x life insurance cover
- Optional private healthcare
- Employee assistance program
- Annual staff get-together
- 25-day holiday allowance plus UK bank holidays
- Pension contributions
Application Security Specialist employer: Helpmesettle
Contact Detail:
Helpmesettle Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Application Security Specialist
✨Tip Number 1
Familiarise yourself with Jaja's mission and values. Understanding their goal to simplify consumer finance will help you align your answers during interviews, showcasing how your skills can contribute to their vision.
✨Tip Number 2
Brush up on the specific security standards mentioned in the job description, such as OWASP Top 10 and PCI DSS. Being able to discuss these frameworks in detail will demonstrate your expertise and commitment to application security.
✨Tip Number 3
Prepare examples of past experiences where you've successfully identified and mitigated security risks. Use the STAR method (Situation, Task, Action, Result) to structure your responses, making it easier for interviewers to see your impact.
✨Tip Number 4
Network with current or former employees of Jaja on platforms like LinkedIn. Engaging with them can provide insights into the company culture and expectations, which can be invaluable during your application process.
We think you need these skills to ace Application Security Specialist
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in application security, secure software development methodologies, and any specific tools mentioned in the job description, such as Burp Suite or SonarQube.
Craft a Strong Cover Letter: In your cover letter, express your passion for application security and how your skills align with Jaja's mission to simplify consumer finance. Mention specific projects or experiences that demonstrate your ability to identify and mitigate security risks.
Showcase Relevant Skills: Clearly outline your experience with security assessments, threat modelling, and code reviews. Use examples to illustrate your analytical and problem-solving skills, especially in relation to complex security challenges.
Highlight Continuous Learning: Mention any ongoing education or certifications related to application security, such as knowledge of GDPR or PCI DSS compliance. This shows your commitment to staying updated in the field and aligns with Jaja's focus on best practices.
How to prepare for a job interview at Helpmesettle
✨Understand the Company’s Mission
Before your interview, make sure you understand Jaja's mission to simplify consumer finance. Be prepared to discuss how your skills as an Application Security Specialist can contribute to this goal and enhance the customer experience.
✨Showcase Your Technical Skills
Be ready to demonstrate your expertise in application security. Discuss specific tools you've used, such as Burp Suite or Checkmarx, and provide examples of how you've conducted security assessments or penetration testing in previous roles.
✨Prepare for Scenario-Based Questions
Expect scenario-based questions that assess your problem-solving abilities. Think about past experiences where you identified vulnerabilities or implemented security measures, and be ready to explain your thought process and the outcomes.
✨Emphasise Collaboration
Since the role involves working closely with development teams, highlight your communication and interpersonal skills. Share examples of how you've successfully collaborated with cross-functional teams to promote security awareness and implement best practices.
