At a Glance
- Tasks: Join our team to enhance application security and guide engineering teams on best practices.
- Company: Dynamic tech company focused on innovative security solutions.
- Benefits: Competitive salary, inclusive culture, and opportunities for professional growth.
- Other info: Engage in exciting challenges like CTFs and bug-bounty programs.
- Why this job: Make a real impact by securing cutting-edge applications in a collaborative environment.
- Qualifications: 3-5 years in application security and knowledge of secure coding practices.
The predicted salary is between 60000 - 80000 £ per year.
Intermedia has a wide portfolio of internally developed application software, ranging from web and desktop apps to lower level PBX solutions. Due to the growing demand for integrating security activities into diverse development processes, Intermedia is looking for an experienced and self‑motivated Application Security Engineer to help us deliver built‑in security to our products. As part of the Global Security team, you will support our company‑wide application security program, helping the company build secure products. You will be the voice of security for all things related to application security to our spectrum of engineering teams, guiding the architecture and execution of our SDLC throughout the enterprise. This position is an individual contributor role, reporting directly to the Manager, Application Security.
What you will be doing:
- Perform design and architecture review of new features, suggest security requirements
- Collaborate with DevOps and engineering teams, advising on security features and best practices in SDLC
- Utilize static security scanning tools, review findings and coordinate remediation actions
- Perform ongoing manual security assessments
- Review the results of external penetration tests and communicate suggested fixes to development teams
- Provide on‑demand support on application security topics
- Drive process improvement ideas
- Assist with vetting and intake of defects from 3rd party security researchers via our Bug Bounty program
What you will bring to the role:
- 3‑5 years of experience in the application security field
- Bachelor's or Master’s degree in a related field of expertise
- Knowledge of secure coding best practices and industry standards (such as OWASP) and the ability to apply them to different programming languages
- Familiarity with SDLC and DevSecOps concepts and hands‑on experience in implementing them
- Knowledge and/or hands‑on experience with identifying AI threats in a security landscape
- Experience in using static and dynamic security scanning tools (such as BurpSuite, ZAP, and Snyk, or other related technologies)
- Experience with programming languages such as Python is preferred
- Ability to explain application security threats and mitigation options to both developers and project managers
- Good communication skills in written and verbal English
- Experience and/or knowledge in securing applications within cloud platforms (AWS, Azure) and containerized environments (Docker, Kubernetes)
- Participation in CTF challenges and bug‑bounty programs
Diversity, Inclusion, and Equal Opportunity
We hire, promote, and compensate employees based on their ability to perform their job responsibilities, without regard to race, color, creed, religion, sex, gender, marital status, national origin, ancestry, age, citizenship, physical or mental disability, sexual orientation, or any other basis protected by applicable law. We do not tolerate employment discrimination in the workplace, and we are committed to making reasonable accommodations for identified disabilities or other limitations as required by all applicable laws. We are an equal opportunity employer and value diversity at our company.
Application Security Engineer employer: Intermedia Intelligent Communications
Intermedia is an exceptional employer that fosters a collaborative and innovative work culture, particularly for the role of Application Security Engineer. With a strong commitment to employee growth, we offer competitive compensation, opportunities for professional development, and a diverse environment where every voice is valued. Located in the United Kingdom, our team thrives on integrating security into our software development processes, ensuring that you will play a crucial role in shaping secure products while enjoying the benefits of a supportive and inclusive workplace.
Contact Details:
Intermedia Intelligent Communications Recruitment Team
StudySmarter Expert Advice🤫
We think this is how you could land Application Security Engineer
✨Network Like a Pro
Get out there and connect with folks in the industry! Attend meetups, webinars, or even local tech events. The more people you know, the better your chances of landing that Application Security Engineer role.
✨Show Off Your Skills
Create a portfolio showcasing your projects, especially those related to application security. Whether it's a GitHub repo or a personal website, let your work speak for itself. We love seeing practical examples of your expertise!
✨Ace the Interview
Prepare for technical interviews by brushing up on your knowledge of secure coding practices and SDLC. Be ready to discuss real-world scenarios and how you've tackled security challenges in the past. Confidence is key!
✨Apply Through Our Website
Don't forget to apply directly through our website! It’s the best way to ensure your application gets noticed. Plus, we’re always on the lookout for passionate candidates who want to make a difference in application security.
We think you need these skills to ace Application Security Engineer
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Application Security Engineer role. Highlight your experience with secure coding practices, SDLC, and any relevant tools you've used. We want to see how your skills align with what we're looking for!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're passionate about application security and how you can contribute to our team. Be sure to mention any specific projects or experiences that relate to the job description.
Showcase Your Technical Skills:Don’t forget to showcase your technical skills in your application. Mention your familiarity with tools like BurpSuite, ZAP, and Snyk, as well as your programming experience. We love seeing candidates who can hit the ground running!
Apply Through Our Website:We encourage you to apply through our website for the best chance of getting noticed. It’s super easy, and you’ll be able to submit all your documents in one go. Plus, it helps us keep track of your application!
How to prepare for a job interview at Intermedia Intelligent Communications
✨Know Your Stuff
Make sure you brush up on your knowledge of secure coding best practices and industry standards like OWASP. Be ready to discuss how you've applied these in past projects, as this will show your practical experience and understanding of application security.
✨Showcase Your Collaboration Skills
Since you'll be working closely with DevOps and engineering teams, prepare examples of how you've successfully collaborated in the past. Highlight any specific instances where your input improved security features or processes during the SDLC.
✨Familiarise Yourself with Tools
Get comfortable with static and dynamic security scanning tools such as BurpSuite, ZAP, and Snyk. If you have experience using these tools, be ready to discuss specific findings and how you coordinated remediation actions in previous roles.
✨Communicate Clearly
Practice explaining complex application security threats and mitigation strategies in simple terms. You'll need to communicate effectively with both developers and project managers, so being able to break down technical jargon is key.
