Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Conduct security reviews of web applications and identify vulnerabilities.
- Company: Join Evolution Project Consulting, a leader in application security consulting.
- Benefits: Enjoy remote work flexibility and focus solely on advisory tasks.
- Why this job: Make a real-world impact with high visibility projects and structured communication.
- Qualifications: 4+ years in Application Security with knowledge of OWASP and secure coding standards.
- Other info: No remediation work required; just pure review and advisory.
The predicted salary is between 43200 - 72000 £ per year.
About the Role
We are seeking a highly experienced Application Security Consultant to conduct a comprehensive security review of a web-based application. This is a non-invasive, review-only assignment — no remediation or code modifications are required. You’ll work independently to assess application code and related configurations, identify any security vulnerabilities, and deliver a detailed, evidence-based security audit report.
Key Responsibilities
- Perform static code analysis and security audit of a web application.
- Identify potential vulnerabilities in logic, data handling, authentication, and access control.
- Assess the application against OWASP Top 10 and other secure coding standards.
- Review third-party dependencies for known issues.
- Produce a professional security report with risk ratings, findings, and recommendations.
Required Skills & Experience
- 4+ years in Application Security, AppSec consulting, or Secure Code Review roles.
- Familiarity with tools like Snyk, Checkmarx, Veracode, or Burp Suite (passive scanning).
- Knowledge of OWASP, CWE, and general secure software development principles.
- Strong technical writing and communication skills.
- Preferred certifications: OSCP, CSSLP, GWAPT, CEH, or equivalent.
Executive summary for non-technical stakeholders. Technical breakdown of findings with severity and impact. Recommended mitigation guidance (no implementation expected).
Why Join Us?
- Remote flexibility
- No remediation work — fully focused on review and advisory
- A project with high visibility and real-world impact
- Prompt onboarding and structured communication
How to Apply
Message us directly or email [emailprotected] with your CV, availability, and examples of previous audit/reporting work if available.
Senior Application Security Consultant employer: JR United Kingdom
Contact Detail:
JR United Kingdom Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Senior Application Security Consultant
✨Tip Number 1
Familiarise yourself with the OWASP Top 10 vulnerabilities, as this role heavily focuses on identifying these issues. Being able to discuss these vulnerabilities in detail during your interview will demonstrate your expertise and understanding of application security.
✨Tip Number 2
Make sure you have a solid grasp of the tools mentioned in the job description, like Snyk and Burp Suite. If you can showcase your experience with these tools in practical scenarios, it will give you an edge over other candidates.
✨Tip Number 3
Prepare to discuss your previous audit and reporting work in detail. Highlight specific examples where you identified vulnerabilities and how you communicated these findings to both technical and non-technical stakeholders.
✨Tip Number 4
Since this role involves working independently, be ready to demonstrate your self-management skills. Share examples of how you've successfully managed projects or tasks without direct supervision, showcasing your ability to deliver high-quality results.
We think you need these skills to ace Senior Application Security Consultant
Some tips for your application 🫡
Understand the Role: Before applying, make sure you fully understand the responsibilities and requirements of the Senior Application Security Consultant position. Familiarise yourself with key concepts like static code analysis, OWASP Top 10, and secure coding standards.
Tailor Your CV: Highlight your relevant experience in application security, particularly any roles involving AppSec consulting or secure code reviews. Be specific about the tools you've used, such as Snyk or Veracode, and mention any certifications you hold that are relevant to the role.
Craft a Strong Cover Letter: Write a cover letter that showcases your technical writing skills and explains why you're a great fit for this role. Mention your experience with security audits and your ability to communicate findings to non-technical stakeholders.
Provide Evidence of Previous Work: If possible, include examples of previous audit or reporting work in your application. This could be in the form of case studies or summaries of past projects that demonstrate your expertise and the impact of your work.
How to prepare for a job interview at JR United Kingdom
✨Showcase Your Technical Expertise
Be prepared to discuss your experience with application security tools like Snyk, Checkmarx, and Veracode. Highlight specific projects where you performed static code analysis or security audits, and be ready to explain your approach to identifying vulnerabilities.
✨Familiarise Yourself with OWASP Top 10
Since the role involves assessing applications against the OWASP Top 10, ensure you can articulate what these vulnerabilities are and how they can impact an application. Prepare examples of how you've addressed these issues in past roles.
✨Prepare a Sample Report
If possible, bring a sample security audit report that you've produced in the past. This will demonstrate your ability to communicate findings effectively and provide a professional overview of your work.
✨Communicate Clearly with Non-Technical Stakeholders
Since you'll need to produce executive summaries for non-technical stakeholders, practice explaining complex security concepts in simple terms. This will show your ability to bridge the gap between technical and non-technical audiences.
