At a Glance
- Tasks: Join us in enhancing security through AI and automated tools while collaborating with diverse teams.
- Company: Dynamic tech company focused on innovative security solutions.
- Benefits: Competitive salary, flexible working, generous holiday, and personal development budgets.
- Other info: Embrace a culture of trust and collaboration with excellent career growth opportunities.
- Why this job: Make a real impact in security while working with cutting-edge technology and a supportive team.
- Qualifications: Experience in AppSec, coding skills, and a passion for automation and AI.
The predicted salary is between 63000 - 93000 € per year.
This role is based in Bristol, London or Edinburgh and requires an existing right to work in the UK. At this time, we are not able to offer visa sponsorship for this role. We are committed to building a diverse, global team and our sponsorship policy is evaluated on a role‑by‑role basis.
What You’ll Be Doing
- AI‑Driven Security: Help engineers safely adopt AI tools and experiment with AI to automate the “heavy lifting” of security, such as automated remediation and risk assessment.
- Automated Security Scanning: Implement and tune SAST/DAST/SCA tools across the SDLC, increasing fidelity and reducing noise to maintain developer flow state.
- Vulnerability Management: Embed modern vulnerability management practices within engineering teams, consulting on triage and using AI tools to accelerate detection, risk assessment, and remediation.
- Secure Design & Threat Modeling: Partner with architects, product managers, and engineers to incorporate security early. Lead Threat Modeling sessions and develop secure‑by‑design principles.
- Supply Chain Security: Develop robust standards and tooling to safeguard software against open‑source dependency threats and supply‑chain attacks.
- Security Culture & Champions: Partner with Security Champions across Kaluza to promote a security‑first culture and increase engagement within the technology community.
Is This the Job for You?
We are looking for an experienced AppSec professional who is comfortable reading code as well as discussing architecture.
- Deep Security Knowledge: Strong familiarity with the OWASP Top 10, API Security (REST/GraphQL), and secure SDLC practices.
- Developer Mindset: Comfortable working with modern languages—specifically TypeScript & Go—and understanding how to secure cloud‑native environments.
- Automation Experience: Implemented security tools within CI/CD pipelines (e.g., GitHub Actions) and prefer automation over manual checklists.
- Consultative Approach: Can explain complex security risks to non‑security stakeholders and guide teams toward pragmatic, scalable solutions.
- AI Curiosity: Interested in both the security risks and defensive opportunities provided by GenAI.
Benefits
- Pension Scheme
- Discretionary Bonus Scheme
- Private Medical Insurance + Virtual GP
- Life Assurance
- Access to Furthr – a Climate Action app
- Free Mortgage Advice and Eye Tests
- Perks at Work – access to thousands of retail discounts
- 5% Flex Fund to spend on the benefits you want most
- 26 days holiday
- Flexible bank holidays, giving you an additional 8 days which you can choose to take whenever you like
- Progressive leave policies with no qualifying service periods, including 26 weeks full pay if you have a new addition to your family
- Dedicated personal learning and home office budgets
- Flexible working – we trust you to work in a way that suits your lifestyle
- And more…
Values
- Play to win
- Solve the real problem
- Build trust every day
- Own the outcome
- Go further together.
Application Security Engineer in Bristol employer: Kaluza
Join a forward-thinking company that prioritises innovation and security in the heart of London, Bristol, or Edinburgh. With a strong commitment to employee growth, we offer extensive benefits including a flexible working environment, generous leave policies, and a culture that champions collaboration and trust. Our focus on AI-driven security solutions not only enhances your professional skills but also allows you to contribute meaningfully to a diverse and dynamic team.
StudySmarter Expert Advice🤫
We think this is how you could land Application Security Engineer in Bristol
✨Tip Number 1
Network like a pro! Reach out to folks in the industry on LinkedIn or at meetups. A friendly chat can lead to opportunities that aren’t even advertised yet.
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repo showcasing your projects, especially those related to security tools and automation. It’s a great way to demonstrate your expertise beyond just a CV.
✨Tip Number 3
Prepare for interviews by brushing up on common security scenarios and challenges. Practice explaining complex concepts in simple terms—this will impress non-technical stakeholders!
✨Tip Number 4
Don’t forget to apply through our website! We love seeing candidates who are genuinely interested in joining our team. Plus, it makes tracking your application easier for us!
We think you need these skills to ace Application Security Engineer in Bristol
Some tips for your application 🫡
Tailor Your CV:Make sure your CV reflects the skills and experiences that match the Application Security Engineer role. Highlight your familiarity with OWASP Top 10, API Security, and any automation experience you've got. We want to see how you can bring value to our team!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're passionate about security and how your background aligns with our mission at StudySmarter. Don’t forget to mention your interest in AI-driven security solutions!
Showcase Your Projects:If you've worked on relevant projects, whether personal or professional, make sure to include them. We love seeing practical examples of your work, especially if they involve implementing security tools in CI/CD pipelines or secure design principles.
Apply Through Our Website:We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it shows you’re keen on joining our awesome team!
How to prepare for a job interview at Kaluza
✨Know Your Security Fundamentals
Make sure you brush up on the OWASP Top 10 and secure SDLC practices. Being able to discuss these topics confidently will show that you have a solid foundation in application security, which is crucial for this role.
✨Showcase Your Automation Skills
Be prepared to talk about your experience with implementing security tools in CI/CD pipelines. Highlight any specific tools you've used, like GitHub Actions, and how you've automated processes to enhance security without slowing down development.
✨Demonstrate Your Developer Mindset
Since the role requires a good understanding of modern languages like TypeScript and Go, be ready to discuss your coding experience. Share examples of how you've secured cloud-native environments and collaborated with developers to integrate security seamlessly.
✨Engage with AI Security Concepts
Express your curiosity about AI-driven security solutions. Discuss any relevant projects or ideas you have regarding the risks and opportunities presented by GenAI, as this shows you're forward-thinking and aligned with the company's innovative approach.
