Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Identify and fix vulnerabilities, conduct secure code reviews, and embed security in development processes.
- Company: Join a rapidly growing company focused on enhancing its security function.
- Benefits: Enjoy a competitive salary, bonuses, and the flexibility of remote work.
- Why this job: Be part of a high-impact team shaping secure software development in a dynamic environment.
- Qualifications: 5+ years in application security, strong coding skills, and experience with security tools required.
- Other info: Ideal for those who thrive in varied, fast-paced environments and enjoy tackling technical challenges.
The predicted salary is between 60000 - 84000 £ per year.
This company is scaling its security function and is hiring Senior Application Security Engineers to help embed secure development practices across its engineering teams. You’ll play a hands-on role in identifying and resolving vulnerabilities, integrating security into the SDLC, helping developers create software that is secure, robust, and production-ready by design. You’ll be joining a high-impact security team at a pivotal point in the company’s growth. The environment spans legacy systems, enterprise-grade platforms, and greenfield builds – making it an ideal opportunity for individuals who thrive in varied, fast-paced environments and enjoy taking ownership of deep technical security challenges.
Responsibilities:
- Proactively identify and fix vulnerabilities across applications, including submitting secure code changes via pull requests.
- Conduct secure code reviews and provide clear remediation guidance to engineering teams.
- Embed automated security checks into CI/CD pipelines using existing AppSec tools.
- Perform threat modelling and contribute to secure design decisions.
- Develop PoCs to demonstrate risk and impact of discovered vulnerabilities.
Requirements:
- 5+ years of hands-on experience in application security and secure software development.
- Strong knowledge of secure coding practices and common vulnerabilities (OWASP).
- Experience with SAST, DAST, and IAST tools and integrating them into CI/CD pipelines.
- Proficiency in writing and reviewing code (JavaScript, Java, Python) with an emphasis on secure patterns.
- Ability to work closely with engineers to drive adoption of security best practices across teams.
If you’re passionate about application security and want to help shape how secure software is built and delivered, click to apply or reach out directly.
Senior Application Security Engineer employer: Lawrence Harvey
Contact Detail:
Lawrence Harvey Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Senior Application Security Engineer
✨Tip Number 1
Familiarise yourself with the latest trends in application security, especially around OWASP top ten vulnerabilities. Being able to discuss these topics confidently during interviews will show your expertise and passion for the field.
✨Tip Number 2
Engage with the application security community through forums, webinars, or local meetups. Networking with professionals in the field can provide valuable insights and potentially lead to referrals for positions like the one we have at StudySmarter.
✨Tip Number 3
Prepare to demonstrate your hands-on experience by discussing specific projects where you identified and resolved vulnerabilities. Real-world examples will help you stand out as a candidate who can make an immediate impact on our team.
✨Tip Number 4
Showcase your ability to collaborate with engineering teams by preparing examples of how you've successfully integrated security practices into the software development lifecycle. This will highlight your teamwork skills and your commitment to secure coding.
We think you need these skills to ace Senior Application Security Engineer
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights your 5+ years of experience in application security and secure software development. Emphasise your knowledge of secure coding practices and familiarity with tools like SAST, DAST, and IAST.
Craft a Compelling Cover Letter: In your cover letter, express your passion for application security and detail how your skills align with the responsibilities outlined in the job description. Mention specific experiences where you've identified and resolved vulnerabilities.
Showcase Technical Skills: When detailing your technical skills, be specific about your proficiency in programming languages such as JavaScript, Java, and Python. Highlight any relevant projects where you integrated security into the SDLC or conducted secure code reviews.
Demonstrate Collaboration: Illustrate your ability to work closely with engineering teams by providing examples of how you've driven the adoption of security best practices. This will show that you can effectively communicate and collaborate in a fast-paced environment.
How to prepare for a job interview at Lawrence Harvey
✨Showcase Your Technical Expertise
Be prepared to discuss your hands-on experience with application security. Highlight specific projects where you've identified and resolved vulnerabilities, and be ready to explain the tools and methodologies you used, such as SAST, DAST, and IAST.
✨Demonstrate Secure Coding Knowledge
Familiarise yourself with secure coding practices and common vulnerabilities outlined by OWASP. During the interview, provide examples of how you've implemented these practices in your previous roles, especially in languages like JavaScript, Java, or Python.
✨Discuss Collaboration with Engineering Teams
Emphasise your ability to work closely with engineering teams to drive the adoption of security best practices. Share experiences where you've conducted secure code reviews or provided remediation guidance, showcasing your communication skills and teamwork.
✨Prepare for Scenario-Based Questions
Expect scenario-based questions that assess your problem-solving skills in real-world situations. Be ready to discuss how you would approach threat modelling or integrate automated security checks into CI/CD pipelines, demonstrating your strategic thinking.
