Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Identify and fix vulnerabilities, conduct secure code reviews, and embed security in development processes.
- Company: Join a growing company focused on enhancing its security function and practices.
- Benefits: Enjoy a competitive salary, bonuses, remote work options, and additional perks.
- Why this job: Be part of a high-impact team shaping secure software in a dynamic environment.
- Qualifications: 5+ years in application security, strong coding skills, and experience with security tools required.
- Other info: Ideal for those who thrive in fast-paced settings and enjoy tackling technical challenges.
The predicted salary is between 60000 - 84000 £ per year.
This company is scaling its security function and is hiring Senior Application Security Engineers to help embed secure development practices across its engineering teams. You’ll play a hands-on role in identifying and resolving vulnerabilities, integrating security into the SDLC, helping developers create software that is secure, robust, and production-ready by design.
You’ll be joining a high-impact security team at a pivotal point in the company’s growth. The environment spans legacy systems, enterprise-grade platforms, and greenfield builds – making it an ideal opportunity for individuals who thrive in varied, fast-paced environments and enjoy taking ownership of deep technical security challenges.
Responsibilities:- Proactively identify and fix vulnerabilities across applications, including submitting secure code changes via pull requests.
- Conduct secure code reviews and provide clear remediation guidance to engineering teams.
- Embed automated security checks into CI/CD pipelines using existing AppSec tools.
- Perform threat modelling and contribute to secure design decisions.
- Develop PoCs to demonstrate risk and impact of discovered vulnerabilities.
- 5+ years of hands-on experience in application security and secure software development.
- Strong knowledge of secure coding practices and common vulnerabilities (OWASP).
- Experience with SAST, DAST, and IAST tools and integrating them into CI/CD pipelines.
- Proficiency in writing and reviewing code (JavaScript, Java, Python) with an emphasis on secure patterns.
- Ability to work closely with engineers to drive adoption of security best practices across teams.
If you’re passionate about application security and want to help shape how secure software is built and delivered, click to apply or reach out directly at j.ryan@lawrenceharvey.com.
Senior Application Security Engineer (City of London) employer: Lawrence Harvey
Contact Detail:
Lawrence Harvey Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Senior Application Security Engineer (City of London)
✨Tip Number 1
Familiarise yourself with the specific security tools mentioned in the job description, such as SAST, DAST, and IAST. Being able to discuss your experience with these tools during an interview will demonstrate your hands-on expertise and show that you're ready to hit the ground running.
✨Tip Number 2
Brush up on your knowledge of secure coding practices and common vulnerabilities outlined by OWASP. Prepare to share examples of how you've applied this knowledge in previous roles, as it will highlight your ability to contribute effectively to the team.
✨Tip Number 3
Showcase your experience in embedding security into the software development lifecycle (SDLC). Be ready to discuss specific projects where you successfully integrated security measures, as this will illustrate your proactive approach to application security.
✨Tip Number 4
Network with professionals in the application security field, especially those who have experience in similar environments. Engaging with others can provide insights into the role and may even lead to referrals, increasing your chances of landing the job.
We think you need these skills to ace Senior Application Security Engineer (City of London)
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights your experience in application security and secure software development. Emphasise your hands-on experience with SAST, DAST, and IAST tools, as well as your proficiency in relevant programming languages like JavaScript, Java, and Python.
Craft a Compelling Cover Letter: In your cover letter, express your passion for application security and detail how your skills align with the responsibilities outlined in the job description. Mention specific examples of how you've identified and resolved vulnerabilities in past roles.
Showcase Relevant Projects: If you have worked on projects that involved secure coding practices or threat modelling, be sure to include these in your application. Highlight any contributions you made to embedding security into CI/CD pipelines or conducting secure code reviews.
Proofread Your Application: Before submitting your application, take the time to proofread it for any spelling or grammatical errors. A polished application reflects your attention to detail, which is crucial in a role focused on security.
How to prepare for a job interview at Lawrence Harvey
✨Showcase Your Technical Skills
Be prepared to discuss your hands-on experience with application security. Highlight specific projects where you've identified and resolved vulnerabilities, and be ready to explain the tools and methodologies you used.
✨Demonstrate Knowledge of Secure Coding Practices
Familiarise yourself with OWASP top ten vulnerabilities and secure coding practices. During the interview, provide examples of how you've implemented these practices in past roles, especially in relation to JavaScript, Java, or Python.
✨Discuss CI/CD Integration
Since the role involves embedding security into CI/CD pipelines, be ready to talk about your experience with SAST, DAST, and IAST tools. Share specific instances where you've successfully integrated these tools into development workflows.
✨Prepare for Scenario-Based Questions
Expect scenario-based questions that assess your problem-solving skills in real-world situations. Think about how you would approach threat modelling or conduct a secure code review, and be ready to articulate your thought process clearly.
