At a Glance
- Tasks: Lead the charge in building secure software and drive application security strategy.
- Company: Join a forward-thinking tech company committed to security excellence.
- Benefits: Attractive salary, flexible work options, and opportunities for professional growth.
- Other info: Be part of a proactive security culture with excellent career advancement potential.
- Why this job: Make a real impact by embedding security into every stage of software development.
- Qualifications: Experience in application security and a passion for secure software practices.
The predicted salary is between 60000 - 80000 £ per year.
Are you passionate about building security into software from the ground up? We’re looking for a Senior Application Security Engineer to take charge of strengthening and evolving security. In this role, you won’t just identify risks; you’ll lead the charge in transforming how secure software is built, working side-by-side with engineering and product teams to make security an intrinsic part of everything we deliver.
What you’ll be doing:
- Own and drive application security strategy, influencing key security metrics and outcomes.
- Embed secure-by-design principles into every stage of the development lifecycle.
- Partner with engineers and product teams to elevate security awareness and capability.
- Introduce and optimise automated security controls within CI/CD pipelines.
- Lead threat modelling and secure design discussions, shaping decisions around critical areas like authentication and data protection.
- Ensure security tooling (SAST, DAST, SCA) is effective, scalable, and delivering real value.
- Oversee and enhance testing initiatives including penetration testing, scanning, and bug bounty programmes.
- Act as a trusted advisor to engineering teams triaging issues and guiding practical remediation.
- Contribute to security standards, documentation, and audit readiness.
- Champion a strong, proactive security culture across the organisation.
We think you need these skills to ace Senior AppSec Engineer
Application Security Strategy
Secure-by-Design Principles
CI/CD Pipeline Security
Threat Modelling
Secure Design Discussions
Security Tooling (SAST, DAST, SCA)
Penetration Testing