At a Glance
- Tasks: Secure our code and empower developers to ship fast without compromising security.
- Company: Join a leading fintech company with a focus on innovation and collaboration.
- Benefits: Competitive pay, equity options, remote work flexibility, and health insurance.
- Other info: Enjoy fresh lunches, a supportive culture, and excellent career growth opportunities.
- Why this job: Make a real impact in securing cutting-edge technology and AI-driven workflows.
- Qualifications: Experience in application security and cloud environments, with strong communication skills.
The predicted salary is between 60000 - 80000 £ per year.
As our Cyber Security Engineer, you will be the bridge between Security and Engineering. You aren’t here to block deployments; you’re here to ensure our code is resilient by design. You will empower our developers to ship fast without breaking the trust of our customers or regulators.
Tech Stack
- Backend: Kotlin 1.7.20, AWS, GraphQL (it would be nice if you were familiar with this but it’s not a deal breaker), Postgres, RabbitMQ, Docker, Kubernetes
- Frontend: React & React Native, TypeScript, MobX, Redux, Stylus and SASS
- Other: We build our Kotlin projects using Gradle and GitHub Actions, deploying to production as soon as we finish a feature. We use JUnit Jupiter, Kotest and TestContainers for automated testing.
What you’ll be doing
- Secure the Pipeline: Integrate and automate SAST, DAST, and SCA tooling directly into our CI/CD pipelines to catch vulnerabilities before they reach production.
- Harden the Product: Act as a Subject Matter Expert (SME) assisting engineers with the remediation of security vulnerabilities and bugs.
- Safeguard AI: Design and implement security guardrails for AI-assisted development and LLM integrations, ensuring data privacy and preventing prompt injection or model leakage.
- Threat Modelling: Partner with Product and Engineering teams to conduct threat modelling sessions for new features before they are built.
- Security Architecture: Act as a consultant for infrastructure and application design, ensuring our AWS/GCP Kubernetes environments remain hardened.
- Security Culture: Cultivate a Secure Development guild to level up our developers' secure coding skills.
What we’re looking for
- Pragmatism: You understand the difference between partnering with Engineering and security being a blocker of progress.
- Communication: You can translate a complex vulnerability into a business risk for a Product Manager and a technical fix for an Engineer.
- AppSec Subject Matter Expertise: You have a strong understanding of critical security risks in applications, are able to identify them in code, and provide recommendations of how to remediate.
- Cloud Native: Strong experience securing AWS/GCP environments and containerised workloads.
- AI ready: You understand the unique risks of AI and have experience securing AI-driven workflows.
The opportunity to scale up one of the world’s most successful fintech companies. Best-in-class compensation, including equity. You can work from home every Monday and Friday if you wish - on the other days we all come together IRL to be together, build and exchange ideas. Our in-house chefs prepare fresh, healthy lunches in the office every Tuesday-Thursday. We care for our Lendies’ well-being both physically and mentally, so we offer coverage when it comes to private health insurance. We’re an equal opportunity employer and are keen to make Lendable the most inclusive and open workspace in London.
Application Security Engineer in London employer: Lendable Ltd
At Lendable, we pride ourselves on being an exceptional employer, offering a dynamic work culture that fosters collaboration and innovation. Our commitment to employee well-being is reflected in our flexible working arrangements, including the option to work from home on Mondays and Fridays, as well as our in-house chefs providing healthy lunches. With a focus on professional growth and inclusivity, we empower our team members to thrive in their roles while contributing to one of the world's most successful fintech companies.
StudySmarter Expert Advice🤫
We think this is how you could land Application Security Engineer in London
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, attend meetups, and connect with people on LinkedIn. You never know who might have the inside scoop on job openings or can refer you directly.
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your projects, especially those related to security and coding. This gives potential employers a taste of what you can do beyond just a CV.
✨Tip Number 3
Prepare for interviews by practising common questions and scenarios specific to application security. Think about how you’d handle real-world vulnerabilities and be ready to discuss your thought process.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who are proactive about their job search.
We think you need these skills to ace Application Security Engineer in London
Some tips for your application 🫡
Tailor Your CV:Make sure your CV reflects the skills and experiences that align with the Application Security Engineer role. Highlight your experience with security practices, cloud environments, and any relevant tech stack knowledge to catch our eye!
Craft a Compelling Cover Letter:Use your cover letter to tell us why you’re passionate about security and how you can bridge the gap between Security and Engineering. Share specific examples of how you've empowered teams in the past – we love a good story!
Show Off Your Communication Skills:Since communication is key in this role, make sure your application showcases your ability to explain complex security concepts in simple terms. We want to see how you can translate technical jargon into business risks and solutions.
Apply Through Our Website:We encourage you to apply directly through our website for the best chance of getting noticed. It’s the easiest way for us to keep track of your application and ensure it lands in the right hands!
How to prepare for a job interview at Lendable Ltd
✨Know Your Tech Stack
Familiarise yourself with the tech stack mentioned in the job description. Brush up on Kotlin, AWS, and any tools like Docker and Kubernetes. Being able to discuss how you've used these technologies in past projects will show your practical experience.
✨Understand Security Principles
Make sure you can articulate key security principles, especially around SAST, DAST, and threat modelling. Prepare examples of how you've integrated security into development processes and how you've communicated risks to both technical and non-technical stakeholders.
✨Show Your Pragmatism
Demonstrate your understanding of balancing security with engineering needs. Be ready to discuss scenarios where you’ve successfully partnered with engineering teams to enhance security without hindering progress.
✨Prepare Questions
Have thoughtful questions ready about the company's approach to security culture and AI risks. This shows your genuine interest in the role and helps you assess if the company aligns with your values and expertise.
