Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Collaborate with developers to integrate security into software development and lead secure code reviews.
- Company: Join a cutting-edge cyber consultancy making a real impact in cybersecurity.
- Benefits: Enjoy a fully remote role with competitive salary and opportunities for professional growth.
- Why this job: Be part of a diverse team, enhancing security practices while working on exciting projects.
- Qualifications: 3+ years in AppSec, hands-on experience with AWS, and knowledge of secure coding practices required.
- Other info: Relevant certifications are a plus; bonus points for AWS security and API security expertise.
The predicted salary is between 48000 - 64000 £ per year.
Location: Remote (UK-based only)
Salary: Up to £80,000
Type: Full-time, Permanent
Are you passionate about building secure software and driving real impact in the world of cybersecurity? Our client, a cutting-edge cyber consultancy, is seeking an Application Security Consultant to strengthen their growing technical team. This is a fully remote role, offering the chance to work alongside experts from diverse industries including defence, finance, and tech— while making a real difference.
What You’ll Be Doing:
- Partnering with developers and engineers to bake security into every stage of the software development lifecycle.
- Enhancing DevSecOps practices with tools like SAST, DAST, and SCA—making sure security isn’t just an afterthought.
- Leading secure code reviews, threat modelling sessions, and providing practical guidance on secure design.
- Reviewing APIs, cloud-native applications, and infrastructure for security weaknesses—and helping remediate them.
- Acting as a point of escalation for application vulnerabilities and ensuring effective triage and resolution.
- Empowering teams through knowledge-sharing, training, and championing secure development best practices.
What We’re Looking For:
- At least 3 years’ experience in an AppSec or similar security-focused role.
- Hands-on experience with modern development environments, especially AWS-based and cloud-native applications.
- Familiarity with DevOps and CI/CD pipelines, and how to build security into them.
- A strong grasp of secure coding practices, vulnerability management, and secure architecture principles.
- Relevant certifications (such as CSSLP, OSWE, CISSP, or CREST) are a strong plus.
Bonus Points If You Have:
- AWS security certifications
- Experience with infrastructure as code (Terraform, CloudFormation) and container security
- Deep knowledge of API security and OWASP standards
Senior Application Security Engineer employer: Maxwell Bond
Contact Detail:
Maxwell Bond Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Senior Application Security Engineer
✨Tip Number 1
Network with professionals in the cybersecurity field, especially those who work in application security. Join relevant online forums, attend webinars, or participate in local meetups to connect with others and learn about potential job openings.
✨Tip Number 2
Showcase your hands-on experience with tools like SAST, DAST, and SCA in your conversations. Be prepared to discuss specific projects where you integrated security into the software development lifecycle, as this will demonstrate your practical knowledge.
✨Tip Number 3
Familiarise yourself with the latest trends and best practices in DevSecOps. Being able to speak confidently about how to enhance security within CI/CD pipelines will set you apart from other candidates.
✨Tip Number 4
If you have relevant certifications, make sure to mention them during discussions. Certifications like CSSLP, OSWE, or CISSP can significantly boost your credibility and show your commitment to the field of application security.
We think you need these skills to ace Senior Application Security Engineer
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in application security, particularly any hands-on work with AWS and cloud-native applications. Use keywords from the job description to demonstrate your fit for the role.
Craft a Compelling Cover Letter: In your cover letter, express your passion for cybersecurity and how your experience aligns with the responsibilities listed. Mention specific tools and practices you’ve used, such as SAST, DAST, or secure coding principles.
Showcase Relevant Certifications: If you have certifications like CSSLP, OSWE, or CISSP, make sure to prominently display them in your application. This can set you apart from other candidates and show your commitment to the field.
Prepare for Technical Questions: Be ready to discuss your experience with secure code reviews, threat modelling, and vulnerability management during interviews. Prepare examples of how you've successfully implemented security practices in previous roles.
How to prepare for a job interview at Maxwell Bond
✨Showcase Your Technical Expertise
Be prepared to discuss your hands-on experience with modern development environments, especially AWS and cloud-native applications. Highlight specific projects where you successfully integrated security into the software development lifecycle.
✨Demonstrate Your Knowledge of Security Tools
Familiarise yourself with tools like SAST, DAST, and SCA. Be ready to explain how you've used these tools in past roles to enhance DevSecOps practices and ensure security is a priority throughout the development process.
✨Prepare for Scenario-Based Questions
Expect questions that assess your problem-solving skills in real-world scenarios. Think about how you would handle application vulnerabilities or lead secure code reviews, and be ready to share your thought process.
✨Emphasise Collaboration and Training
Since the role involves partnering with developers and engineers, highlight your experience in knowledge-sharing and training. Discuss how you've empowered teams to adopt secure development best practices in previous positions.
