Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead the charge in securing AI technologies and applications across the enterprise.
- Company: Join a top-tier firm dedicated to protecting information and systems.
- Benefits: Competitive salary, flexible work options, and opportunities for professional growth.
- Why this job: Make a real impact by shaping security practices in a cutting-edge tech environment.
- Qualifications: 5+ years in application security with a strong grasp of AI risks and secure coding.
- Other info: Collaborative team culture with a focus on innovation and career advancement.
The predicted salary is between 36000 - 60000 £ per year.
The successful candidate will be a subject matter expert with direct experience in a wide range of security technologies, tools, and methodologies. The role is suited for an experienced Application Security engineer with proven understanding in enterprise security and AI security and will focus on building toolsets and processes to drive adoption of secure practices across the enterprise. The team fosters a collaborative environment and is building a best-in-class program to partner with the business to protect the Firm's information and computer systems. Millennium is a complex and robust technical environment and securing the Firm from external and internal threats is a top priority.
Principal Responsibilities
- AI Security Strategy: Define and implement security guardrails for Generative AI, LLMs, and Agentic frameworks, ensuring safe enterprise adoption.
- AI Risk Management: Conduct specialized threat modeling, red teaming, and risk assessments for AI/ML models (e.g., testing for prompt injection, model theft, and data poisoning).
- Security Consulting: Lead risk management activities, including application risk assessments, design reviews, and mitigation strategies for IT projects.
- Lifecycle Engagement: Engage throughout the SDLC to identify vulnerabilities, conduct code reviews/penetration testing, and enforce secure coding standards.
- Program Development: Evangelize AppSec and AI security best practices through developer education, training materials, and outreach.
- Tooling & Architecture: Design robust security architectures and integrate automated security testing (SAST/DAST/SCA) into CI/CD pipelines.
- Stakeholder Liaison: Partner with Technology, Trading, Legal, and Compliance to create policies and communicate technical risks to non-technical stakeholders.
Qualifications/Skills Required
- Bachelor's degree or higher in Computer Science, Computer Engineering, IT Security or related field.
- 5+ years' experience working as an Application Security Engineer, Software Engineer, or similar role.
- Deep understanding of AI-specific risks (OWASP Top 10 for LLMs) and experience securing applications utilizing LLMs.
- Experience working with AI models, Agentic frameworks and security risks associated with AI.
- Experience in working with global teams, collaborating on code and presentations.
- Demonstrated work experience in hybrid on-premise and Public Cloud environments (AWS/GCP/Azure).
- Strong understanding of security architectures, secure configuration principles/coding practices, cryptography fundamentals and encryption protocols.
- Experience with common SCM & CI/CD technologies like GitHub, Jenkins, Artifactory, etc. and integrating Security Scanning and Vulnerability Management into the CI/CD Pipelines.
- Familiarity with static and dynamic security analysis tools, and SCA/SBOM solutions.
- Hands on experience with Secrets Management & Password Vault technologies such as Delinea Secret Server and/or Hashicorp Vault, etc.
- Strong experience in secure programming in languages such as Python, Java, C++, C#, or similar.
- Familiarity with Infrastructure as Code tools (CloudFormation, Terraform, Ansible, etc.).
- Familiarity with web application security testing tools and methodologies.
- Knowledge of various security frameworks and standards such as ISO 27001, NIST, OWASP, etc.
- Knowledge of Linux, OS internals and containers is a plus.
- Certifications like CISSP, CISM, CompTIA Security+, or CEH are advantageous.
Application Security Engineer employer: Millennium Management LLC
Contact Detail:
Millennium Management LLC Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Application Security Engineer
✨Tip Number 1
Network like a pro! Attend industry meetups, webinars, or conferences related to application security. It's a great way to connect with potential employers and show off your passion for the field.
✨Tip Number 2
Showcase your skills! Create a portfolio that highlights your projects, especially those involving AI security or secure coding practices. This gives you a chance to demonstrate your expertise beyond just a CV.
✨Tip Number 3
Prepare for interviews by brushing up on common application security scenarios and challenges. Be ready to discuss how you've tackled security risks in past roles, especially with AI models and CI/CD pipelines.
✨Tip Number 4
Don't forget to apply through our website! We love seeing candidates who are genuinely interested in joining our team. Plus, it makes it easier for us to keep track of your application.
We think you need these skills to ace Application Security Engineer
Some tips for your application 🫡
Show Off Your Skills: Make sure to highlight your experience with security technologies and methodologies in your application. We want to see how your background aligns with the role, so don’t hold back on showcasing your expertise!
Tailor Your Application: Take a moment to customise your CV and cover letter for this specific role. Mention your experience with AI security and secure coding practices, as these are key areas we’re looking for in a candidate.
Be Clear and Concise: When writing your application, keep it straightforward and to the point. Use clear language to describe your experiences and achievements, making it easy for us to see why you’d be a great fit for the team.
Apply Through Our Website: We encourage you to submit your application through our website. It’s the best way for us to receive your details and ensures you’re considered for the role. Plus, it’s super easy!
How to prepare for a job interview at Millennium Management LLC
✨Know Your Stuff
Make sure you brush up on your knowledge of AI security risks and the OWASP Top 10 for LLMs. Be ready to discuss specific examples from your experience where you've implemented security guardrails or conducted risk assessments, as this will show your expertise in the field.
✨Showcase Your Collaboration Skills
Since the role involves partnering with various teams, be prepared to share examples of how you've successfully collaborated with non-technical stakeholders. Highlight any experiences where you’ve communicated complex technical risks in a way that was easily understood by others.
✨Demonstrate Your Technical Proficiency
Familiarise yourself with the tools and technologies mentioned in the job description, like CI/CD pipelines and security testing tools. Be ready to discuss how you've integrated security into these processes in your previous roles, as practical examples will make you stand out.
✨Prepare for Scenario-Based Questions
Expect to face scenario-based questions that test your problem-solving skills in real-world situations. Think about past challenges you've faced in application security and how you approached them, especially regarding AI/ML models and secure coding practices.