Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead the charge in securing applications and AI technologies while collaborating with diverse teams.
- Company: Join a top-tier firm dedicated to protecting information and systems in a dynamic environment.
- Benefits: Enjoy competitive pay, health perks, and opportunities for professional growth.
- Why this job: Make a real impact by shaping security practices in cutting-edge AI and application development.
- Qualifications: 5+ years in application security with a strong grasp of AI risks and secure coding.
- Other info: Be part of a collaborative team focused on innovation and excellence in security.
The predicted salary is between 48000 - 72000 £ per year.
The successful candidate will be a subject matter expert with direct experience in a wide range of security technologies, tools, and methodologies. The role is suited for an experienced Application Security engineer with proven understanding in enterprise security and AI security and will focus on building toolsets and processes to drive adoption of secure practices across the enterprise. The team fosters a collaborative environment and is building a best-in-class program to partner with the business to protect the Firm’s information and computer systems. Millennium is a complex and robust technical environment and securing the Firm from external and internal threats is a top priority.
AI Security Strategy: Define and implement security guardrails for Generative AI, LLMs, and Agentic frameworks, ensuring safe enterprise adoption.
AI Risk Management: Conduct specialized threat modeling, red teaming, and risk assessments for AI/ML models (e.g., testing for prompt injection, model theft, and data poisoning).
Security Consulting: Lead risk management activities, including application risk assessments, design reviews, and mitigation strategies for IT projects.
Lifecycle Engagement: Engage throughout the SDLC to identify vulnerabilities, conduct code reviews/penetration testing, and enforce secure coding standards.
Program Development: Evangelize AppSec and AI security best practices through developer education, training materials, and outreach.
Tooling & Architecture: Design robust security architectures and integrate automated security testing (SAST/DAST/SCA) into CI/CD pipelines.
Stakeholder Liaison: Partner with Technology, Trading, Legal, and Compliance to create policies and communicate technical risks to non-technical stakeholders.
Qualifications/Skills Required:
- Bachelor's degree or higher in Computer Science, Computer Engineering, IT Security or related field.
- 5+ years’ experience working as an Application Security Engineer, Software Engineer, or similar role.
- Deep understanding of AI-specific risks (OWASP Top 10 for LLMs) and experience securing applications utilizing LLMs.
- Experience working with AI models, Agentic frameworks and security risks associated with AI.
- Experience in working with global teams, collaborating on code and presentations.
- Demonstrated work experience in hybrid on-premise and Public Cloud environments (AWS/GCP/Azure).
- Strong understanding of security architectures, secure configuration principles/coding practices, cryptography fundamentals and encryption protocols.
- Experience with common SCM & CI/CD technologies like GitHub, Jenkins, Artifactory, etc. and integrating Security Scanning and Vulnerability Management into the CI/CD Pipelines.
- Familiarity with static and dynamic security analysis tools, and SCA/SBOM solutions.
- Hands on experience with Secrets Management & Password Vault technologies such as Delinea Secret Server and/or Hashicorp Vault, etc.
- Strong experience in secure programming in languages such as Python, Java, C++, C#, or similar.
- Familiarity with Infrastructure as Code tools (CloudFormation, Terraform, Ansible, etc.).
- Familiarity with web application security testing tools and methodologies.
- Knowledge of various security frameworks and standards such as ISO 27001, NIST, OWASP, etc.
- Knowledge of Linux, OS internals and containers is a plus.
- Certifications like CISSP, CISM, CompTIA Security+, or CEH are advantageous.
Application Security Engineer in London employer: Millennium
Contact Detail:
Millennium Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Application Security Engineer in London
✨Tip Number 1
Network like a pro! Attend industry meetups, webinars, or conferences related to application security. It's a great way to connect with potential employers and show off your expertise in AI security and risk management.
✨Tip Number 2
Showcase your skills! Create a portfolio that highlights your experience with security architectures, secure coding practices, and any projects you've worked on. This will give you an edge when chatting with hiring managers.
✨Tip Number 3
Prepare for interviews by brushing up on common security scenarios, especially those related to AI risks and secure coding standards. Practising your responses can help you feel more confident and articulate during the interview.
✨Tip Number 4
Don't forget to apply through our website! We love seeing candidates who are genuinely interested in joining our team. Plus, it gives you a chance to showcase your passion for building secure practices across the enterprise.
We think you need these skills to ace Application Security Engineer in London
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Application Security Engineer role. Highlight your experience with security technologies, AI risks, and any relevant projects you've worked on. We want to see how your skills align with what we're looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about application security and how your background makes you a perfect fit for our team. Don't forget to mention any collaborative experiences you've had!
Showcase Your Technical Skills: In your application, be sure to showcase your technical skills, especially in secure programming and cloud environments. Mention specific tools and methodologies you've used, as we love seeing hands-on experience that aligns with our needs.
Apply Through Our Website: We encourage you to apply through our website for the best chance of getting noticed. It helps us keep track of applications and ensures you’re considered for the role. Plus, it’s super easy to do!
How to prepare for a job interview at Millennium
✨Know Your Stuff
Make sure you brush up on your knowledge of application security and AI-specific risks. Familiarise yourself with the OWASP Top 10 for LLMs and be ready to discuss how you've tackled these challenges in past roles.
✨Showcase Your Experience
Prepare to share specific examples from your 5+ years of experience. Highlight your work with security architectures, secure coding practices, and any hands-on experience with tools like GitHub or Jenkins. Real-world examples will make you stand out!
✨Collaborative Spirit
Since the role involves working with various teams, be ready to talk about your collaborative experiences. Share how you've partnered with non-technical stakeholders to communicate risks and develop security policies.
✨Ask Smart Questions
Prepare insightful questions about the company's approach to AI security and their current security challenges. This shows your genuine interest in the role and helps you gauge if the company is the right fit for you.
