Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Own the security aspects of app development and lead security testing.
- Company: Join a leading tech firm with offices in Bristol and Edinburgh.
- Benefits: Earn up to £90,000 plus bonuses, with hybrid working options.
- Why this job: Make a real difference by integrating security into innovative applications.
- Qualifications: 3+ years in Application Security; familiarity with OWASP and development frameworks.
- Other info: Dynamic role with opportunities for growth and collaboration.
The predicted salary is between 54000 - 126000 £ per year.
Application Security Engineer
Bristol or Edinburgh
£90,000 + great benefits
An impressive financial services business is looking to hire an Application Security Engineer to support this team with the risk and remediation activities. This business is going through a big technology transformation programme that is estimated to take 3 -5 years. The successful Application Security Engineer will be part of this journey and have great technical exposure and the ability to rapidly progress. Working closely in one of transformation projects, the successful Application Security Engineer will work closely with the wider security and technology teams to define the strategy and roadmap of technology changes moving forward.
Duties and Responsibilities
- Provide security input into solution design to ensure that security principles are incorporated at both the platform and software level
- Automate tooling to run security fixes over a variety of repo\’s
- Ensure that security requirement input is provided across the programme to ensure that the new technology is secure by design
- Support the teams to interpret security requirements of the project
- Conduct threat modelling and pen testing to identify threats and establish controls
- Support wider teams with security advice and guidance in both a verbal and written format
- Lead delivery of hands-on security engineering solutions when needed
Your Background
- Experience in a similar role, in both responsibility and scale
- Proficiency with one of the following: Python, Jenkins, Powershell, Bash, GitHub Actions
- Relevant professional certifications for example:
- CISSP
- SANS
- Cre/CHECK
- Strong understanding of shift left
- Proven experience with of working with development teams on security related topics
- Either hands on secure software development or applications security testing
- Likely come from a pen testing, SRE, or Software Development Background
We invite individuals from underrepresented groups to apply for any of our roles and are committed to supporting accessibility needs.
#J-18808-Ljbffr
Application Security Engineer employer: Spencer Rose Ltd
Contact Detail:
Spencer Rose Ltd Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Application Security Engineer
✨Tip Number 1
Network like a pro! Reach out to folks in the industry on LinkedIn or at local meetups. We all know that sometimes it’s not just what you know, but who you know that can help you land that Application Security Engineer role.
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your projects related to application security. This gives potential employers a taste of what you can do and sets you apart from the crowd.
✨Tip Number 3
Prepare for those interviews! Brush up on your knowledge of OWASP top 10 and be ready to discuss how you've integrated security into development processes in the past. We want you to shine and show them you’re the perfect fit!
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who are proactive about their job search!
We think you need these skills to ace Application Security Engineer
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Application Security Engineer role. Highlight your experience with application security, development patterns, and any relevant frameworks like OWASP. We want to see how your skills match what we're looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about application security and how your background makes you a great fit for our team. Keep it concise but impactful – we love a good story!
Showcase Your Technical Skills: In your application, don’t forget to showcase your technical skills, especially if you've worked with Java, Springboot, React, or Node. We’re keen on seeing how you’ve applied these in real-world scenarios, so give us the details!
Apply Through Our Website: We encourage you to apply through our website for a smoother process. It helps us keep track of applications better and ensures you get all the updates directly from us. Plus, it’s super easy!
How to prepare for a job interview at Spencer Rose Ltd
✨Know Your OWASP Top 10
Make sure you’re well-versed in the OWASP Top 10 vulnerabilities. Be ready to discuss how these apply to your previous projects and how you’ve mitigated them. This shows you not only understand the theory but can also apply it practically.
✨Showcase Your Technical Skills
Prepare to talk about your experience with Java, Springboot, React, or Node. Bring examples of projects where you integrated security into the development lifecycle. This will demonstrate your hands-on experience and technical prowess.
✨Understand the Development Lifecycle
Brush up on the development lifecycle and be prepared to explain how you’ve contributed to security at each stage. Discussing your approach to application security testing will highlight your proactive mindset and ownership of security responsibilities.
✨Engage in Security Governance Discussions
Familiarise yourself with governance forums and be ready to discuss how you’ve provided security input in past roles. This will show that you can collaborate effectively with architects and other stakeholders to enhance security practices.
