Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead and mentor a team in application security while driving technology transformation.
- Company: Dynamic financial services firm undergoing a major tech transformation.
- Benefits: Competitive salary, great benefits, and opportunities for rapid career progression.
- Why this job: Join a pivotal role in shaping security practices and making a real impact.
- Qualifications: Experience in application security and team leadership required.
- Other info: Inclusive workplace committed to accessibility and diversity.
The predicted salary is between 100000 - 100000 £ per year.
A financial services business is looking to hire a Lead Application Security Engineer to support the team with risk and remediation activities. This business is undergoing a technology transformation programme estimated to take 3-5 years. The successful candidate will be part of this journey, gaining great technical exposure and the ability to progress rapidly.
Working closely in one of the transformation projects, the Lead Application Security Engineer will collaborate with the wider security and technology teams to define the strategy and roadmap for technology changes moving forward. This role is both hands-on and managerial, providing support and guidance to the AppSec team.
Duties and Responsibilities- Team Leadership
- Support the existing team, providing mentoring and fostering a collaborative team environment.
- Take a pragmatic risk-based approach to support the wider technology teams with the SDLC.
- Foster strong relationships with engineering, architecture, platform, and platform management to provide practical risk-appropriate guidance.
- Set priorities for the AppSec team to ensure impactful delivery of AppSec services.
- Act as the SME for application security in the business and ensure that security controls are adopted early into the CI/CD pipelines.
- Own and run the DAST, SAST, and other AppSec tooling to ensure effective coverage across all in-scope applications.
- Create, roll out, and maintain secure development practices and standards including threat modelling and secure coding practices for all applications and APIs.
- Collaborate with the Vulnerability Engineering Lead to support identification, triage, and remediation programs in alignment with risk appetite, appropriate prioritisation, and agreed SLAs.
The ideal candidate will have:
- Experience in a similar role, in both responsibility and scale.
- Proven experience in Software Security Development or Application Security.
- Proven experience in leading/coaching a team.
- Hands-on experience with implementing and operating AppSec tooling such as SAT and DAST, secret management, and SCA.
- Extensive experience of integrating security into the CI/CD pipeline using AWS DevOps or GitHub.
- Strong history of secure coding practices, threat modelling, and vulnerability management in production.
- Strong understanding of modern software development practices.
If this sounds like the role for you, hit the apply button NOW!
We invite individuals from underrepresented groups to apply for any of our roles and are committed to supporting accessibility needs.
Lead Application Security Engineer employer: Spencer Rose Ltd
Contact Detail:
Spencer Rose Ltd Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Lead Application Security Engineer
✨Tip Number 1
Network like a pro! Reach out to your connections in the industry, especially those who work in application security. A friendly chat can lead to insider info about job openings or even referrals that could give you a leg up.
✨Tip Number 2
Show off your skills! Prepare a portfolio or a GitHub repository showcasing your projects and contributions to application security. This gives potential employers a tangible sense of what you can bring to the table.
✨Tip Number 3
Ace the interview! Research common interview questions for Lead Application Security Engineers and practice your responses. Be ready to discuss your hands-on experience with AppSec tooling and how you've led teams in the past.
✨Tip Number 4
Apply through our website! We make it super easy for you to submit your application directly. Plus, it shows you're genuinely interested in joining our team. Don't miss out on this opportunity!
We think you need these skills to ace Lead Application Security Engineer
Some tips for your application 🫡
Tailor Your CV: Make sure your CV reflects the skills and experiences that match the Lead Application Security Engineer role. Highlight your experience with AppSec tooling and secure coding practices, as these are key for us.
Craft a Compelling Cover Letter: Use your cover letter to tell us why you're the perfect fit for this role. Share specific examples of how you've led teams or implemented security measures in past positions to show us your hands-on experience.
Show Your Passion for Security: Let your enthusiasm for application security shine through in your application. We love candidates who are genuinely excited about technology transformation and can articulate their vision for security in the SDLC.
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you don’t miss out on any important updates during the process!
How to prepare for a job interview at Spencer Rose Ltd
✨Know Your Stuff
Make sure you brush up on your application security knowledge. Be ready to discuss your hands-on experience with DAST, SAST, and secure coding practices. The interviewers will want to see that you can not only talk the talk but also walk the walk.
✨Show Your Leadership Skills
Since this role involves team leadership, be prepared to share examples of how you've mentored or guided a team in the past. Highlight any experiences where you fostered collaboration and set priorities for your team to achieve impactful results.
✨Understand the Business Context
Familiarise yourself with the company's technology transformation programme. Being able to discuss how your role as a Lead Application Security Engineer fits into their broader strategy will show that you're genuinely interested and invested in their success.
✨Ask Smart Questions
Prepare insightful questions about the company's approach to application security and their expectations for the role. This not only demonstrates your interest but also gives you a chance to assess if the company aligns with your career goals.