Application Security Engineer

As an Application Security Engineer, you'll be supporting our Product and Engineering teams in securely designing and developing solutions and continuously improving the visibility of our risks to enable our engineering teams to prioritise and fix issues in line with our vulnerability policy. This is a unique opportunity for someone with application security experience to join NatWest Boxed. We are building solutions to provide mobile and web banking services and Banking as a Service (embedded finance) to enable companies to provide banking services to their end customers. Gain valuable exposure and make a real impact with your work as you keep our applications and platforms safe for our business and customers.

• Performing threat modelling
• Implementing automated security testing as part of our pipeline
• Supporting reporting of our application risk posture to stakeholders
• Supporting and working with architects and the security team, exchanging knowledge and upskilling each other
• Promoting and implementing new security initiatives, trialing new security tools

• Excellent knowledge of application security and working with engineering teams to deliver secure solutions
• Experience implementing or working with security champions networks
• Experience delivering and reporting on application vulnerability management
• Great communication and influencing skills
• Knowledge and experience of automating and API calls for DevOps
• Understanding and knowledge of common industry cyber security frameworks, standards and methodologies, including OWASP, MITRE ATT&CK and NIST