Enable job alerts via email!

Senior Application Security Engineer

Maxwell Bond

United Kingdom

Remote

GBP 60,000 - 80,000

Full time

16 days ago

Boost your interview chances

Create a job specific, tailored resume for higher success rate.

Job summary

An innovative cyber consultancy is looking for an Application Security Consultant to join their remote team. This role offers the unique opportunity to work with experts across various industries, ensuring security is a priority throughout the software development lifecycle. You'll enhance DevSecOps practices, conduct secure code reviews, and empower teams with knowledge-sharing initiatives. If you're passionate about cybersecurity and want to make a tangible impact, this position is perfect for you. Join a forward-thinking organization dedicated to building secure software and driving change in the industry.

Qualifications

3+ years in AppSec or similar security-focused role.
Hands-on experience with AWS-based and cloud-native applications.

Responsibilities

Partner with developers to integrate security into the software development lifecycle.
Lead secure code reviews and provide guidance on secure design.

Skills

Application Security

Secure Coding Practices

Vulnerability Management

DevSecOps

Threat Modelling

Knowledge Sharing

Education

Relevant Certifications (CSSLP, OSWE, CISSP, CREST)

Tools

SAST

DAST

SCA

Terraform

CloudFormation

Job Title: Application Security (AppSec) Consultant

Location: Remote (UK-based only)

Salary: Up to £80,000

Type: Full-time, Permanent

Are you passionate about building secure software and driving real impact in the world of cybersecurity? Our client, a cutting-edge cyber consultancy, is seeking an Application Security Consultant to strengthen their growing technical team. This is a fully remote role, offering the chance to work alongside experts from diverse industries including defence, finance, and tech— while making a real difference.

What You’ll Be Doing:

Partnering with developers and engineers to bake security into every stage of the software development lifecycle.
Enhancing DevSecOps practices with tools like SAST, DAST, and SCA—making sure security isn’t just an afterthought.
Leading secure code reviews, threat modelling sessions, and providing practical guidance on secure design.
Reviewing APIs, cloud-native applications, and infrastructure for security weaknesses—and helping remediate them.
Acting as a point of escalation for application vulnerabilities and ensuring effective triage and resolution.
Empowering teams through knowledge-sharing, training, and championing secure development best practices.

What We’re Looking For:

At least 3 years’ experience in an AppSec or similar security-focused role.
Hands-on experience with modern development environments, especially AWS-based and cloud-native applications.
Familiarity with DevOps and CI/CD pipelines, and how to build security into them.
A strong grasp of secure coding practices, vulnerability management, and secure architecture principles.
Relevant certifications (such as CSSLP, OSWE, CISSP, or CREST) are a strong plus.

Bonus Points If You Have:

AWS security certifications
Experience with infrastructure as code (Terraform, CloudFormation) and container security
Deep knowledge of API security and OWASP standards

Seniority level

Mid-Senior level

Employment type

Full-time

Job function

Consulting and Information Technology

Industries

IT Services and IT Consulting and Computer and Network Security

Get your free, confidential resume review.

or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.

Similar jobs