Application Security Engineer

A global, data-driven organisation is looking for an Application Security Engineer.

The role combines hands-on technical delivery with advisory influence, working closely with engineering teams to ensure security is built in.

You will play a key role in integrating security into development pipelines, driving vulnerability management, and enabling teams to deliver secure‑by‑design applications.

Core Responsibilities

• Partner with engineering teams to embed security controls early in the development lifecycle, ensuring secure design principles are consistently applied
• Own and evolve application security practices across build pipelines, with a focus on automation, scalability, and developer adoption
• Identify, prioritise, and support remediation of security vulnerabilities across applications, infrastructure, and dependencies
• Contribute to the design and implementation of security controls across cloud‑native environments, including containers and orchestration platforms
• Strengthen CI/CD security by integrating checks across code, dependencies, and infrastructure configurations
• Establish and maintain clear visibility of security posture through structured tracking, metrics, and reporting
• Support developers in understanding and resolving security issues through practical guidance and hands‑on collaboration
• Drive continuous improvement of security standards, patterns, and reusable controls across engineering teams
• Act as a bridge between security and engineering—translating risk into clear, actionable insight

Requirements

• Experience working in modern software engineering environments with a strong understanding of how applications are designed, built, and deployed
• Practical exposure to integrating security into development workflows, particularly within CI/CD pipelines
• Familiarity with application security testing approaches and tools (e.g. static, dynamic, and dependency analysis)
• Understanding of cloud‑native architectures, including containers, Kubernetes, and infrastructure‑as‑code
• Experience working with version‑controlled environments and collaborative development practices
• Ability to assess risk pragmatically and prioritise remediation in a fast‑paced environment
• Strong communication skills, with the ability to engage effectively across engineering and non‑technical stakeholders
• A collaborative mindset with a focus on enablement rather than enforcement

This is an exciting opportunity to apply your technical skills and expertise in a role that is critical to the security posture of a major organization.

#J-18808-Ljbffr…