Remote Senior Application Security Specialist

2840 IT & Software Developer jobs in the UK

Company Size

<50

Company Type

Services

Exp Level

Senior

Job Type

Full-Time

Language

English

Visa sponsorship

Requirements

Must:

- Extensive experience in Application Security within enterprise environments, ideally as part of a centralised Centre of Excellence or security governance function - Strong capability in developing and governing AppSec policies, standards, and secure SDLC frameworks - Expert knowledge across threat modelling, secure design, application risk assessment, and secure code review techniques - Hands-on understanding of DevSecOps practices, CI/CD pipeline security, and integrating security controls within modern development workflows - Ability to influence senior engineers, architects, and product leaders, ensuring secure-by-design principles are consistently applied - Experience producing AppSec maturity roadmaps, target-state models, and governance frameworks - Strong understanding of industry standards and frameworks (OWASP ASVS, OWASP SAMM, NIST, ISO 27034) - Experience implementing or advising on secure use of AI/ML applications, including secure patterns for Generative or Agentic AI (desirable) - Background in secure architecture reviews for microservices, APIs, and cloud-native application stacks (AWS, Azure, or hybrid) (desirable) - Experience within regulated industries such as Financial Services or Insurance (desirable) - Strong senior stakeholder communication skills, including the ability to articulate application risks and security requirements to executives

Technologies

CI/CD

DevSecOps

OWASP

Responsibilities

- Own and drive the governance, guidance, and architectural messaging for Application Security (AppSec) across the organisation, ensuring consistent adoption of secure development practices - Define and maintain target-state AppSec governance frameworks, including policies, standards, and secure SDLC practices; assess current-state maturity and define transition states for teams and markets - Provide expert advisory across development, engineering, and product teams, ensuring AppSec requirements are integrated early and effectively into design and delivery workflows - Perform and lead application security assessments, threat modelling sessions, design reviews, and secure code review consultations - Partner with Security Product Owners and engineering teams to ensure AppSec tooling, processes, and services meet organisational needs and regulatory expectations - Support selection, evaluation, and procurement of AppSec technologies, contributing to tool strategy, capability uplift, and adoption across teams - Ensure AppSec best practices are understood and leveraged across the enterprise through coaching, documentation, and stakeholder engagement

Description

We are looking for a Senior Application Security Specialist to join our Governance & Advisory team, based in Norwich or London with a hybrid working model. In this role, you will take ownership of application security practices across our organization, guiding teams to secure development standards and practices. We offer a dynamic work environment with opportunities for professional growth and contributions to critical security initiatives. The assignment duration is for 6 months, during which you will collaborate with various teams to enhance our application security posture.

Something wrong or incorrect with this job? Tell us in the chat 💬 on the right ➡️

IT & Software developer jobs in the UKSecurity Engineer jobs in the UKRemote Security Engineer jobs

You can find Cyber Security Engineer salaries in the UK here.

How many Cyber Security Engineer jobs are in the UK?

Currently, there are 2840 Security openings. Check also: IAM jobs, SAML jobs, Cisco jobs, Splunk jobs - all with salary brackets.

Is the UK a good place for Cyber Security Engineers?

The UK is one of the best countries to work as a Cyber Security Engineer. It has a vibrant startup community, growing tech hubs and, most important: lots of interesting jobs for people who work in tech.

Which companies are hiring for Cyber Security Engineer jobs in the UK?

The Scouts Association, Bluefruit Software Limited, SwapTix, Arctic Shores, Roke Manor Research Limited, Novus - Strategy & Consulting, MOD - Defence Digital among others, are currently hiring for Security roles in the UK.

The company with most openings is Hays Technology as they are hiring for 94 different Cyber Security Engineer jobs in the UK. They are probably quite committed to find good Cyber Security Engineers.