Position: Application Security Engineer
Location: London, UK
Salary: Up to £100,000 per annum, depending on experience
Company Overview:
We are a leading technology company based in London, specialising in innovative software solutions for various industries. We are seeking a talented and experienced Application Security Engineer to join our cybersecurity team and ensure the security of our software applications.
Responsibilities:
- Conduct security assessments and reviews of software applications to identify and mitigate security vulnerabilities and weaknesses.
- Work closely with development teams to integrate security best practices into the software development lifecycle (SDLC).
- Perform secure code reviews and provide guidance on secure coding practices to developers.
- Develop and implement Application Security controls, including authentication, authorization, encryption, and input validation mechanisms.
- Design and implement security testing methodologies, including static analysis, dynamic analysis, and penetration testing, to assess Application Security posture.
- Monitor and analyse security events and alerts to detect and respond to potential security incidents and breaches.
- Collaborate with cross-functional teams, including IT, operations, and compliance, to address security requirements and compliance obligations.
- Stay updated with the latest security trends, vulnerabilities, and threats, and provide recommendations for improving Application Security posture.
Requirements:
- Bachelor's degree in Computer Science, Information Security, or related field; advanced degree or relevant certifications (e.g., CISSP, CSSLP, CEH) preferred.
- Proven experience in Application Security or a similar role, with a focus on securing web and mobile applications.
- Strong understanding of web Application Security concepts, including OWASP Top 10 vulnerabilities, secure coding practices, and common attack vectors.
- Hands-on experience with security testing tools and techniques, such as static analysis tools (e.g., Fortify, Veracode), dynamic analysis tools (e.g., Burp Suite, OWASP ZAP), and penetration testing frameworks.
- Proficiency in programming languages commonly used in web application development (e.g., Java, Python, JavaScript) and familiarity with modern web application frameworks.
- Excellent communication and collaboration skills, with the ability to effectively communicate complex security concepts to technical and non-technical stakeholders.
- Proactive mindset with a strong attention to detail and ability to work independently and as part of a team in a fast-paced environment.
Benefits:
- Competitive salary up to £100,000 with performance-based bonuses
- Comprehensive benefits package, including health insurance and wellness programs
- Opportunities for professional development and training
- Flexible work schedule and remote work options
- Dynamic and collaborative work environment with opportunities for growth and advancement
Join our team and help us build and maintain secure software applications that drive innovation and empower our customers to succeed in a rapidly evolving digital landscape!