SonicJobs Logo
Login
Left arrow iconBack to search
  1. Home
  2. Cambridge, Cambridgeshire
  3. Ict security engineer
  4. Application Security Engineer

Application Security Engineer

Morson Edge
Posted 6 days ago, valid for 20 days
Location

Cambridge, Cambridgeshire CB21NT, England

Salary

£50,000 - £60,000 per year

info
Contract type

Full Time

Life Insurance
Employee Assistance

By applying, a CV-Library account will be created for you. CV-Library's Terms & Conditions and Privacy Policy will apply.

SonicJobs' Terms & Conditions and Privacy Policy also apply.

Sonic Summary

info
  • We are seeking an experienced Application Security Specialist with a minimum of 5 years of combined experience in software engineering and application security.
  • This hybrid position is based in Cambridge, UK, requiring one day a week in the office, and offers a competitive salary.
  • The role involves guiding teams on security best practices, collaborating with architects and developers, and embedding security into the development lifecycle.
  • Candidates should have strong knowledge of OWASP, application vulnerabilities, and experience with Agile/DevOps methodologies.
  • Benefits include private healthcare, pension contributions, flexible working hours, and 25 days of holiday plus bank holidays.

Application Security Specialist (DevOps)

Hybrid – Cambridge, UK (1 day a week in office)

We’re looking for an experienced Application Security Specialist to join a growing cyber security team and play a key role in shaping a world-class application security programme.

This role will give you the chance to work closely with engineering and development teams, embedding security into the development lifecycle, driving automation, and influencing remediation plans that have real impact.

What you’ll be doing

  • Guiding teams on security best practices, compliance, and secure coding.

  • Collaborating with architects and developers to review designs and code for vulnerabilities.

  • Embedding/improving threat modelling and secure development practices into the SDLC.

  • Designing and integrating security testing plans.

  • Performing and overseeing application security testing and driving remediation.

  • Managing end-to-end vulnerability workflows, including bug bounty findings.

  • Supporting incident response activities when needed.

  • Monitoring and reporting on application security metrics, KPIs, and emerging threats.

  • Automating processes for vulnerability detection and integrating tools into the pipeline.

Note: this position includes participation in an on-call rotation.

What we’re looking for

  • 3+ years in software engineering plus 2+ years in application security.

  • Strong knowledge of OWASP, application vulnerabilities, and security testing techniques.

  • Experience with secure web application development and Agile/DevOps methodologies.

  • Familiarity with pen testing, bug bounty, or hacker community collaboration.

  • Strong communication skills – able to influence stakeholders up to senior management.

  • Self-starter with the ability to prioritise, work independently, and drive initiatives.

  • Knowledge of wider IT and information security practices.

What’s on offer

You’ll enjoy a competitive package along with a range of benefits, including:

  • Private healthcare (including dental).

  • Pension contributions.

  • Employee Assistance Programme & wellbeing support.

  • Life insurance.

  • Annual performance bonus.

  • Enhanced family leave from day one.

  • Flexible working hours.

  • 25 days holiday + bank holidays (with buy/sell options).

Apply now in a few quick clicks

By applying, a CV-Library account will be created for you. CV-Library's Terms & Conditions and Privacy Policy will apply.

SonicJobs' Terms & Conditions and Privacy Policy also apply.

Logo
SonicJobs
Your next career move. Sorted.
Search jobsbackground image

Contact us

© 2017 - 2025 SonicJobs Inc. All rights reserved

Terms & Conditions | Privacy Policy | Browse Jobs