Remote Application Security Engineer Job in UK Hampton North

Who you are

• Bachelor’s degree in Computer Science, Information Security, or a related field, or equivalent experience.
• 3+ years of experience in application security, including VDP management, penetration testing, and secure code review.
• Strong understanding of application security and common vulnerabilities (e.g., OWASP Top Ten, SANS Top 25).
• Experience with security tools such as static and dynamic analysis tools, and security testing frameworks.
• Familiarity with CI/CD pipelines and DevSecOps practices.
• Strong programming skills in one or more languages (e.g., Python, Java, JavaScript, C#, etc.).
• Excellent analytical and problem-solving skills with a keen attention to detail.
• Strong communication and collaboration skills with the ability to work effectively across different teams and departments.
• Relevant security certifications (e.g., OSCP, CEH, GWAPT, CSSLP) are a plus.

What the job involves

• Design, implement, and manage VDPs to effectively identify, track, and remediate security vulnerabilities in our applications.
• Collaborate with internal teams and external researchers to triage and prioritize reported vulnerabilities.
• Lead the management of our bug bounty program, including engagement with the hacker community to identify potential vulnerabilities.
• Perform comprehensive security code reviews across various programming languages and frameworks to identify vulnerabilities and ensure adherence to security best practices.
• Deploy, and maintain security tools and automation to enhance the efficiency and effectiveness of the application security program.
• Conduct threat modeling and security risk assessments to identify and mitigate potential security risks in application designs and architectures.