SonicJobs Logo
Left arrow iconBack to search

Lead Application Security Engineer

Sanderson Recruitment
Posted a month ago, valid for 4 days
Location

Bristol, City of Bristol BS1 6WS, England

Salary

Competitive

Contract type

Full Time

In order to submit this application, a TotalJobs account will be created for you. As such, in addition to applying for this job, you will be signed up to all TotalJobs’ services as part of the process. By submitting this application, you agree to TotalJobs’ Terms and Conditions and acknowledge that your personal data will be transferred to TotalJobs and processed by them in accordance with their Privacy Policy.

Sonic Summary

info
  • The position is for an Application Security Engineer with a daily rate of £550-£700, outside IR35, based in Bristol, with remote work and occasional office presence required once a month.
  • This is a 6-month contract role within an innovative financial services organization that seeks a highly skilled professional to shape their security strategy and develop secure solutions.
  • Candidates should have proven experience in Security Architecture and Application Security, with a deep understanding of cybersecurity frameworks and standards, and ideally hold relevant industry certifications like CISSP or CISM.
  • Key responsibilities include leading security strategy development, managing secure solutions, conducting risk assessments, and mentoring team members while collaborating with cross-functional teams.
  • The role requires strong technical proficiency in areas such as network security, identity and access management, and cloud security, along with experience working in Agile and DevSecOps environments.

Application Security Engineer


Rate: £550-£700 per day (Outside IR35)
Location: Bristol (Remote, with occasional office presence once a month)
Job Type: 6-month contract


We are an innovative financial services organisation seeking a highly skilled Application Security Engineer. to join our dynamic team. In this role, you will play a pivotal part in shaping our security strategy, driving the development of secure solutions, and addressing both internal and external threats. You will collaborate with cross-functional teams to design security architectures that protect our infrastructure, applications, and data, ensuring they align with business objectives.

Key Responsibilities:

  • Security Strategy Leadership: Lead the development and implementation of security plans and roadmaps, ensuring adherence to best practices in security architecture and aligning with business goals.
  • Comprehensive Security Design: Develop, implement, and manage secure solutions as part of enterprise-wide projects, protecting infrastructure, applications, and data.
  • Risk Management: Identify vulnerabilities, assess risks, and implement mitigative strategies to safeguard assets.
  • Collaboration: Partner with stakeholders and cross-functional teams to design security solutions that meet both business and security requirements.
  • Incident Monitoring and Response: Analyse security incidents and design proactive solutions to mitigate emerging threats.
  • Security Awareness: Establish and lead security training programs, upskilling IT and development teams on best practices and emerging trends.
  • Mentorship and Leadership: Serve as a subject matter expert, mentoring team members and boosting the organisation's security capabilities through knowledge-sharing and training initiatives.
  • Community Engagement: Actively participate in the organisation's architecture community, offering insights and best practices to improve overall security outcomes.

Skills and Qualifications:

  • Security Architecture Expertise: Proven experience in Security Architecture and Application Security, with a deep understanding of cybersecurity frameworks and security standards (e.g., NIST, ISO 27001).
  • Technical Proficiency: Strong hands-on experience with network security, identity and access management, data encryption, incident response, and security in cloud environments (AWS, Azure, GCP). Familiarity with SIEM tools and threat intelligence is essential.
  • Agile/DevSecOps: Experience working within Agile and DevSecOps frameworks, integrating security into the development lifecycle.
  • Cloud Security: Familiarity with cloud security standards and securing cloud-based applications, especially in a DevSecOps environment.
  • Salesforce Experience (Desirable): Knowledge of Salesforce Financial Services Cloud and Salesforce OmniStudio is a strong plus.
  • Certifications: Industry certifications such as CISSP, CISM, or equivalent are preferred.
  • Communication and Collaboration: Strong collaboration and stakeholder management skills, with the ability to align security solutions with business objectives.

Apply now in a few quick clicks

In order to submit this application, a TotalJobs account will be created for you. As such, in addition to applying for this job, you will be signed up to all TotalJobs’ services as part of the process. By submitting this application, you agree to TotalJobs’ Terms and Conditions and acknowledge that your personal data will be transferred to TotalJobs and processed by them in accordance with their Privacy Policy.