This website uses cookies to ensure you get the best experience.

Cyberfort and our selected partners use cookies and similar technologies (together “cookies”) that are necessary to present this website, and to ensure you get the best experience of it. If you consent to it, we will also use cookies for analytics and marketing purposes.

See our Cookie Policy to read more about the cookies we set.

You can withdraw and manage your consent at any time, by clicking “Manage cookies” at the bottom of each website page.

Select which cookies you accept

On this site, we always set cookies that are strictly necessary, meaning they are necessary for the site to function properly.

If you consent to it, we will also set other types of cookies. You can provide or withdraw your consent to the different types of cookies using the toggles below. You can change or withdraw your consent at any time, by clicking the link “Manage Cookies”, which is always available at the bottom of the site.

To learn more about what the different types of cookies do, how your data is used when they are set etc, see our Cookie Policy.

These cookies are necessary to make the site work properly, and are always set when you visit the site.

Vendors Teamtailor

These cookies collect information to help us understand how the site is being used.

Vendors Teamtailor

These cookies are used to make advertising messages more relevant to you. In some cases, they also deliver additional functions on the site.

Vendors Youtube
Cyberfort career site
Consultancy · Multiple locations · Fully Remote

Application Security Engineer

The Role in a Nutshell:

You will be responsible for Integrating security into SDLC during the design and development of digital services to ensure a holistic shift-left approach to secure by design.

The Impact You’ll Make

  • Integrating AppSec security controls in a central security platform (Splunk) with service and SRO-level dashboards.
  • Delivering service-level and SRO dashboards in Splunk to see security posture and risk exposure for all implemented technologies and security controls.
  • Performing deep security assessments against digital services using manual methods and tools such as Burp Suite, Metasploit, Nikto, Nessus, and ZAP.
  • Security testing and remediating issues in APIs and infrastructure.
  • Conducting threat modeling to identify threats and define tangible security controls and mitigations.
  • Supporting skills and knowledge transfer of contracted work and technical expertise.


What You’ll Bring to the Team and the Tools you’ll need:

You’ll bring a comprehensive background in AppSec Engineering / DevSecOps with experience across testing, threat modeling, application development and possess a solid understanding of cyber attack methodologies. 

  • Security engineering, cloud security, and posture management in CI/CD environments
  • Network technologies, cloud providers (AWS/Azure), Windows and UNIX operating systems
  • Cyber-attack methodologies and deep security assessments
  • Application security and full software development lifecycle
  • Security testing for APIs and infrastructure
  • Threat modeling and mitigation
  • Skills and knowledge transfer
  • Hands-on experience in the above essential skills
  • SC clearance required
  • Burp Suite, Metasploit, Nikto, Nessus, ZAP, GitHub, Python (or similar), Splunk


What’s in it for You?

You’ll enjoy:

  • Competitive Salary and Benefits
  • Flexibility First: Work-life balance through hybrid/remote working options.
  • Your Growth Journey: Continuous learning opportunities and professional development.
  • Perks with a Purpose: Comprehensive benefits package to support your wellbeing, health, family and future, from Private Health Care, Cash Back Plan, Buy and Sell Holiday Options, Life Assurance….


Additional Information!

Location: Remote based role with option to work in Newbury or Kent Offices + Occasional Travel

Clearance: Current and transferable SC security clearance required

Hours: Full time / Permanent37.5 hours per week

Department
Consultancy
Locations
Remote, Sandwich, Kent (Ash Office), Newbury, Berkshire (Newbury Office)
Remote status
Fully Remote
Consultancy · Multiple locations · Fully Remote

Application Security Engineer

Loading application form

Already working at Cyberfort?

Let’s recruit together and find your next colleague.