Application Security Consultant (AppSec)

Permanent Role

Fully Remote

Up to £80K per annum

Are you a skilled application security professional with a strong grasp of cloud-native development and a passion for safeguarding software systems? Join an innovative cyber security consultancy working at the forefront of resilience, supporting clients across the military, government, finance, and tech sectors.

As an Application Security Consultant, you'll be the go-to expert on software-level threats and controls. You'll play a key role in embedding security within cloud-native development environments-particularly AWS-by supporting engineering teams with secure coding guidance, reviewing code and architecture, and ensuring effective DevSecOps practices.

🎯 Key Responsibilities:

Guide development teams in secure coding best practices through workshops, threat modelling, and code reviews.
Define and enforce security checkpoints across the DevOps lifecycle (SAST, DAST, SCA).
Champion secure API design, including robust authentication, authorisation, and validation techniques.
Identify and mitigate security vulnerabilities through reviews and penetration test support.

📌 Key Requirements:

Solid understanding of cloud-native application security, especially AWS environments.
Experience with API security standards (e.g., OWASP API Top 10).
Familiarity with DevSecOps practices and tools.
One or more certifications: CSSLP, CISSP, OSWE, CREST CRT/CCT App, GIAC GWAPT.

📩 Apply Today:
If you're a proactive security expert with a passion for secure software development, apply now to join a collaborative and mission-driven team committed to making a difference in cyber resilience!