Application Security Engineer - Contract (12 Months) | London - Hybrid
£650 - £900 p/d inside IR35
We are working with a leading financial services organisation who are seeking a Senior Application Security Engineer for a 12-month contract based in London.
You will help shape and evolve the organisation's application security strategy.
Role Overview
You will be responsible for driving the vision and execution of the application security programme across the software development lifecycle.
A key part of the role will involve leveraging offensive security insights (including penetration testing and red team methodologies) to improve secure design, testing coverage, and remediation prioritisation.
Key Responsibilities
1. Lead and evolve the organisation's application security strategy across engineering teams
2. Embed security into CI/CD pipelines and developer workflows (eg GitHub-based environments)
3. Design and build secure-by-default platforms and automation to reduce friction in delivery
4. Integrate and enhance security tooling (SAST, DAST, SCA, API security, IaC scanning)
5. Translate penetration testing and red team findings into actionable engineering improvements
6. Partner with engineering teams to improve secure design, vulnerability remediation, and testing coverage
7. Buil...