Job Title: Application Security (AppSec) Consultant
Location: Remote (UK-based only)
Salary: Up to £80,000
Type: Full-time, Permanent
Are you passionate about building secure software and driving real impact in the world of cybersecurity? Our client, a cutting-edge cyber consultancy, is seeking an Application Security Consultant to strengthen their growing technical team. This is a fully remote role, offering the chance to work alongside experts from diverse industries including defence, finance, and tech— while making a real difference.
What You’ll Be Doing:
* Partnering with developers and engineers to bake security into every stage of the software development lifecycle.
* Enhancing DevSecOps practices with tools like SAST, DAST, and SCA—making sure security isn’t just an afterthought.
* Leading secure code reviews, threat modelling sessions, and providing practical guidance on secure design.
* Reviewing APIs, cloud-native applications, and infrastructure for security weaknesses—and helping remediate them.
* Acting as a point of escalation for application vulnerabilities and ensuring effective triage and resolution.
* Empowering teams through knowledge-sharing, training, and championing secure development best practices.
What We’re Looking For:
* At least 3 years’ experience in an AppSec or similar security-focused role.
* Hands-on experience with modern development environments, especially AWS-based and cloud-native applications.
* Familiarity with DevOps and CI/CD pipelines, and how to build security into them.
* A strong grasp of secure coding practices, vulnerability management, and secure architecture principles.
* Relevant certifications (such as CSSLP, OSWE, CISSP, or CREST) are a strong plus.
Bonus Points If You Have:
* AWS security certifications
* Experience with infrastructure as code (Terraform, CloudFormation) and container security
* Deep knowledge of API security and OWASP standards