Engineer the Quantum RevolutionYour expertise can help us shape the future of quantum computing at Oxford Ionics.

View Open Roles

Application Security Engineer

Shieldpay
City of London
1 month ago
Create job alert

Shieldpay City Of London, England, United Kingdom

Join or sign in to find your next job

Join to apply for the Application Security Engineer role at Shieldpay

Shieldpay City Of London, England, United Kingdom

3 days ago Be among the first 25 applicants

Join to apply for the Application Security Engineer role at Shieldpay

The opportunity

We are looking for an accomplished Application Security Engineer to join the Information Security team at Shieldpay. You will play a key role in upholding the security of Shieldpay's products, company systems, and people. The ideal candidate will take a security-first approach in everything they do.

Our global partners, and the regulatory bodies we answer to, trust us to ensure total security across all processes, whether that's in the processing of client monies or our internal security processes. You will be responsible for helping us achieve our mission of becoming the most trusted payment partner by ensuring our digital security.

Reporting into our Chief Information Security Officer, you'll work to make continuous security improvements across the organization. You will be key in designing and helping implement technical security architecture for new payment services, ensuring security is integrated into every step of the application lifecycle.

What You'll Be Doing

  • Serving as the Application Security SME, providing technical expertise and guidance to engineers in the secure development of their products.
  • Utilize SAST, DAST, and SCA within the development pipeline and collaborate with the engineering team to investigate, re-test, and resolve identified vulnerabilities.
  • Conduct internal and external penetration testing and partner with external experts to proactively uncover potential security threats.
  • Lead architectural reviews and threat modeling to embed security requirements into product designs.
  • Own the secure software development lifecycle and represent application security in ISO 27001 audits, ensuring alignment and compliance with the standard.
  • Contribute towards the broader company technical strategy, guiding it in a more secure direction from a development perspective.
  • Regularly evaluate and report on the effectiveness of existing security controls as part of the RCSA process.
  • Contribute to the wider security team and assist with incident response, monitoring, and routine security operations tasks.
  • Work with the rest of the organization to build security into everyday functions, prioritizing a culture of security best practices.

What We're Looking For In You

  • Proven experience in Application Security, Penetration Testing, or similar roles, especially within FinTech or payments.
  • Experience with SAST, DAST, and SCA security tooling and the ability to interpret and address their findings.
  • Familiarity with implementing ISO 27001 within software development environments.
  • Proficiency in conducting penetration testing and vulnerability assessments, both manually and with automated tools.
  • Knowledge of threat modeling and security architecture reviews to identify and mitigate risks in product designs.
  • Solid understanding of software development methodologies and experience working with development teams to integrate security practices into the SDLC.
  • Strong communication and collaboration skills to build effective relationships within your team and the wider business.
  • Experience with AWS and GCP cloud security services, including WAF, API gateways, key management services, and secret managers.
  • Certifications such as OSCP, OSWE, GPEN, GWAPT, GMOB, CRT, PenTest+ are desirable but not essential.

Our Promise

Shieldpay is an equal opportunities employer. We are committed to building a fair and transparent workforce that does not discriminate based on gender, sexual orientation, pregnancy or maternity, gender reassignment, race, ethnicity, religion, disability, or age. We offer flexible working options, including flexible hours and hybrid work, to support our employees' work-life balance.

Seniority level

  • Mid-Senior level

Employment type

  • Full-time

Job function

  • Information Technology

Industries

  • Computer and Network Security

Referrals increase your chances of interviewing at Shieldpay by 2x.

Get notified about new Application Security Engineer jobs in City Of London, England, United Kingdom.


#J-18808-Ljbffr

Related Jobs

View all jobs

Application Security Engineer

Application Security Engineer

Application Security Engineer (Web3)

Application Security Engineer (Chinese Speaking Preferred)

Application Security Engineer - OWASP / ISO / SOC2 - ID42346

Application Security Engineer - Infosum (Basingstoke, Hybrid: 2 days onsite)

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Jobs

Pre-Employment Checks for Cyber Security Jobs: DBS, References & Right-to-Work and more Explained

The cyber security sector in the UK stands at the forefront of protecting national infrastructure, business operations, and personal data from increasingly sophisticated cyber threats. As organisations across all sectors recognise cyber security as a critical business function, employers are implementing the most rigorous pre-employment screening processes in the technology industry to ensure they recruit professionals capable of defending against advanced persistent threats and maintaining the highest standards of security and trustworthiness. Whether you're a penetration tester, security analyst, incident response specialist, or chief information security officer, understanding the comprehensive vetting requirements is essential for successfully advancing your career in this security-critical field. This detailed guide explores the extensive background checks and screening processes you'll encounter when applying for cyber security positions in the UK, from fundamental eligibility verification to the most stringent security clearance requirements and specialised threat intelligence assessments.

Careers

Why Now Is the Perfect Time to Launch Your Career in Cyber Security: The UK's Digital Defence Revolution

The United Kingdom faces an unprecedented cyber security challenge that presents an extraordinary career opportunity. With cyber attacks increasing by 300% year-on-year and the average cost of a data breach reaching £4.24 million, Britain urgently needs skilled cyber security professionals to defend its digital infrastructure, protect citizens' data, and maintain national security in an increasingly connected world. If you've been considering a career change or seeking to future-proof your professional trajectory, cyber security represents one of the most secure, well-compensated, and socially impactful career choices available. The convergence of escalating threats, skills shortage, government investment, and regulatory requirements has created a perfect storm of opportunity that shows no signs of abating.

Jobs

Automate Your Cyber Security Jobs Search: Using ChatGPT, RSS & Alerts to Save Hours Each Week

Cyber roles drop across consultancies, MSSPs, hyperscalers, banks, gov & start-ups every day—often buried in ATS portals or duplicated across boards. The fix is simple: put discovery on autopilot with keyword-rich alerts, RSS feeds & a reusable ChatGPT workflow that triages listings, ranks fit, & tailors your CV in minutes. This copy-paste playbook is built for www.cybersecurityjobs.tech readers. It’s UK-centric, practical, & designed to save you hours each week. What You’ll Have Working In 30 Minutes A role & keyword map spanning SecOps/Detection, DFIR, AppSec, Cloud Security, GRC, Red Team, Threat Intel, IAM/PAM, OT/ICS & Vulnerability Management. Shareable Boolean search strings for Google & job boards to cut noise fast. Always-on alerts & RSS feeds delivering fresh roles to your inbox/reader. A ChatGPT “Cyber Job Scout” prompt that deduplicates, scores fit & outputs tailored actions. A simple pipeline tracker so deadlines & follow-ups never slip.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.