Application Security Engineer

Bumble Inc.
London
1 month ago
Create job alert

Inclusion at Bumble Inc.

Bumble Inc. is an equal opportunity employer and we strongly encourage people of all ages, colour, lesbian, gay, bisexual, transgender, queer and non-binary people, veterans, parents, people with disabilities, and neurodivergent people to apply. We're happy to make any reasonable adjustments that will help you feel more confident throughout the process, please don't hesitate to let us know how we can help.

In your application, please feel free to note which pronouns you use (For example: she/her, he/him, they/them, etc).

At Bumble, the security of our customers is a top priority. As an application security engineer at Bumble, you should be mission-focused on protecting our customers' data by securing our company's applications and products.

You will architect, build, and support the security of Bumble's applications and products, protecting millions of users' ability to form meaningful connections. With an attacker's mindset, you will proactively identify potential attack vectors, while applying an engineering mindset to problem-solving—crafting creative solutions that reduce friction and enhance security through context-aware and automation-driven approaches.

In this role, you will work closely with our engineering teams to identify and remediate vulnerabilities, establish security best practices, provide security consulting and review services, and automate security processes.

Key Accountabilities:

  1. Design and implement security testing tools within CI/CD pipelines to detect vulnerabilities early without impacting development speed.
  2. Collaborate with engineering teams to embed security best practices and enforce security at every stage of the SDLC.
  3. Conduct risk assessments and threat modelling exercises to identify potential vulnerabilities and prioritise security measures based on impact.
  4. Collaborate with engineers to design secure application architectures, identify potential risks, and recommend security controls.
  5. Identify and prioritise vulnerabilities, driving remediation efforts and offering mitigation strategies to engineering teams.
  6. Train engineering teams in secure practices and promote a security-first mindset across the organisation.
  7. Keep up with the latest security trends, threats, and technologies, updating practices as needed to address evolving risks.


Required Experience & Skills:

  1. +3 years of hands-on experience in application security, including vulnerability management, secure software development, and threat modelling.
  2. Strong foundational knowledge in software engineering, ideally with experience in coding and software development to effectively assess security within application code.
  3. Proven track record of integrating security practices into the software development lifecycle (SDLC), including experience with CI/CD pipeline security.
  4. Demonstrated expertise in identifying, analysing, and prioritising vulnerabilities, as well as working closely with engineering teams on remediation.
  5. Ability to effectively communicate security concepts to non-security stakeholders and collaborate with cross-functional teams to drive security initiatives.


Experience with any of the following is a big plus:

  1. Knowledge of mobile application security principles, frameworks, and common vulnerabilities for iOS and Android is highly desirable.
  2. Familiarity with AI/ML security concepts, such as data integrity in training models, adversarial attacks, and privacy issues in AI applications is highly desirable.


About You:

  1. Your values align strongly with the Bumble Inc. values: Growth, Kindness, Equity, Accountability, and Honesty.
  2. Motivation to solve problems, not to patch over quick fixes.
  3. Ability to communicate with empathy when discussing application and product security with operations & engineering.
  4. Be a constant learner who looks to solve interesting and challenging problems.
  5. Humble expert with a sense of urgency.
  6. Skilled at taking complex topics and making them simple.


About Us:

Bumble Inc. is the parent company of Bumble, Badoo, Fruitz, and Official. The Bumble platform enables people to build healthy and equitable relationships through kind connections. Founded by Whitney Wolfe Herd in 2014, Bumble was one of the first dating apps built with women at the center and connects people across dating (Bumble Date), friendship (Bumble BFF), and professional networking (Bumble Bizz). Badoo, founded in 2006, is one of the pioneers of web and mobile dating products. Fruitz, founded in 2017, encourages open and honest communication of dating intentions through playful fruit metaphors. Official is an app for couples that promotes open and honest communication between partners and was founded in 2020.#J-18808-Ljbffr

Related Jobs

View all jobs

Application Security Engineer

Application Security Engineer

Application Security Engineer, Amazon Application Security

Senior Application Security Engineer

Senior Cloud Application Security Engineer London

Principal Security Engineer

Get the latest insights and jobs direct. Sign up for our newsletter.

By subscribing you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Jobs

Job-Hunting During Economic Uncertainty: Cyber Security Edition

The cybe rsecurity sector sits at the forefront of today’s digital landscape, defending businesses and governments alike from increasingly sophisticated threats. From incident response and network security to cloud protections and zero-trust architectures, cyber security professionals tackle an ever-evolving array of challenges. Yet, even this mission-critical field is not immune to economic turbulence. When broader financial markets experience uncertainty—whether through global recessions, regional downturns, or unexpected macro events—the hiring climate can shift, making roles more selective and budgets tighter. For job seekers in cyber security, this can be disconcerting. You might discover that once-abundant vacancies have become scarce, competition for the remaining positions is fiercer, or company priorities pivot away from large-scale expansions toward essential, cost-justified security projects. At the same time, data breaches and cyberattacks don’t pause during economic slowdowns—if anything, they may escalate as bad actors exploit organizational vulnerabilities. This paradox means that while the market feels tough, demand for cyber security expertise remains robust. In this article, we’ll look at: Why economic uncertainty affects cyber security hiring trends. Strategies for staying competitive, even if the number of open roles shrinks. Methods to highlight your skills, adapt to shifting priorities, and network effectively. Approaches for preserving mental well-being during prolonged searches or uncertain feedback loops. How www.cybersecurityjobs.tech can help you find the ideal security-focused role. By proactively sharpening your skill set, tailoring your professional profile, and engaging with a focused community, you can secure a rewarding cyber security job—even when the broader market feels volatile.

Careers

How to Achieve Work-Life Balance in Cyber Security Jobs: Realistic Strategies and Mental Health Tips

Cyber security is one of today’s most vital and rapidly expanding sectors. As data breaches, ransomware, and other cyber threats continue to evolve, the demand for skilled professionals is surging across industries—from finance and healthcare to government and e-commerce. Whether you’re a penetration tester, security analyst, or threat intelligence expert, you play a key role in safeguarding digital infrastructure and sensitive information. This high-stakes environment, however, often comes with intense pressure. Long hours, constant vigilance, and an ever-changing threat landscape can make it challenging to find time for personal well-being. Many cyber security specialists report difficulty striking a sustainable work-life balance, unsure if it’s even possible in a field that never truly sleeps. Yet, as concerns about mental health and burnout become more pressing, professionals and employers alike are seeking better ways to combine career advancement with a fulfilling personal life. In this comprehensive article, we’ll explore how to achieve a work-life balance in cyber security. You’ll discover strategies for managing 24/7 threat alerts, the importance of realistic expectations, ways to maintain mental health in high-intensity roles, and tips for setting boundaries without compromising your professional growth. Whether you’re new to this dynamic arena or already an established specialist, these insights can help you thrive personally and professionally in the fast-paced world of cyber security.

Careers

Transitioning from Academia to the Cyber Security Industry: How Researchers Can Harness Their Skills to Protect Commercial Environments

Cyber security has become a mission-critical field in an era where data breaches, ransomware attacks, and sophisticated hacking techniques threaten businesses and public institutions alike. As digital transformation touches nearly every facet of modern life, the need for highly skilled individuals capable of defending systems and networks continues to grow. For PhDs and academic researchers with expertise in areas like cryptography, network security, or threat intelligence, this presents an exciting opportunity to deploy your analytical prowess in a high-impact, fast-paced commercial setting. In this guide we’ll explore how academics can successfully pivot from the research lab to the cyber security industry. Learn how to apply rigorous, theory-driven approaches to real-world challenges, from designing secure software architectures to neutralising advanced persistent threats. By embracing the industry’s urgency and end-to-end mindset, you can transform your scholarly insights into robust, market-facing security solutions that protect companies and users on a global scale.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.