CrawlJobs Logo
Mastercard Logo Mastercard · IT - Software Development

Application Security Lead

United Kingdom, London · Job Posted April 27, 2026
Apply Position
Job Link Share

Job Description

As the Manager, Application Security Lead at Vocalink Limited, you will play a crucial role in enhancing our application security assurance by leading initiatives to enable secure coding practices within our development teams. You will be responsible for designing, implementing, and managing a comprehensive program to embed security into the software development lifecycle. This role requires a deep understanding of application security principles, strong leadership skills, and the ability to collaborate effectively with crossfunctional teams. Your leadership will play a pivotal role in fortifying our cybersecurity posture, ensuring the protection of sensitive financial data, and maintaining the trust of our clients and stakeholders.

Job Responsibility

  • Develop and implement strategies for integrating security assurance into the software development process
  • Establish and execute on forward looking application security strategies that enables proactive secure application development
  • Collaborate with development teams in conducting security reviews, threat modelling, and code analysis to identify and mitigate security vulnerabilities
  • Provide guidance and training to developers on secure coding practices, security best practices, and common vulnerabilities
  • Advise on the development and maintenance of security standards, policies, and guidelines for application development
  • Lead the Penetration Testing tower of Vulnerability Management
  • ensuring that taxonomies and methodologies reflect the needs of Vocalink and that appropriate testing is carried out
  • Stay updated on emerging threats, vulnerabilities, and industry trends in application security, and ensure that security measures are continuously improved and updated
  • Collaborate during regular security assessments and penetration testing of applications to help resolver groups address security weaknesses
  • Serve as a subject matter expert on application security, providing guidance and recommendations to stakeholders across the organization
  • Work closely with the broader security team to align application security efforts with overall security objectives and initiatives
  • Participate in incident response activities, including investigating and responding to security incidents and breaches related to applications

Requirements

  • Proven experience in application security, including hands-on experience with secure coding practices, code review, and vulnerability assessment tools
  • Strong understanding of software development methodologies, programming languages, and web technologies
  • Experience leading or managing a team of security professionals
  • Excellent communication skills, with the ability to effectively communicate technical concepts to non-technical stakeholders
  • Strong analytical and problem-solving skills, with the ability to think critically and creatively to identify and mitigate security risks
  • Ability to work independently and collaboratively in a fast-paced environment
  • Experience initiating and managing improvement in areas of security by leveraging process metrics
  • Strong understanding of the payments industry regulatory landscape and compliance requirements
  • Ability to articulate themselves clearly and concisely to a broad range of senior and junior stakeholders, acting as a bridge as well as guide for the implementation of new capabilities
  • Excellent communication and leadership skills with the ability to collaborate effectively across departments
  • Ability to motivate, inspire and lead people effectively
  • Team player – leads by example
  • Strategic thinker – able to develop and communicate direction
  • Commercially aware
  • Has a bias to action
Mastercard - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Application Security Lead

8 matching positions

Application Security Lead

We are seeking an Application Security Lead to take our existing Secure-SDLC to ...
Location
Location
Salary
Salary:
Not provided
SQR
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven senior Application Security experience (minimum 5 years), supporting engineering teams in a hands-on capacity
  • Strong experience conducting threat modelling and driving mitigations through to implementation
  • Demonstrable experience supporting and operating within a Secure SDLC
  • Mandatory practical, industry experience using OWASP ASVS to define secure development requirements and verify implementations
  • Expert knowledge of common application security risks and mitigations
  • Ability to translate security requirements into pragmatic engineering guidance and communicate effectively with engineers
  • Experience with cloud security (AWS/Azure/GCP), Kubernetes/container security, and IAM patterns
Job Responsibility
Job Responsibility
  • Embed security controls into the SDLC from design through to deployment (requirements, architecture, implementation, verification, and release)
  • Partner with engineering teams to implement practical secure design patterns
  • Define and maintain security requirements and acceptance criteria within the development process, including a security focused “Definition of Done”
  • Support release processes including risk-based sign-off, exception handling, and remediation planning
  • Facilitate threat modelling workshops and produce clear, actionable outputs, including data flow diagrams, trust boundaries, misuse cases, risk ratings, and agreed mitigations
  • Provide hands-on architecture review and guidance for product new services, features, and integrations
  • Apply OWASP ASVS as the primary application security requirements baseline, mapping ASVS controls into engineering deliverables and test evidence
  • Define verification approaches using a blend of manual review, automated testing, and security tooling
  • Drive secure coding practices and provide actionable feedback through design reviews, and targeted engineer coaching
Read More
Arrow Right
New

Lead Application Security Architect

The Application Security Architect is a senior, influential role responsible for...
Location
Location
United Kingdom; Sweden; Poland , London; Stockholm; Łódź
Salary
Salary:
Not provided
arrive.com Logo
Arrive
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of experience in technology, with at least 7 years in a dedicated application security or product security role
  • Demonstrated experience designing and implementing a Secure SDLC in a cloud-native environment (GCP, AWS)
  • Hands-on experience with the architecture and strategy of AppSec tools (e.g., Snyk, Checkmarx, Veracode,)
  • Experience with securing microservices architectures, APIs, and modern web/mobile applications
  • Experience with securing AI/ML systems
  • A Bachelor’s degree in a relevant field or equivalent professional experience
Job Responsibility
Job Responsibility
  • Champion and orchestrate the definition of Arrive’s global Secure Software Development Lifecycle (SSDLC), from threat modeling to secure release, in close partnership with key stakeholders across Engineering and IT
  • Develop and maintain a comprehensive set of global security standards, baselines, and guidelines for secure coding, vulnerability management, and secure architecture
  • Create and champion the strategy for our application security tooling, including SAST, DAST, IAST, and Software Composition Analysis (SCA)
  • Define and manage the application security standards for Mergers & Acquisitions, establishing clear requirements and guiding the architectural integration of acquired technologies
  • Act as a lead security consultant and strategic partner for product and engineering teams, providing expert guidance on secure design patterns and vulnerability remediation
  • Forge a dynamic partnership with the Platform Security team: co-design the security tooling roadmap, consume their platforms where they meet global standards, and introduce new architectural patterns where needed
  • Lead security architecture reviews and threat modeling sessions for new applications and high-risk features
  • Act as a senior mentor and advocate for security engineers and champions across the organization, helping to grow our security talent
  • Stay at the forefront of emerging application security threats, with a particular focus on the risks associated with AI/ML systems
  • Collaborate with Data & AI teams to develop security principles and architectural patterns for securely integrating AI into our products
  • Fulltime
Read More
Arrow Right

Cloud Application Security Lead

Cloud Application security lead is a Senior VP engineer with hands-on experience...
Location
Location
Israel , Tel Aviv
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Expertise of cloud engineering and application security, demonstrated by previous roles in the domain and industry certification
  • Good understanding of security capabilities supporting application development such as authentication, authorization, credential management, certificate management, encryption for on-prem and cloud
  • Understanding of container orchestration technologies
  • Hands-on experience developing high-performance solutions following Agile methodologies ideally backend Java experience
  • Containers K8s hands on experience understanding the lifecycle of a containers and integration with security boundaries-advantage
  • Experience in building end to end solutions for the cloud domain in a secure manner
  • Familiarity with Java required, advantage - GoLang, Node.js, authentication
Job Responsibility
Job Responsibility
  • Technical engineering leadership and hands on development working with key stakeholders of cloud engineering and application security experts
  • Explore and resolve key application security gaps and drive their resolutions
  • Develop modules that resolve identified gaps in a centralized optimized manner such as: credential mgmt, authentication, authorization, end to end scanning tools
  • Act as an advisor and expert lead to various development teams across the company, to help them improve their expertise within cloud engineering and application security
What we offer
What we offer
  • Generous holiday allowance starting at 22 days
  • Private medical insurance packages
  • Employee Assistance Program
  • Fulltime
Read More
Arrow Right

Application Security Engineer, Lead

Crafting the right network, with the right equipment and software, requires a co...
Location
Location
United States , Fort Meade
Salary
Salary:
77600.00 - 176000.00 USD / Year
boozallen.com Logo
Booz Allen Hamilton
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience implementing application security services such as macro-segmentation, micro-segmentation, application-aware firewalls, and Web Application Firewalls (WAF)
  • 5+ years of experience with next-generation firewalls, such as Palo Alto, or Cisco, or Fortninet, or Juniper, or Illumio
  • 5+ years of experience with application delivery products, such as F5, Nginx, A10, or NetScaler
  • Experience leading cross-functional teams across various technologies and environments
  • Experience with DoD enterprise networks, such as defense infrastructure, including DMZ and application security
  • Secret clearance
  • HS diploma or GED
Job Responsibility
Job Responsibility
  • Develop enterprise-wide infrastructure
  • Troubleshoot and resolve complex network issues
  • Analyze working infrastructures
  • Increase security, reliability, and availability for mission-critical network systems
  • Optimize client operations and modernization
What we offer
What we offer
  • Health, life, disability, financial, and retirement benefits
  • Paid leave
  • Professional development
  • Tuition assistance
  • Work-life programs
  • Dependent care
  • Recognition awards program
Read More
Arrow Right

Application Security Engineering Lead

Join us at Barclays as an Application Security Engineering Lead, where you'll de...
Location
Location
United Kingdom , Glasgow; Knutsford
Salary
Salary:
Not provided
barclays.co.uk Logo
Barclays
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience with the software security landscape: CVEs, CWEs, common software vulnerability types
  • Experience with SAST, SCA, and DAST, including the strengths and weaknesses of each
  • At least one programming language (e.g. Java, Go)
  • At least one major cloud provider (e.g. AWS, GCP, Azure)
  • Experience with REST API design
  • Experience with HTTP Authentication
  • Experience with Linux at the terminal, including scripting and automation (e.g. shell, Python)
Job Responsibility
Job Responsibility
  • Provision of subject matter expertise on security systems and engineering patterns
  • Development and implementation of protocols, algorithms, and software applications to protect sensitive data and systems
  • Management and protection of secrets, ensuring that they are securely generated, stored, and used
  • Execution of audits to monitor, identify and assess vulnerabilities in the banks infrastructure/software and support the response to potential security breaches
  • Identification of advancements in to support the innovation and adoption of new cryptographic technologies and techniques
  • Collaboration across the bank, including developers and security teams, to ensure that cryptographic solutions align with business objectives, security policies and regulatory requirements
  • Development/ Implementation and maintenance of Identity and Access Management solutions and systems
What we offer
What we offer
  • Competitive holiday allowance
  • Life assurance
  • Private medical care
  • Pension contribution
  • Fulltime
Read More
Arrow Right

Senior Security Engineer - Application Security

This is an opportunity to join K's critical InfoSec team as a Senior Security En...
Location
Location
United States , New York
Salary
Salary:
150000.00 - 185000.00 USD / Year
khealth.com Logo
K Health
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in Information Security, Cloud Security, IT Security, and/or Application Security
  • Strong expertise in cloud technology (AWS, GCP, or Azure), modern programming languages, utilization of generative coding utilities, and the security implications of utilizing AI code development utilities
  • Demonstrated experience researching, establishing, and successfully rolling out enterprise-wide security policies and guidelines
  • Proven experience establishing a cutting-edge security posture, particularly within the regulated healthcare technology field
  • Excellent communication skills, capable of translating complex security risks into clear, actionable advice for technical and non-technical stakeholders
  • Expertise in compliance, security, and regulatory areas such as
  • HIPAA, PHI, AKS, SOC 2, ISO, GDPR, etc.
  • Flexibility in covering a rotation for critical on-call support responsibilities
Job Responsibility
Job Responsibility
  • Lead the development and implementation of robust application security protocols throughout the entire Software Development Lifecycle (SDLC)
  • Design, deploy, and continuously monitor cloud security architecture across our cloud environments, ensuring performance and resilience
  • Manage the security posture of K’s core IT infrastructure, internal networks, and perimeter defenses, mitigating threats before they impact operations
  • Ensure adherence to relevant healthcare regulatory and compliance requirements (e.g., HIPAA, GDPR, etc.) across all product lines and systems
  • Conduct proactive vulnerability assessments, penetration tests, and security reviews to identify and remediate potential weaknesses in our platforms
  • Collaborate with engineering teams to integrate security tools and practices into continuous integration/continuous deployment (CI/CD) pipelines
What we offer
What we offer
  • Hybrid work schedule with weekly lunches and stocked fridges
  • Monthly social committees for company events
  • 18 vacation days, 9 company holidays, 5 sick days, and 2 personal days
  • Stock options for every full-time employee
  • Paid parental leave
  • 401k benefit
  • Commuter Benefits
  • Competitive health, dental, and vision insurance options
  • Fulltime
Read More
Arrow Right

Senior Security Engineer, Application & Platform Security

The security team is responsible for and committed to securing all things Sentry...
Location
Location
Canada , Toronto
Salary
Salary:
200000.00 - 295000.00 CAD / Year
sentry.io Logo
Sentry
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6+ years of industry experience designing, building, and supporting large-scale distributed systems in production
  • Strong fundamentals in computer science skills
  • Experience in securing container based environments in cloud platforms (e.g., AWS, Azure, GCP) and their SDKs/APIs
  • Degree in Computer Science or related field
  • Experienced and comfortable programming in at least one language, with a strong preference for Python, Go, or Rust
  • Applied knowledge of cryptography, PKI, TLS, and practical implementations
  • An up to date understanding of the threat landscape as it pertains to SaaS companies
  • Strong communication skills
Job Responsibility
Job Responsibility
  • Lead highly impactful initiatives to solve critical security challenges, from idea formulation to design and implementation
  • Work on cross company objectives to influence and achieve security objectives
  • Research and evaluate new technologies to enhance the company's security posture with an eye towards scalability
  • Identify potential threats and vulnerabilities in our systems and data, as well as help develop and implement solutions to safeguard them
  • Enable cross-functional teams to implement security solutions aligned with Secure-by-Design concepts and standards
What we offer
What we offer
  • incentive compensation
  • equity grants
  • paid time off
  • group health insurance coverage
  • Fulltime
Read More
Arrow Right

Senior Security Engineer, Application & Platform Security

The security team is responsible for and committed to securing all things Sentry...
Location
Location
United States , San Francisco
Salary
Salary:
190000.00 - 280000.00 USD / Year
sentry.io Logo
Sentry
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6+ years of industry experience designing, building, and supporting large-scale distributed systems in production
  • Strong fundamentals in computer science skills
  • Experience in securing container based environments in cloud platforms (e.g., AWS, Azure, GCP) and their SDKs/APIs
  • Degree in Computer Science or related field
  • Experienced and comfortable programming in at least one language, with a strong preference for Python, Go, or Rust
  • Applied knowledge of cryptography, PKI, TLS, and practical implementations
  • An up to date understanding of the threat landscape as it pertains to SaaS companies
  • Strong communication skills
Job Responsibility
Job Responsibility
  • Lead highly impactful initiatives to solve critical security challenges, from idea formulation to design and implementation
  • Work on cross company objectives to influence and achieve security objectives
  • Research and evaluate new technologies to enhance the company's security posture with an eye towards scalability
  • Identify potential threats and vulnerabilities in our systems and data, as well as help develop and implement solutions to safeguard them
  • Enable cross-functional teams to implement security solutions aligned with Secure-by-Design concepts and standards
What we offer
What we offer
  • incentive compensation
  • equity grants
  • paid time off
  • group health insurance coverage
  • Fulltime
Read More
Arrow Right