CrawlJobs Logo
Barclays Logo Barclays · IT - Software Development

Application Security Specialist

United States, Whippany 175000.00 - 225000.00 USD / Year · Job Posted May 05, 2026
Apply Position
Job Link Share

Job Description

Join us as an Application Security Specialist for Barclays, where you will play a critical role in safeguarding the bank’s technology landscape. You will lead the hands-on delivery and continuous enhancement of the firm’s DevSecOps and Application Security programs. Also, embed security controls across the software development lifecycle, integrating guidance directly into developer workflows. This position requires close partnership with engineering and security stakeholders to scale modern, developer-centric security capabilities that enable secure innovation.

Job Responsibility

  • Lead the hands-on delivery and continuous enhancement of the firm's DevSecOps and Application Security programs
  • Embed security controls across the software development lifecycle, integrating guidance directly into developer workflows
  • Partner with engineering and security stakeholders to scale modern, developer-centric security capabilities that enable secure innovation
  • Development and execution of assessments, audits, and threat models to identify vulnerabilities within the banks systems, applications and servers using penetration tools and techniques, and communicate key findings and recommendations to stakeholders
  • Collaboration with stakeholders and IT teams to identify emerging cyber-attack techniques, tools and technologies and to support the development of penetration testing methodologies
  • Development and maintenance of comprehensive documents and reports for senior stakeholders on penetration test findings, and remediation guidance
  • Collaboration with stakeholders to understand their security requirements and controls in business processes, application/services, to enhance overall security posture and assurance
  • Identification of emerging vulnerabilities, exploit codes and cyber-attacks to develop testing methodologies and assurance activities

Requirements

  • Extensive development experience in at least one ecosystem (e.g. Java (Spring), .NET, GoLang)
  • Experience in cloud-native development security, container orchestration (e.g. Kubernetes), and infrastructure-as-code tools such as Terraform and Helm
  • Advanced knowledge of API and mobile security, including common vulnerabilities and mitigation techniques

Nice to have

  • Deep understanding of modern secure SDLC processes, DevOps toolchains, CI/CD automation, and code-signing practices
  • Knowledge of SAST, DAST, SCA, and software supply chain security
  • Understanding of AI security within application security, including model vulnerabilities, malware risks, and prompt injection techniques

What we offer

  • Medical
  • Dental
  • Vision coverage
  • 401(k)
  • Life insurance
  • Other paid leave for qualifying circumstances
  • Incentive award
  • Competitive holiday allowance
  • Private medical care
  • Pension contribution
Barclays - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Application Security Specialist

8 matching positions

Application Security Specialist

We are looking for an Application Security Specialist to assess and strengthen t...
Location
Location
United Kingdom , Cheshire
Salary
Salary:
Not provided
whitehallresources.com Logo
Whitehall Resources Ltd
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Knowledge of OWASP Top 10 and secure development principles
  • Experience with scanning tools (e.g., SonarQube, Veracode, Fortify)
  • Understanding of cloud security and API/application architecture
Job Responsibility
Job Responsibility
  • Conduct security reviews, threat modelling, and vulnerability assessments
  • Support secure coding practices and provide guidance to development teams
  • Operate security scanning tools (SAST/DAST/IAST)
  • Validate remediation of vulnerabilities and track risk reductions
  • Contribute to secure design standards and best practices
  • Work with DevOps to embed security into CI/CD pipelines
Read More
Arrow Right

Qa Testing Specialist (Application Security)

NTT DATA is looking for a QA Testing Specialist for a Corporate Banking client, ...
Location
Location
United States , Charlotte
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years in QA testing of Java/JSP-based web applications
  • 5+ years of Strong knowledge of SDLC, STLC, Agile Scrum
  • 5+ years of Hands-on experience in JavaScript/browser debugging (DevTools)
  • 5+ years of Experience with HTTP traffic analysis, payload modification, session/token handling
  • Familiarity with Jira, Xray or similar tools
  • 5+ years of Experience in API testing
  • Understanding of OWASP Top 10 / web security fundamentals
  • Strong analytical, problem-solving, and communication skills
Job Responsibility
Job Responsibility
  • Design and execute test cases for functional & non-functional requirements
  • Perform application security testing and validate vulnerabilities
  • Identify, log, and track defects using Jira/Xray
  • Debug issues using browser developer tools (JS/network analysis)
  • Perform session manipulation/mocking and request/response validation
  • Conduct API testing (Postman/REST tools)
  • Collaborate within Agile Scrum teams (onsite/offshore)
  • Analyze test results and provide actionable feedback
  • Manage test data and contribute to continuous QA improvements
  • Fulltime
Read More
Arrow Right

Qa Testing Specialist (Application Security / Fte / Hybrid)

NTT DATA is looking for a QA Testing Specialist for a Corporate Banking client, ...
Location
Location
United States , Jersey City
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years in QA testing of Java/JSP-based web applications
  • 5+ years of Strong knowledge of SDLC, STLC, Agile Scrum
  • 5+ years of Hands-on experience in JavaScript/browser debugging (DevTools)
  • 5+ years of Experience with HTTP traffic analysis, payload modification, session/token handling
  • Familiarity with Jira, Xray or similar tools
  • 5+ years of Experience in API testing
  • Understanding of OWASP Top 10 / web security fundamentals
  • Strong analytical, problem-solving, and communication skills
  • Bachelor’s degree in Computer Science / IT or related field
Job Responsibility
Job Responsibility
  • Design and execute test cases for functional & non-functional requirements
  • Perform application security testing and validate vulnerabilities
  • Identify, log, and track defects using Jira/Xray
  • Debug issues using browser developer tools (JS/network analysis)
  • Perform session manipulation/mocking and request/response validation
  • Conduct API testing (Postman/REST tools)
  • Collaborate within Agile Scrum teams (onsite/offshore)
  • Analyze test results and provide actionable feedback
  • Manage test data and contribute to continuous QA improvements
  • Fulltime
Read More
Arrow Right

Application Security DevSecOps Specialist

The Application Security DevSecOps Specialist will play a vital role in integrat...
Location
Location
Romania , Brasov
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Cybersecurity, Computer Science, Software Engineering, or equivalent experience
  • Minimum 3-5 years of experience in application security engineering
  • Familiarity with implementing container security policies and securing high-performance CI/CD development ecosystems
  • Proficiency in multiple programming languages (e.g., Java, Python, JavaScript, Go, .NET)
  • Extensive experience deploying application security tools like SonarQube, Checkmarx, Veracode, OWASP ZAP
  • Expertise in CI/CD tools and platforms (e.g., Jenkins, GitHub Actions, Azure DevOps)
  • Solid understanding of container orchestration technologies (e.g., Kubernetes, Docker)
  • Familiarity with cloud platforms (AWS, Azure, GCP) and IaC assessment tools (Terraform, CloudFormation)
  • Advanced knowledge of the OWASP Top 10 vulnerabilities, secure coding techniques, and cryptographic best practices
  • Proficiency in API security testing and securing microservices
Job Responsibility
Job Responsibility
  • Incorporate security controls and standards into all phases of the software development lifecycle (SDLC)
  • Collaborate with developers to adopt secure coding practices, including OWASP compliance
  • Conduct threat modeling and evaluate design documents to identify security vulnerabilities
  • Establish security requirements and acceptance criteria for application development projects
  • Design and implement security automation within CI/CD workflows using tools for SAST, DAST, IAST, SCA and compliance monitoring
  • Develop custom security testing frameworks compatible with agile and DevSecOps models
  • Conduct infrastructure-as-code (IaC) configuration checks and enforce compliance policies
  • Automate secrets scanning, credential hygiene practices, and dependency vulnerability reviews
  • Execute static (SAST) and dynamic (DAST) application security assessments
  • Perform manual penetration testing and secure code reviews to detect risks
What we offer
What we offer
  • Smooth integration and a supportive mentor
  • Choose from Remote, Hybrid or Office work opportunities
  • Projects have different working hours to suit your needs
  • Sponsored certifications, trainings and top e-learning platforms
  • Private Health Insurance
  • Individual coaching sessions or joining our accredited Coaching School
  • Epic parties or themed events
Read More
Arrow Right

Application Security Engineer (Code & Refactoring Specialist)

We are hiring an Application Security Engineer to work hands-on with client and ...
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
Codvo AI
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5–8 years in Application Security + Software Development
  • Strong coding experience in C/C++/.NET/Java/Python
  • Hands-on with tools like SonarQube, Semgrep, Snyk, Checkov, Trivy, GitHub Advanced Security
  • Knowledge of secure coding standards (OWASP, MISRA, CERT)
  • Familiarity with IEC 62443, SOC 2, ISO 27001 requirements in industrial contexts
Job Responsibility
Job Responsibility
  • Conduct static and dynamic code reviews (C/C++, .NET, Java, Python) for CRA/SOC2/ISO compliance gaps
  • Run and tune SAST/SCA/Secrets/IaC scanners to identify vulnerabilities with low false positives
  • Build secure code remediation patterns (crypto, auth, logging, PII handling)
  • Collaborate with client developers to merge secure fixes quickly and efficiently
  • Work with the CRA Practice Lead to maintain compliance-aligned secure coding playbooks
  • Support generation of compliance evidence (audit-ready artifacts)
  • Fulltime
Read More
Arrow Right
New

Azure Cloud Engineer / Specialist Application

We are seeking an Azure-savvy Cloud Engineer for a six-month contract, with an o...
Location
Location
Australia , Melbourne
Salary
Salary:
Not provided
https://www.randstad.com Logo
Randstad
Expiration Date
July 09, 2026
Flip Icon
Requirements
Requirements
  • Strong background as a Cloud Engineer with deep Azure ecosystem expertise
  • Proven experience in large-scale Application Migration within enterprise environments
  • Exceptional analytical and problem-solving skills, focused on how infrastructure changes impact application availability and user access
  • Previous hands-on experience delivering key migration, transformation, or major enhancement projects, particularly those involving divestments, mergers, or complex corporate separation initiatives (highly regarded)
  • Cloud
  • Azure certifications
  • Bachelor Degree
Job Responsibility
Job Responsibility
  • Impact Analysis & Dependency Mapping: Analyzing existing internal Azure systems to identify, map, and document application dependencies
  • Architecting Secure Access: Assessing the downstream impact of the separation (including Tenant Separation/identity segregation initiatives) and designing the roadmap for securely provisioning migrated applications to the newly independent workforce
  • Migration Planning: Utilizing experience with dependency mapping or similar tooling (e.g., DR Migrate) to support detailed migration planning
  • Fulltime
Read More
Arrow Right

Personnel Security Specialist - Entry

The PSS provides support for security assessment investigations, including backg...
Location
Location
United States , Huntsville
Salary
Salary:
58000.00 - 65000.00 USD / Year
amentum.com Logo
Amentum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Must have an Active Top Secret US Government Clearance. Note: US Citizenship is required to maintain a Top Secret Clearance.
  • Two (2) years of experience in the personnel security investigative or investigative analyst field.
  • Demonstrated analytical ability to critically review and analyze various types of incoming material and investigative reports to discern potential security vulnerabilities and to identify viable investigative leads
  • Experience conducting and interpreting database checks and credit reports.
  • Experience performing routine office administrative support functions.
  • Proficient computer skills to include: Working knowledge of Microsoft Office software applications (Word, Excel, Outlook, PowerPoint)
  • Use of the Internet to conduct research and / or open-source checks in aid of investigations
  • Experience performing database searches for information related to personnel security matters.
  • Responsibility for security of program data and materials.
  • Processing security clearance and BI documentation in preparation for adjudication.
Job Responsibility
Job Responsibility
  • The PSS provides support for security assessment investigations, including background investigations, periodic reinvestigations, security clearances, employment suitability determinations and continuous evaluation of employees to ensure eligibility for employment
  • Provides support and service to the administration of Security Programs by participating in the direction, from inception to completion of less complex security assessment investigations and rendering appropriate adjudication recommendations regarding the same.
  • Conducts, reviews, and analyzes a variety of interviews internal and external to the organization.
  • Provides support, analysis, and research into complex problems and processes relating to Personal Security.
  • Completes written reports and/or oral presentations utilizing critical thinking and analysis skills.
  • Contributes to development of new principles and concepts.
  • Advises supervisor of potentially controversial matters or those matters with far reaching implications.
  • Initiates or performs extensive FBI indices checks, arrest record checks, and the like to obtain pertinent and identifying information for the cases assigned.
  • Requests, receives, reviews, and analyzes various FBI Government files and related material for determination of an individual's potential security risk.
  • Summarizes data and composes necessary correspondence to appropriate Field Offices for initiation of investigation, outlining background of individual cases, advising information obtained from research and analysis and define security concerns.
What we offer
What we offer
  • Health, dental, and vision insurance
  • Paid time off and holidays
  • Retirement benefits (including 401(k) matching)
  • Educational reimbursement
  • Parental leave
  • Employee stock purchase plan
  • Tax-saving options
  • Disability and life insurance
  • Pet insurance
  • Fulltime
Read More
Arrow Right

Cyber Security Specialist

We are seeking a seasoned cyber security professional to lead the Vulnerability ...
Location
Location
India , Pune
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Possess over 10 years of IT experience with a strong focus on cyber security, vulnerability management, and remediation
  • Proficient in tools such as QualysGuard VMDR, WAS, and cloud scanning solutions
  • Skilled in web application penetration testing and knowledgeable in OWASP, Kali Linux, Burp Suite, CVE, SSL PKI, IAM, SIEM, and perimeter security
  • Experienced in managing large-scale vulnerability scanning operations and reporting
  • Solid understanding of networking and cyber security policies, standards, and procedures
  • Strong stakeholder management and communication skills
Job Responsibility
Job Responsibility
  • Lead the Vulnerability Management and Responsible Disclosure team to strengthen Vodafone’s cyber defence capabilities
  • Drive vulnerability management initiatives, ensuring timely identification, communication, and remediation of threats
  • Oversee penetration testing activities related to responsible disclosures and support incident response during crises
  • Research emerging threats, including zero-day vulnerabilities, and ensure targeted scans and mitigation actions
  • Champion continuous improvement through automation and cross-functional collaboration
  • Act as a technical expert in security scanning and penetration testing
  • Foster team development through individual growth plans and maintain high engagement levels
  • Contribute to administrative and delivery initiatives across domains
What we offer
What we offer
  • Opportunity to lead a high-impact domain within a global cyber security function
  • Exposure to cutting-edge vulnerability management tools and practices
  • Collaboration with international teams and stakeholders across Vodafone markets
  • A chance to influence Vodafone’s cyber risk strategy and operational resilience
  • A dynamic and inclusive work environment that values innovation and continuous improvement
  • Fulltime
Read More
Arrow Right