CrawlJobs Logo

Security Consultant (Applications)

United Kingdom, London · Job Posted January 06, 2026
Apply Position
Job Link Share

Job Description

Are you a proactive, hands-on Security Consultant looking to make a real impact in a major technology transformation? Here’s your chance to join a leading UK Bank on an exciting 6-month contract, helping modernise their tech stack while maintaining trust and security at every step. You will act as the security lead embedded within an application development delivery team, working across a complex hybrid environment including Java/React, J2EE microservices, RPG/JSP on z/OS, and API-driven architectures. Your mission: enable fast, secure delivery by uplifting application security practices, driving automation, and shaping the secure development lifecycle. You won’t just advise — you’ll be actively solving security challenges alongside engineers, product managers, and business stakeholders. This is a unique opportunity to influence the security posture of critical banking systems, work independently, and see the real-world impact of your work on a transformative programme.

Job Responsibility

  • Lead risk and control assessments, including supplier due diligence, privacy impact assessments, and project security reviews
  • Identify and articulate risks, support mitigation planning, and ensure timely implementation of controls
  • Provide expert advice on Information Security best practices and UK regulatory requirements to a range of stakeholders
  • Develop a deep understanding of the Bank’s secure change processes and guide your delivery team through assessments and approval gates
  • Build trust-based relationships with developers, testers, product managers, and tech leads, acting as a key security partner in the team
  • Participate actively in daily stand-ups, PI planning sessions, and working groups to drive delivery-focused security outcomes

Requirements

  • Hands-on application security experience: secure coding, threat modelling, SAST/DAST tooling
  • Strong knowledge of SDLC and CI/CD integration, with experience securing software throughout its lifecycle
  • Pragmatic, delivery-focused, and able to take ownership of outcomes
  • Excellent communicator, able to explain complex security concepts to technical and non-technical colleagues
  • Skilled at identifying risks and providing creative solutions
  • Comfortable operating independently while collaborating with multiple teams
  • Familiarity with cloud security, microservices, and modern architectures is a plus
  • Experience with tools such as OWASP ZAP, Burp Suite, Acunetix, Netsparker, Checkmarx, Veracode, Fortify, or SonarQube is highly desirable

Nice to have

  • Familiarity with cloud security, microservices, and modern architectures
  • Experience with tools such as OWASP ZAP, Burp Suite, Acunetix, Netsparker, Checkmarx, Veracode, Fortify, or SonarQube

What we offer

  • Influence the security posture of a leading UK Bank’s critical systems
  • Work on a high-profile technology transformation programme
  • Operate autonomously while collaborating with talented engineers and product teams
  • See the tangible impact of your work in a fast-moving, complex environment
  • Supportive, inclusive environment

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Security Consultant (Applications)

8 matching positions

Application Security Consultant

We are seeking an experienced Application Security Consultant to join our Cybers...
Location
Location
United States , Parsippany
Salary
Salary:
70.00 - 80.00 USD / Hour
solomonpage.com Logo
Solomon Page
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3+ years of hands-on Application Security experience in both offensive and defensive security disciplines
  • Strong experience with SAST and SCA tools such as Checkmarx and Snyk, including vulnerability lifecycle management
  • Deep understanding of OWASP Top 10, web application security, API security, and remediation techniques
  • Experience securing AWS cloud environments, including Lambda, API Gateway, IAM, and S3
  • Familiarity with cloud security platforms such as Orca Security, Wiz, or Prisma Cloud
  • Ability to review and assess code written in Node.js, JavaScript, Java, or Python
  • Experience working with change management, release governance, and production deployment processes
  • Strong understanding of Agile, DevSecOps, and CI/CD security integration
  • Excellent communication, stakeholder management, and project coordination skills
  • Experience partnering with development teams to drive security adoption and remediation efforts
Job Responsibility
Job Responsibility
  • Lead application security design and implementation across web, mobile, and AWS cloud-native environments
  • Conduct secure architecture reviews and integrate security controls into CI/CD pipelines
  • Administer and optimize SAST and SCA tools such as Checkmarx and Snyk, including vulnerability triage, remediation guidance, and ruleset tuning
  • Identify and mitigate application security risks aligned with OWASP Top 10 and industry best practices
  • Secure AWS services including Lambda, API Gateway, IAM, and S3 while collaborating with cloud engineering teams
  • Manage and enhance application-layer security technologies through policy tuning, configuration updates, and threat detection improvements
  • Coordinate with change management and release teams to ensure secure, stable, and compliant production deployments
  • Represent the Application Security team in project planning, architecture reviews, and cybersecurity governance discussions
  • Track security findings, remediation efforts, and project milestones while providing regular security reporting to stakeholders
  • Support DevSecOps initiatives and promote secure coding practices through collaboration with development teams
What we offer
What we offer
  • Medical
  • Dental
  • 401(k)
  • Direct deposit
  • Commuter benefits
  • Fulltime
Read More
Arrow Right

Security Consultant

As a Security Consultant, you will lead and support security initiatives for cli...
Location
Location
Belgium , Machelen
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 5 years of IT professional experience in Security and Project management
  • Strong knowledge of network and firewall Management (rule approvals, access requests…)
  • Knowledge in Incident response and investigation
  • Knowledge in Vulnerability Management
  • Understanding of security stakeholders' roles such as infrastructure, network management, application development, and IT architecture
  • ITIL, ISO27001, or SIEM certifications (preferred)
  • Excellent communication and team collaboration skills in multi-cultural environments
  • Bachelor's or Master's degree in computer science
  • Fluency in English, Dutch, and/or French
Job Responsibility
Job Responsibility
  • Lead or contribute to cyber security projects for medium to large organisations, working closely with security architects, engineers, and client stakeholders
  • Manage, configure, review, and optimise firewall environments and network security architectures to ensure strong protection and policy compliance
  • Assess customer security needs and recommend appropriate technical and organisational security measures aligned with best practices
  • Develop technical proposals, security documentation, and customer-facing presentations that communicate secure and scalable solutions
What we offer
What we offer
  • Extensive career development opportunities, both local and international
  • Part of a dynamic network of 56,000 professionals at all stages of their careers
  • Wide array of offices to explore
  • Fulltime
Read More
Arrow Right

Application and Data Security Consultant

Tier4 is looking for a Security Consultant who will be responsible for ensuring ...
Location
Location
United States , Quincy
Salary
Salary:
Not provided
tier4group.com Logo
Tier4 Group
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of IT experience with at least 5+ years as a Security Manager/officer
  • Bachelor's degree in Information Technology or computer science or related field or equivalent experience
  • In-depth knowledge and experience working with common regulatory framework applications related to data security, including HIPAA, HITRUST, – General Data Protection Regulation (GDPR), National Institute of Standards & Technology (NIST) standards, and similar constructs are highly desired
  • Previous knowledge and experience in designing and architecting information technology and security controls across complex and diverse networks, applications, and infrastructures are strongly preferred
  • Technical aptitude, critical thinking skills, and the ability to think outside the box
  • Demonstrated ability to solve complex information security problems, observe security risks and weaknesses, and provide security recommendations to the respective project and delivery teams
  • Ability to translate technical risk issues to business leaders and upper management
  • Excellent verbal, written, and interpersonal communication skills
  • Detail-oriented and value teamwork
  • Ability to resolve problems as they arise and handle situations expediently
Job Responsibility
Job Responsibility
  • Implement Data Security Management and Operation models
  • Establish various security compliance standards including (but not limited to) NIST(National Institute of Standards and Technology), FIPS(Federal Information Processing Standards), FedRAMP(Federal Risk and Authorization Management Program)
  • Engage with agency Privacy and Security office teams to exchange Compliance reports and obtain approvals as necessary
  • Involve with auditors as necessary to provide compliance reports as requested and implement mitigation steps as required
  • Implement process and tools for application vulnerability testing(SAST/DAST)
  • Establish and manage a vulnerability management including coordination of penetration testing and ongoing vulnerability remediation, tracking, and security compliance reporting
  • Setup requirements for penetration testing and engage with vendors and agencies to perform/report pen tests
  • Setup infrastructure audits and reports with the help of system admins and vendors as necessary
  • Maintaining the system integrity and security by following the industry standard IT Controls
  • Implement automation of systems administration and software migration for QA and Production
Read More
Arrow Right

Senior Security Consultant

Outpost24 is looking for a Senior Security Consultant! You will join our Offensi...
Location
Location
Sweden; Netherlands; Spain; Belgium; Germany , Karlskrona; Stockholm; Amsterdam; Barcelona; Leuven
Salary
Salary:
Not provided
outpost24.com Logo
Outpost24 Group
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of hands-on experience in offensive security (red teaming and/or penetration testing)
  • strong understanding of modern attack techniques and methodologies
  • experienced working with cloud environments and modern applications
  • can identify and chain vulnerabilities into meaningful attack scenarios
  • scripting or programming experience
  • curious mindset and passion for security
  • team player who is also comfortable working independently when needed
  • fluent English
Job Responsibility
Job Responsibility
  • Delivering offensive security engagements, including penetration testing and advanced red team engagements, leveraging frameworks such as MITRE ATT&CK and TIBER-EU/DORA
  • Identifying and exploiting vulnerabilities across a wide range of environments and technologies
  • Supporting complex security assessments that require creative and non-standard approaches
  • Collaborating with team members on challenging scenarios and actively contributing to knowledge sharing
  • Contributing to the continuous improvement of our tools, methodologies, and overall offensive security capabilities
What we offer
What we offer
  • Working on a variety of offensive security engagements across different domains
  • Being part of a skilled and collaborative team within Ghost Labs
  • Opportunities to grow through hands-on experience, training, and certifications
  • A flat organizational structure with high autonomy
  • A healthy work-life balance, with flexible working hours and a hybrid working environment
  • Local perks and benefits of working in your chosen country
  • Fulltime
Read More
Arrow Right

Senior Security Consultant, Emergent Threat & Exploit Researcher

Do you enjoy attacking networks? Do you enjoy sifting through large amounts of a...
Location
Location
United Kingdom
Salary
Salary:
Not provided
rapid7.com Logo
Rapid7
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years in an active technical security role & 4+ years Penetration Testing Consulting experience
  • Expert knowledge of Modern penetration testing tools and methods
  • Expert knowledge of Network and web-based application security concepts
  • Expert knowledge of Windows/Linux/UNIX internals
  • Expert knowledge of Exploit research and development
  • Experience using multiple interpreted languages (Ruby, Python, PHP, etc.) and compiled languages (Java, C, C++, Assembly, etc.)
  • Technical competencies, including previous technical consulting experience
  • High quality report writing and peer reviewing
  • Strong knowledge of common regulatory structures and obligations and common I.T. governance
  • The ability to effectively lead teams of penetration testers while on engagements
Job Responsibility
Job Responsibility
  • Deliver Rapid7’s Vector Command Continuous Red Teaming service
  • Investigate emerging threats, uncover novel vulnerabilities across large external attack surfaces, and attempt to breach customer perimeter defenses to gain initial access
  • When new N-day or zero-day vulnerabilities emerge, rapidly analyze them, recreate proof-of-concepts, and assess customer environments for exposure
  • Actively hunt for novel vulnerabilities and unique attack paths across customer attack surfaces to support initial access operations
  • Evaluate large external attack surfaces to identify vulnerabilities that enable initial access
  • Collaborate closely with a team of Red Team operators, participating in daily meetings to establish attack objectives and operational direction
  • Analyze, develop, and exploit N-day and newly released zero-day vulnerabilities relevant to customer environments
  • Identify novel attacks through black-box evaluation of customer web applications, leading to initial access or exposure of sensitive data
  • Develop and maintain positive relationships with clients and understand their business and needs
  • Participate in industry conferences and professional organizations
Read More
Arrow Right

Senior Product Security Consultant

The Product Security Consultant is a post-sales role that works closely with cus...
Location
Location
United States
Salary
Salary:
89300.00 - 120700.00 USD / Year
rapid7.com Logo
Rapid7
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • At least 5 years of technical experience working with security applications: Security Information and Event (SIEM)/ Log Management, Governance Risk Compliance (GRC), Identity Access Management, IDS/IPS, Advanced Persistent Threat, Anti-Virus, Vulnerability Management
  • Experience with scripting languages and databases: Python or Powershell
  • SQL
  • Interacting with APIs
  • Experience communicating highly technical concepts to a non-technical audience
  • Understanding of network technologies and protocols (e.g. DHCP, IP, DNS, HTTP, etc.)
  • Experience deploying and maintaining virtual machines and configuring policies on cloud platforms (e.g. Amazon Web Services (AWS), Microsoft Azure, Google Cloud Platform (GCP))
  • Administrator-level experience with Microsoft Windows Server, Linux and/or MacOS operating systems
  • Customer Centric Communication: Ability to translate complex technical concepts and security best practices into clear, actionable guidance for customers with varying levels of technical expertise
  • Technical Collaboration & Enablement: Ability to partner sales teams to provide technical expertise and support throughout the customer lifecycle, from pre-sales scoping to post-implementation success
Job Responsibility
Job Responsibility
  • Evaluate information technology architecture within customer environments across a broad range of industries and proportions to deploy Rapid7 products, and advise on security best practices within the scope of these products
  • Document and communicate design & implementation details to customer end users
  • Automate and customize solutions to enable customers to use Rapid7 products most efficiently via API scripting, reporting, and custom dashboard development
  • Support sales teams by providing enablement on available offerings and by providing scoping assistance during the sales cycle
  • Generate, Maintain and deliver R7 internal enablement materials to team members and cross-functional R7 partners, as well as team infrastructure, internal processes, tooling, and collateral
  • Willingness to travel up to 30%
  • Fulltime
Read More
Arrow Right

Security Consultant

We are looking for an experienced Security Consultant to support and strengthen ...
Location
Location
United States , Dallas
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 15+ years of experience in information security with strong knowledge of network, endpoint, and data protection architectures
  • Hands-on experience with security technologies such as Zscaler, Cisco ISE, Imperva, CASB platforms, endpoint protection tools, and certificate management solutions
  • Demonstrated background in incident response, threat investigation, and forensic analysis within enterprise environments
  • Solid understanding of vulnerability assessment, security governance, compliance practices, and risk-based remediation
  • Experience administering infrastructure and supporting secure architecture across complex enterprise environments
  • Strong communication and leadership abilities with a track record of mentoring team members and coordinating with cross-functional stakeholders
  • Ability to stay informed on emerging threats, evolving attack methods, and modern security technologies
Job Responsibility
Job Responsibility
  • Administer and enhance web, network, and cloud security platforms, including tools such as Imperva, Zscaler, and Cisco ISE, to protect business-critical environments
  • Investigate, contain, and help resolve security incidents affecting networked systems while supporting broader response and recovery activities
  • Perform security reviews, control assessments, and compliance validation efforts to identify gaps and recommend corrective actions
  • Create, refine, and uphold security standards, operational procedures, and governance practices across the organization
  • Oversee enterprise certificate management activities, including provisioning, renewal, revocation, validation, and automation across hybrid and multi-cloud environments
  • Support PKI operations through health monitoring, remediation of identified weaknesses, and maintenance of certificate authority components
  • Manage cloud application and CASB security capabilities, including SaaS visibility, OAuth governance, policy enforcement, and detection of unsanctioned application use
  • Maintain endpoint protection technologies, coordinate agent updates and patching, and strengthen endpoint security controls through continuous monitoring and assessment
  • Partner with internal teams, external providers, and entry-level security staff to deliver projects, share expertise, and improve the effectiveness of security initiatives
What we offer
What we offer
  • medical, vision, dental, life and disability insurance
  • 401(k) plan
  • Fulltime
Read More
Arrow Right

Physical Security Consultant

Are you looking for a new opportunity in a fast-moving global company with a fam...
Location
Location
Canada , Ontario
Salary
Salary:
90000.00 - 145000.00 CAD / Year
RHEA Inc.
Expiration Date
December 31, 2026
Flip Icon
Requirements
Requirements
  • Experience in physical security, with a history of working in a consultative, security practitioner, or physical security operations role
  • Post-secondary education (degree or diploma) in any relevant field
  • Must have or be eligible to obtain Government of Canada security clearance at the levels of Secret
  • Experience developing security designs and/or requirements
  • Experience developing business, technical, and functional security requirements
  • Experience developing threat-risk assessments using the HTRA methodology
Job Responsibility
Job Responsibility
  • Supporting projects in physical security environments
  • Client and stakeholder engagement and consultation
  • Supporting the development of Threat and Risk Assessments
  • Developing security requirements and/or drafting security designs addressing multiple domains, including (but not limited to) surveillance, access control, and security planning
  • Supporting the development of Concepts of Operations for systems, technologies, and applications related to assigned projects and security program improvements
  • Providing advice and guidance on concept designs, preliminary designs, detailed designs, and cost estimates
  • Providing input on industry standards, best practices, and accepted approaches for the development and implementation of security mitigations
  • Reviewing architectural, electrical, and structural designs and construction documents for requirements compliance and provide feedback to project teams
  • Providing support in the preparation of procurement documentation, procurement plans, researching available technologies, providing detailed option analysis and tracking procurement activities
What we offer
What we offer
  • competitive remuneration packages
  • unique career opportunities
  • personalized training and development programmes
  • Fulltime
Read More
Arrow Right