Application Security Engineer

London, UK

Simply Business

Simply Business is one of the UK’s largest business insurance providers. Fast, flexible cover for small businesses and landlords. Get a tailored quote online.

View all jobs at Simply Business

Here’s what you’ll be doing:You could be helping us stay ahead of the latest threats by collaborating with technology teams to strengthen our security. This role is based in the broader Information Security Team, and you'll be reporting into Divya (Application Security Lead) alongside another two Application Security Engineers. We are an award winning InfoSec team who pride ourselves on our friendly and collaborative approach. Not only that, but you will be joining one of the most gender diverse teams in your field.

As one of our Application Security Engineer, you’ll:

  • work with the rest of the application security team to identify security risks in the SDLC pipeline
  • assess and implement tools to mitigate the risks identified
  • create documents such as application security metrics, policies, procedures, standards, guidelines, and training
  • coach development teams on secure development practices and vulnerability management
  • conduct threat modelling to ensure that effective controls are part of the product deliverables
  • undertake code reviews and pentesting (external and/or internal)

We’re looking for someone who is:

  • knowledgeable about software development - ideally though having done the role yourself or from working closely with developers
  • understanding of cyber security risk and experience of managing risks throughout SDLC
  • knowledgeable when it comes to the OWASP top 10 security risks and experience with SAST and DAST tools
  • experienced in performing code reviews (familiarity with JavaScript and Ruby preferred)
  • knowledgeable about web technology and protocols such as HTTP, HTTPS, HTML, JavaScript, XML, WebSockets and  JSON
  • a lifelong learner in developing deep knowledge of the latest cyber and application security risks 

(We know it’s tough, but please try to avoid the ​​confidence gap​.​​ You don’t have to match all the bullet points above to be considered for this role.)
Ready to join us and help us elevate our security practices? Apply today.
About Simply Business
We insure small businesses and enable big dreams – not just for our customers, but for our people and communities too. With over 900,000 active insurance policies, we protect builders, bakers, landlords and more than 1,000 other trades.
We’re a technology company as well as one that sells insurance. That means we build, we fail, we learn and we improve. We’re a B Corp too, which recognises our strong track record of having a positive impact on people, society and the environment.
Why not check out our advert on YouTube: Simply Business TV advert 2022: You name it.  We insure it.
What are the benefits?
•ㅤwork-life balance – we support every team member in maintaining a manageable workload•ㅤhybrid working – you have the flexibility to work remotely and connect with your colleagues in one of our hubs•ㅤmental health and wellbeing – we give you access to tools and counselling to support your mental health•ㅤflexible parental leave – we understand how important this time is, that’s why we offer six months full pay to the primary caregiver and four months full pay if you’re the secondary caregiver•ㅤpaid sabbatical – as a thank you to our long-serving employees, we offer a two-week sabbatical when you’ve been here for five years. And four weeks off for those who’ve been with us for 10,15, and 20 years•ㅤlife event leave – you can get an extra days leave every two years for those big moments in your life like moving house, welcoming a new pet, or your birthday•ㅤa dedicated learning platform – our platform helps you develop on your personal and professional goals, including management and leadership programmes
We also make sure you’re compensated fairly
•ㅤcompetitive salary – we aim to offer a fair salary based on your experience and the market we’re in from day one•ㅤannual bonus – the potential to earn a bonus based on business performance•ㅤpension – we’ll match what you put into your pension up to five per cent•ㅤprivate medical insurance – you’ll get medical insurance through BUPA that covers any pre-existing medical conditions as a core benefit•ㅤhealth cash plan – we reimburse your everyday medical expenses•ㅤholiday entitlement – 25 days leave, plus bank holidays (and you can also use your flexible benefits to get up to five more days)•ㅤlife assurance – pass on a tax-free sum that’s four times your basic salary (core benefit). With the option to increase it to ten times through our flexible benefit scheme•ㅤsalary sacrifice car scheme – option to buy a brand new, fully insured and maintained car for a convenient fixed monthly amount taken from your gross salary (after 6 months service)•ㅤflexible benefits scheme – everyone gets an allocated allowance to use each year on things like critical illness cover, dental insurance, travel insurance, a gym membership, and up to five days extra holiday
Ready to join us and drive our success as a high-performing team? Apply today.

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  9  2  0

Tags: Application security DAST JavaScript JSON OWASP Pentesting Ruby SAST SDLC Vulnerability management XML

Perks/benefits: Career development Fitness / gym Flex hours Flex vacation Health care Medical leave Parental leave Salary bonus Wellness

Region: Europe
Country: United Kingdom

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.