Application Security Engineer

Internal use only - Grade E

About us

We are The Very Group, and we’re here to help families on a budget get more out of life. We know that our customers work hard for their families and have a lot to balance in their busy lives. That’s why we combine amazing brands and products with flexible payment options on Very.co.uk to help them say yes to the things they love when they need them most.

Role Purpose

Here at The Very Group we are looking for an individual experienced in applications and cloud services to join the Information Security Consulting team. The role will be ensuring the delivery of technical solutions & associated operating models meet The Very Group’s security standards and polices.

The successful candidate will need to have experience of AWS including serverless deployments along with Agile delivery methodologies and possess excellent stakeholder communication skills.

Some of the initiatives you will be working across are outlined below.

• Application Security Reviews
• Production of Security Threat Models.
• Technical Assurance Review.
• Defining & delivering security testing capabilities.
• Scoping & facilitation of Security Penetration testing
• Production of security process & training media.  

Key Responsibilities

• Experience of securing web application services in cloud platforms.
• Deep understanding of AWS Services and experience of Serverless deployments
• Thorough understanding of OWASP Top 10
• Experience of programming languages such as Java, Python Kotlin Swift.
• Securing API services including a good working knowledge of OAuth 2,
• Application security lifecycle, including secure by design process.
• Experience in securing CI/CD pipelines
• Security testing tools knowledge.
• Experience of agile methods of working.
• Good understanding and experience of threat and risk modelling (STRIDE, DREAD).
• Good understanding and experience of the Secure Software Development Lifecycle.

Some of our benefits

• Flexible, hybrid working model
• Inclusive culture and environment, check out our Glassdoor reviews

• £1,000 flexible benefits allowance to suit your needs
• 30 days holiday + bank holidays
• Udemy learning access
• Up to 25% discount on Very.co.uk

• Matched pension up to 6%
• More benefits can be found on our career site

How to apply

Please note that the talent acquisition team are managing this vacancy directly, and if successful in securing this role, you will be required to undertake a credit, CIFAS, Right to Work checks and if a specific requirement of your role a DBS (criminal records) check. Should your application progress we require you to let the team know if there is anything you need to disclose in relation to any of these checks prior to them being undertaken, including any unspent criminal convictions.

What happens next?

Our Talent Acquisition team will be in touch if you’re successful so keep an eye on your emails! We’ll arrange a short call to learn more about you, as well as answer any questions you have. If it feels like we’re a good match, we’ll share your CV with the hiring manager to review, and then be in touch to move to the interview process.

For this role after meeting our Talent Acquisition Team you can expect a 2 stage process.

First Stage - Opportunity to meet the Team to find out more about the role and life working at Very.

Second Stage - A more detailed, technical interview which will likely include a task for you to present as part of the session.

If you'd like to know more about our interviews, you can find out here.

Equal opportunities

We’re an equal opportunity employer and value diversity at our company. We do not discriminate based on race, religion, colour, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status.

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.