Rodeo
ResourcesPartnersSign in

Jobgether

Application Security - Vulnerability Discovery

United Kingdom
Posted about 15 hours ago
Sign up to applySee more jobs like this

How your CV stacks up

1Upload CV
2Analyse CV
3Improve CV

Upload your CV to see how well it fits this job role

?%

Job Opportunity

This position is listed on behalf of a partner company, who manages all applications and next steps. Our partner is looking for an Application Security - Vulnerability Discovery based in United Kingdom.

This role focuses on strengthening application security by identifying, analyzing, and reducing vulnerabilities across modern software environments.

You will collaborate with engineering and product teams to improve security practices throughout the software development lifecycle.

The position combines vulnerability management, secure coding expertise, automation, and security research to protect critical applications.

You will play a key role in validating security findings, guiding remediation efforts, and improving security processes at scale.

The ideal candidate will bring strong technical skills, a proactive mindset, and the ability to partner effectively with development teams.

This is an opportunity to contribute to impactful security initiatives while helping build safer, more resilient products.

Accountabilities

The Application Security Engineer will be responsible for identifying security risks, improving vulnerability management processes, and partnering with engineering teams to implement secure development practices.

  • Triage, validate, prioritize, and manage security vulnerabilities discovered through manual reviews, automated security tools, bug bounty programs, and AI-assisted security platforms.
  • Partner with software engineering and product teams to drive remediation efforts, provide actionable security guidance, and ensure timely resolution of findings based on risk and severity.
  • Review security-related pull requests, source code changes, and development workflows to identify vulnerabilities and recommend secure implementation approaches.
  • Analyze findings generated by AI-powered security tools and automation platforms, reduce false positives, and improve vulnerability detection workflows.
  • Participate in security incident response activities, investigations, and root cause analysis related to application security issues.
  • Support and enhance secure software development lifecycle (SDLC) practices across engineering organizations.
  • Develop security tooling, automation, and workflows to improve vulnerability detection, security coverage, and operational efficiency.
  • Configure, optimize, and maintain vulnerability scanning platforms, including policies, schedules, and reporting processes.
  • Track remediation progress, security metrics, and risk reduction initiatives while providing visibility to stakeholders.
  • Collaborate with security architecture and development teams to improve vulnerability discovery, prioritization, and remediation strategies.
  • Create security documentation, best practices, and educational resources to promote secure coding practices across teams.
  • Participate in an on-call rotation to support security triage, code reviews, and application security requests.

Reasons to use Rodeo

I’m in my final year doing Economics and I don’t know whether to apply for grad schemes now or do a masters first. What do you think?

Honest answer — it depends on where you want to end up. A lot of top grad schemes (Big 4, civil service, banking) don’t need a masters. Let’s look at the ones you’d be competitive for now, and we can decide if a masters actually adds anything.

Also worth knowing: most autumn 2026 applications are open now. Timing matters more than you think.

Start with a chat, not a search bar

Grad scheme, placement, apprenticeship? Not sure what you want yet — that's fine. Your agent talks it through with you and turns "I have no idea" into a shortlist.

P

Graduate Consultant — 2026 Scheme

PwC·London, UK
£35,000/yr

Why you're a good match

Strong

Your economics background and your summer at a regional bank line up with what PwC looks for on the consulting scheme. Applications close in four weeks.

See breakdown
Save jobNot relevant
View details

It searches the market for you

Every day your agent scans the market matching roles against what actually matters to you, not just keywords on a CV.

Why you're a good match

You’ve got the grades and the economics background, and your bank internship is exactly the experience this scheme looks for. Apply soon — deadlines close within the month.

See breakdown
Strong

Experience fit

Your summer at the bank plus your econometrics coursework map directly to the day-one responsibilities on this scheme — client modelling, market briefings, and deal support.

See breakdown
Strong

Only hits

No noise. No "maybe this fits." Just roles with a clear explanation of why they're right — and where to focus when applying.

Requirements

The ideal candidate is an experienced application security professional with strong technical expertise, excellent collaboration skills, and a proven ability to improve security outcomes across software development environments.

  • 3+ years of experience in application security engineering or a related security role.
  • Availability to work until 11:00 AM Pacific Standard Time (PST).
  • Strong understanding of application security principles, vulnerability management, and secure software development practices.
  • Experience building and scaling Secure Development Lifecycle (SDLC) programs.
  • Hands-on experience handling vulnerability reports, bug bounty findings, and security assessments.
  • Experience partnering with engineering and product teams to drive security improvements and remediation initiatives.
  • Experience triaging and prioritizing vulnerabilities from SAST, DAST, SCA, dependency scanning, penetration testing, and similar security assessments.
  • Strong knowledge of common application security risks, including OWASP Top 10, API security, authentication, authorization, secrets management, and cryptography.
  • Experience reviewing source code and identifying vulnerabilities across modern programming languages and frameworks.
  • Familiarity with security tools such as SAST, DAST, SCA, infrastructure-as-code scanning, secrets detection, and vulnerability management platforms.
  • Experience working with cloud-native architectures and public cloud environments, preferably AWS.
  • Ability to evaluate security findings, identify meaningful risks, and communicate clear remediation recommendations.
  • Strong communication, collaboration, and relationship-building skills.
  • Familiarity with AI-assisted development workflows, AI-powered security tools, or LLM-based security applications is a plus.

Get help with your application

Your very own career expert that helps elevate your application to the next level.

Get help applying for this job

Benefits

  • Fully remote work opportunity.
  • Opportunity to contribute to large-scale application security initiatives.
  • Flexible work environment supporting collaboration with distributed teams.
  • Ability to work on modern security challenges involving cloud, automation, and AI-powered security technologies.
  • Opportunity to influence secure development practices across engineering organizations.
  • Exposure to advanced vulnerability management processes and security tooling.
  • Professional growth opportunities within a technology-focused environment.
  • Opportunity to collaborate with experienced security, engineering, and product professionals.
  • Competitive compensation package based on experience and expertise.

How Jobgether Works

We use an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. Our system identifies the top-fitting candidates, and this shortlist is then shared directly with the hiring company. The final decision and next steps (interviews, assessments) are managed by their internal team.

We appreciate your interest and wish you the best!

Why Apply Through Jobgether?

Data Privacy Notice: By submitting your application, you acknowledge that Jobgether will process your personal data to evaluate your candidacy and share relevant information with the hiring employer. This processing is based on legitimate interest and pre-contractual measures under applicable data protection laws (including GDPR). You may exercise your rights (access, rectification, erasure, objection) at any time.

We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses and identifying potential inconsistencies or verification signals in application materials based on available information. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.

Trusted by 25,000+ job seekers

“It took my CV and asked me questions relevant to understanding what kind of jobs to suggest for me. Suggestions were almost perfect. Jobs were exactly what I’ve been looking for.”

Jessica, London

Get help applying for this job

Skills

Application Security
Vulnerability Management
Secure Coding
Automation
Security Research
Collaboration
Risk Assessment
Source Code Review
Cloud Security
AI-Powered Security Tools
OWASP Top 10
API Security
Cryptography
SAST
DAST
Vulnerability Scanning

Location

United Kingdom

Sign up to applySee more jobs like this