Application Security Specialist

Summary: The Application Security Specialist role involves working on a 6-month contract with a focus on application security within a hybrid working model. The position requires expertise in security and development, particularly in SDLC roles, and emphasizes the importance of secure API design and vulnerability assessment. The role is classified as inside IR35, indicating a specific employment structure for contractors.

Key Responsibilities:

• Review Swagger/Open API specs for vulnerabilities.
• Advise on secure API design patterns.
• Utilize fallback controls such as WAFs and API gateways.
• Use SIEM/logging tools to track API threats.
• Produce risk dashboards/reports for APIs.
• Translate technical risks into business language for collaboration with stakeholders.

Key Skills:

• Strong security and development background in SDLC-focused roles.
• Deep knowledge of OWASP API Top 10.
• Familiarity with NIST, OWASP SAMM, or internal security frameworks.
• Experience in large-scale, enterprise environments.
• Able to collaborate with key stakeholders.

Salary (Rate): 650

City: London

Country: United Kingdom

Working Arrangements: hybrid

IR35 Status: inside IR35

Seniority Level: undetermined

Industry: IT