Senior Application Security Engineer
London Stock Exchange Group
Application Security Programme Senior Associate
Enable the Group to operate and expand an Application Security Programme and reduce application-level vulnerabilities.
The role focuses on driving the implementation and growth of the Application Security Programme to reduce vulnerabilities across applications. It involves partnering with product teams to integrate security practices into development workflows, analysing scan results, and guiding effective remediation strategies. Success in this position requires strong collaboration, technical expertise in security tools, and the ability to communicate technical information clearly to diverse stakeholders.
Collaborating across teams to tackle vulnerabilities head-on and design effective, practical mitigation strategies.
Leading security excellence by engaging with stakeholders to strengthen and continuously improve the organization's application security posture.
Turning insights into action by analysing security scan results, validating findings, eliminating false positives, and guiding informed remediation decisions.
Driving alignment and innovation by sharing knowledge, setting clear objectives, and delivering impactful application security outcomes.
Empowering product teams by seamlessly integrating Application Security solutions into their development workflows.
A strong understanding of common and emerging vulnerabilities across web applications, APIs, and other platforms, along with knowledge of key security standards such as OWASP Top 10, SANS Top 25, NIST, and ASVS.
Hands-on experience with security tools like SAST, SCA, and container scanning, plus familiarity with programming languages such as Java, C#, and Python.
Knowledge of modern development practices, including Agile, DevOps, and SecDevOps, enabling you to work effectively in fast-paced environments.
Proven experience managing remediation activities within application security and the ability to clearly explain the rationale behind security fixes to ensure understanding and impact.
Strong analytical skills to interpret and correlate data from sources like SAST, SCA, and penetration tests, identifying trends and prioritizing remediation efforts.
The capability to link issues across multiple layers—code, infrastructure, identity, cloud environments, and third-party services—and propose process improvements to reduce systemic vulnerabilities and recurring risks.
Ability to work effectively with technical and business teams, manage expectations, and deliver clear, actionable insights to stakeholders at all levels. Adept at handling complex situations with integrity and clarity.
Hands-on experience implementing automated security testing at scale (SAST, SCA, containers) and troubleshooting integration issues between security tools and development environments.
Work with some of the most talented minds in the industry, collaborating on impactful security initiatives that make a real difference globally.
Be part of an industry that brings immense value to customers worldwide and is highly respected, giving you the chance to contribute to meaningful outcomes.
Create and innovate as an engineer, building new solutions and shaping the future of application security.
Join a fun and innovative company that encourages creativity and fresh ideas.
Expand your skill set by learning new tools, techniques, and approaches in a dynamic environment.
Enjoy a positive, balanced work culture that prioritizes well-being and fosters a happy, collaborative atmosphere.