Application Security Analyst Application Security Engineer / Cloud Security / AppSec | Fintech | Hybrid (London) | Competitive Salary Bonus Excellent Benefits Are you ready to shape the future of security in one of the UK’s most exciting fintech environments? We are hiring an Application Security Analyst to strengthen and embed secure development and cloud security practices across modern digital platforms. This is an exciting opportunity for a passionate security professional who thrives on collaboration, innovation, and real impact. About the Role As an Application Security Analyst, you’ll work closely with cross-functional teams to design and enforce best-in-class security across cloud environments and applications. You’ll play a hands-on role in improving the security of products from early-stage design through to deployment, helping teams build secure software while influencing cloud security strategy. This is a hybrid role offering the flexibility of working from home, combined with 2 days per week in our London office. What You'll Be Doing Lead security reviews and risk assessments, including secure code reviews and threat modelling Develop, implement, and maintain security controls based on industry best practices and frameworks including ISO 27001, NIST, and CIS Collaborate with developers and DevOps teams to enhance secure coding practices and harden CI/CD pipelines Improve cloud security within AWS environments, using services like AWS Security Hub, Shield, IAM, and more Manage vulnerability remediation, bug bounty programs, and collaborate with developers to resolve issues Define and implement security metrics, dashboards, and reporting tools to track progress and performance Contribute to the development of reusable security patterns and best practices across projects What We're Looking For Strong hands-on experience securing AWS cloud environments and services Proven knowledge of security standards and frameworks including ISO 27001, NIST, CIS benchmarks Practical experience with application security testing, threat modelling, vulnerability management, and secure code review Understanding of OWASP Top 10, CWE, and secure development lifecycles Familiarity with security tooling (static and dynamic analysis, SAST, DAST) Comfortable engaging both technical and non-technical stakeholders to champion security best practices Coding/scripting ability in Python, JavaScript, or equivalent Desirable but not essential: Previous experience in fintech, insurtech, or regulated financial environments Direct involvement in managing bug bounty programs Security certifications such as OSCP, CISSP, AWS Security Specialty or similar What’s On Offer A highly competitive salary with up to 20% bonus potential 25 days holiday plus bank holidays Private medical and dental cover Generous 10% employer pension contribution Flexible hybrid working model Career development support, including certification funding and conference attendance A high-impact role at the heart of a growing fintech where security is central to every product Why Join Us? Be part of a company where your expertise will directly shape secure digital services for financial customers. You’ll work in a fast-paced, collaborative environment where security is more than a checklist — it’s embedded into every stage of development. If you're looking for a role where you can make a genuine impact, influence security strategy, and grow your skills — apply today