Engineer (Application Security)

We are looking for an Application Security Engineer with a strong engineering mindsetââ(¬â€someone who has built and maintained technical systems and understands how products are developed endââ(¬â€ toââ(¬â€ end. The ideal candidate may come from a security or product background, but must be deeply familiar with the SDLC, CI/CD pipelines, Git workflows, and modern software engineering practices. This role combines handsââ(¬â€ on security engineering with enablement, governance, and crossââ(¬â€ team collaboration., Application Security

• Integrate security best practices into the SDLC and operate, tune, and maintain AppSec tooling (SAST, DAST, SCA).
• Provide secure design guidance, perform secure code reviews, reproduce issues, propose fixes, and validate remediations with developers.

Cloud & Kubernetes Security

• Embed security checks in CI/CD for container images, IaC, and Helm charts & contribute to runtime protections such as admission controls, policy-as-code, scanning, and drift detection.
• Promote secure infrastructure configurations and Kubernetes defaults (RBAC, network policies, PodSecurity, secrets handling, image provenance).

Vulnerability Management & Reporting

• Ensure CI/CD pipelines have robust, effective security coverage and manage exceptions & risk workflows.

• Maintain a consolidated vulnerability backlog with clear ownership and SLA tracking and build automated reporting using tools like Power BI or Excel/Pandas.

Enablement & Governance

• Develop secure coding standards and practical developer guidance.
• Run secure development forums, build and maintain strong relationship with engineering teams and drive application vulnerability management through engagements and reporting.
• Act as a trusted advisor to both engineers and leadership ââ(¬â€œ identifying and communicating risk clearly and persuasively.

The Security Engineer will drive application vulnerability management, embed security into development pipelines, and guide engineering teams in building secure-by-design applications. Strong communication skills and the ability to build trusted relationships across both technical and nonââ(¬â€ technical stakeholders is essential.

at dunnhumby (View all jobs) London dunnhumby is the global leader in Customer Data Science, partnering with the worldââ(¬â"¢s most ambitious retailers and brands to put the customer at the heart of every decision. We combine deep insight, advanced technology, and close collaboration to help our clients grow, innovate, and deliver measurable value for their customers. dunnhumby employs nearly 2,500 experts in offices throughout Europe, Asia, Africa, and the Americas working for transformative, iconic brands such as Tesco, Coca-Cola, Nestlé, Unilever and Metro., We wonââ(¬â"¢t just meet your expectations. Weââ(¬â"¢ll defy them. So youââ(¬â"¢ll enjoy the comprehensive rewards package youââ(¬â"¢d expect from a leading technology company. But also, a degree of personal flexibility you might not expect. Plus, thoughtful perks, like flexible working hours and your birthday off. Youââ(¬â"¢ll also benefit from an investment in cutting-edge technology that reflects our global ambition. But with a nimble, small-business feel that gives you the freedom to play, experiment and learn. And we donââ(¬â"¢t just talk about diversity and inclusion. We live it every day ââ(¬â€œ with thriving networks including dh Gender Equality Network, dh Proud, dh Family, dh One, dh Enabled and dh Thrive as the living proof. We want everyone to have the opportunity to shine and perform at your best throughout our recruitment process. Please let us know how we can make this process work best for you. Our approach to Flexible Working At dunnhumby, we value and respect difference and are committed to building an inclusive culture by creating an environment where you can balance a successful career with your commitments and interests outside of work. We believe that you will do your best at work if you have a work / life balance. Some roles lend themselves to flexible options more than others, so if this is important to you please raise this with your recruiter, as we are open to discussing agile working opportunities during the hiring process., We are proud of our diversity and committed to making dunnhumby an even more inclusive place to work that we can be proud of. Our diversity and inclusion work is designed to cultivate a culture of belonging, where every dunnhumbian feels safe to bring their whole self to work, where everyone is welcome and we practice what we preach. We have a full D&I strategy to implement this long-term behaviour change; in addition, we have five employee-led network groups to support colleagues in the areas of gender, sexual orientation, multiculturalism, mental health and wellbeing, and family. What best describes your gender (Select one) Female Male Prefer not to say Prefer to self-describe