Application Security Specialist

  • Anywhere
  • Anywhere


We are recruiting for an Application Security Specialist to join the Application Security Team Within Aviva.

The aim of the Application Security team within Group CISO is to help developers adopt Secure Coding and Design Principles is a key outcome of this role, working with the team to drive maturity within the global developer community through improvements to culture, processes, tools, and frameworks. The team also carry out internal security testing like the penetration testing supplied by external 3rd party testers.

The application security team is relatively small based in the UK with members of the team in both London and Norwich offices however the team has a global reach and engages with Aviva development teams in various countries.

Duties & Responsibilities:

  • Help to implement Secure Coding Principles and the Secure Development Lifecycle across Aviva markets.
  • Executing application security assessments for web and mobile applications.
  • Actively assisting development teams to embed security tools such as SAST and DAST.
  • Working with Security Culture & Awareness specialists to develop technical developer training offerings.
  • Working with development teams to resolve common vulnerabilities and adopt secure coding practices.
  • Executing code reviews along with reviewing SAST and DAST reports to identify and reduce false positives.

Skills & Experience required:

  • Professional qualification in Information Security (e.g. relevant ISC2, SANS or CompTIA certifications).
  • Excellent communication skills, with the ability to communicate well to engineers as well as other business stakeholders.
  • Experience in working within application security, ideally in the Financial Services sector.
  • A background knowledge of information security governance processes and practices, including ISMS monitoring and control frameworks would be beneficial.
  • Knowledge of software security standards such as NIST, OWASP etc.
  • Knowledge and experience of Secure Development Lifecycles and their application in an agile environment.
  • Robust understanding of security architecture principles and processes.
  • Experience in the use of penetration testing tools and one or more of the development technologies.
  • A good working knowledge of MS Windows and Linux.
  • Knowledge of Cloud architecture including AWS and Azure.

What will you get for this role?

  • Salary of circa £70,000 depending on skills, experience, and location.
  • Generous defined contribution pension scheme
  • Annual performance related bonus and pay review
  • Holiday allowance of 29 days plus bank holidays and the option to buy/sell up to 5 additional days
  • Up to 40% discount for some Aviva products through “My Aviva Extras” plus discounts for Friends and Family. (Some exclusions apply)
  • Excellent range of flexible benefits to include a matching share save scheme

Working at Aviva

At Aviva, we’re people with a purpose. To be with you today, for a better tomorrow.

We bring this to life by ensuring managing risk is at the heart of the way we all work. We love people who do the right thing for our customers, and our colleagues. We want people who speak up, who take ownership, and who make good decisions.

The way we do this is important too, we’re all about our people – that’s you – so we can be pretty flexible. If you want to work from home some of the time or change your hours so you can pick up your kids or care for someone in your family, we’re very open to that. In fact, we don’t advertise roles as either part or full time, because we know each person has different needs, just as each business area has different needs. So, it’s up to you to discuss working hours during your interview.

We care deeply about being inclusive and that means we encourage applications from people with diverse backgrounds and experiences. We want our employees to bring their whole self to work and that starts with you.

We interview every disabled applicant* that meets the minimum criteria for the job. Once you’ve applied, please send us a separate email stating that you have a disclosed disability, and we’ll make sure we interview you.

We’d love it if you could submit your application online. If you require an alternative method of applying, please give Alice Neal a call on 0121 200 5926 or send an email to [email protected] .

*As defined in The Equality Act 2010*. By ‘minimum criteria’ we mean you should provide us with evidence which demonstrates that you generally meet the level of competence required and have the qualifications, skills or experience defined as essential to perform the role.

To apply for this job please visit

To apply for this job please visit

Contact us


Related Jobs