Application Security Engineer You'll join a centralised Application Security team responsible for managing the full lifecycle of security... Read more
Application Security Engineer
You'll join a centralised Application Security team responsible for managing the full lifecycle of security findings reported by customers, internal teams, and third‑party testers.
You'll triage real‑world vulnerability reports, reproduce issues in controlled environments, analyse platform‑level attack surfaces, and collaborate with engineering teams to validate fixes and guide remediation.
Day to Day Responsibilities
Validate vunerabilities, assess scope and impact, determine severity, and recommend remediation paths.vulnerabilities across web, API, and server-side components and privilege escalation.Produce clear, accurate security assessments suitable for both engineering teams and executive level.Partner with development teams on defect filing, patch validation, backport decisions, and fix completeness.Recreate customer scenarios in lab environments to verify reported vulnerabilities and confirm remediation.Review server-side and client-side code to trace attack vectors and validate security fixes.Desired Experience
Relevant eperience in application security, penetration testing, bug bounty triage, or product security engineering.Strong working knowledge of OWASP Top 10 and modern attack classesAbility to read and trace JavaScript and Java codebases to identify vulnerabilities and validate fixes.Experience writing clear, technically accurate security reports for diverse audiences.Fluency in CVSS scoring, including rationale behind severity decisions.
GCS is acting as an Employment Business in relation to this vacancy.
Read lessAll your saved jobs are no longer available or you've already applied.
for the following search criteria