Senior Application Security Specialist (Contract)

Location: Norwich/London (Hybrid - 3 days onsite)
Duration: 6 months
Rate: 500

Role Overview

We're looking for a Senior Application Security Specialist to drive application security governance and embed secure development practices across a large enterprise environment.

Key Responsibilities

• Define and lead AppSec governance, policies, and secure SDLC frameworks
• Assess maturity and develop target-state security roadmaps
• Provide security advisory to engineering, product, and architecture teams
• Conduct threat modelling, security assessments, and design/code reviews
• Support AppSec tooling strategy, selection, and adoption
• Promote secure-by-design practices across teams

Essential Skills

• Strong experience in enterprise Application Security
• Expertise in threat modelling, secure design, and code reviews
• Hands-on DevSecOps and CI/CD security integration
• Experience with AppSec frameworks (OWASP ASVS, SAMM, NIST, ISO 27034)
• Ability to influence senior stakeholders

Desirable

• AI/ML or Generative AI security experience
• Cloud-native and API security (AWS/Azure)
• Experience in regulated environments (eg Financial Services)