Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
Prolific

Application Security Lead

Prolific

As Application Security Lead, enhance Prolific's application security strategy and manage compliance processes. Engage with software and engineering teams to integrate security practices in AI development.

Posted 4/27/2026full-timeRemote • 🇬🇧 United KingdomSeniorWebsite

Tech Stack

Tools & technologies
DjangoMicroservicesPython

About the role

Key responsibilities & impact
  • You'll own Prolific's application security strategy and be the most senior security engineering voice in the organisation.
  • Define and drive our Secure Software Development Lifecycle (SSDLC).
  • Set the standard for how security is embedded into engineering.
  • Get hands-on with code review, threat modelling, and security testing when it matters.
  • Manage our Senior Application Security Engineer and continue to own our compliance programme alongside these responsibilities.
  • Act as the go-to expert for application security, partnering with engineering leadership to balance risk and velocity.
  • Build the tooling, processes, and culture needed to embed security into how we ship.

Requirements

What you’ll need
  • Several years of experience in software engineering, you’ve built and shipped production systems at scale
  • Several years in application security (testing, code review, threat modelling, vuln management)
  • Expert knowledge of OWASP Top 10 (Web & API) and modern attack paths (e.g. auth flaws, SSRF, injection, business logic, supply chain)
  • Strong understanding of modern architectures (microservices, APIs, event-driven systems)
  • Python for security tooling and automation (Django a strong plus)
  • Hands-on testing experience (e.g. Burp Suite) and manual assessment of apps/APIs
  • Experience building and scaling SSDLCs, including CI/CD tooling (SAST, SCA, DAST, secrets)
  • Experience leading threat modelling and security design reviews
  • Strong engineering partnership skills, you influence through trust
  • Experience with ISO 27001 / SOC 2 and translating controls into real engineering practices
  • Clear communicator across technical and non-technical audiences.

Benefits

Comp & perks
  • Competitive salary
  • Remote working within our impactful, mission-driven culture

ATS Keywords

✓ Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
application securitySecure Software Development Lifecyclecode reviewthreat modellingvulnerability managementOWASP Top 10PythonCI/CD toolingSASTDAST
Soft Skills
influencetrust buildingclear communicationengineering partnership
Certifications
ISO 27001SOC 2