Information Security Engineer AppSec
@ Revolut

Hybrid
£90,000
Hybrid
Full Time
Posted 10 hours ago

Your Application Journey

Personalized Resume
Apply
Email Hiring Manager
Interview

Email Hiring Manager

XXXXXXXXX XXXXXXXXX XXXXXXXXXX****** @revolut.com
Recommended after applying

Job Details

About Revolut

People deserve more from their money. Since 2015, Revolut has been on a mission to offer more visibility, control, and freedom through innovative products that help 65+ million customers manage their funds.

Recognized as a Great Place to Work™, Revolut employs over 10,000 people globally from both office and remote environments.

About the Role

As an Information Security Engineer AppSec at Revolut, you will be responsible for keeping our software safe from threats and vulnerabilities, designing and building secure applications, performing security assessments, and continuously improving our security posture.

What You’ll Be Doing

  • Conducting security assessments on product designs, mobile apps, web applications, and APIs.
  • Participating in Red Team missions and threat-led testing scenarios.
  • Leading penetration testing using manual techniques and automated tools.
  • Managing and evolving our private bug bounty programme.
  • Partnering with engineering and DevOps to embed security into the SDLC.
  • Developing internal AppSec standards, policies, and practices aligned with industry benchmarks.
  • Researching emerging threats and tools to stay ahead of the evolving threat landscape.
  • Contributing to internal security trainings and mentoring junior team members.

What You’ll Need

  • 3+ years of experience in application security or penetration testing.
  • Understanding of web, mobile, and API vulnerabilities (OWASP Top 10, CWE).
  • Experience in code reviews, design reviews, and threat modelling.
  • Familiarity with DevSecOps practices and CI/CD security integrations.
  • Proficiency with security tools like Burp Suite, MobSF, and Frida.
  • Basic knowledge of cloud security principles (GCP/AWS).
  • Excellent communication and collaboration skills.

Nice to Have

Experience with Red Team exercises, managing bug bounty programmes, or contributing to open-source security tools.

Important Notice for Candidates

Apply only through official Revolut channels. Always confirm communications via an @revolut.com email. We will never ask for payments or sensitive financial details during the recruitment process.

Key skills/competency

  • Application Security
  • Penetration Testing
  • Threat Modelling
  • Red Teaming
  • Cloud Security
  • DevSecOps
  • Bug Bounty Management
  • Security Standards
  • Risk Assessment
  • Vulnerability Assessment
Apply without a personalized resume

How to Get Hired at Revolut

🎯 Tips for Getting Hired

  • Customize your resume: Highlight relevant AppSec projects and skills.
  • Research Revolut: Review their culture and recent achievements.
  • Showcase practical experience: Detail penetration tests and secure coding.
  • Prepare for technical interviews: Practice threat modelling and security scenarios.
  • Engage on LinkedIn: Network with current Revolut employees.

📝 Interview Preparation Advice

Technical Preparation

Review OWASP and CWE lists.
Practice penetration testing methods.
Familiarize with cloud security in GCP/AWS.
Test using tools like Burp Suite and MobSF.

Behavioral Questions

Demonstrate teamwork in pressure scenarios.
Explain prior project challenges clearly.
Discuss communication of technical risks.
Showcase problem-solving under uncertainty.

Frequently Asked Questions