Application Security Specialist

Overview

We're Kingfisher, a team of over 74,000 passionate people who bring Kingfisher-and all our other brands: B&Q, Screwfix, Brico Depot, Castorama and Koctas-to life. That's right, we're big, but we have ambitions to become even bigger and even better. We want to become the leading home improvement company and grow the largest community of home improvers in the world. And that's where you come in.

At Kingfisher, our customers come from all walks of life, and so do we. We want to ensure that all colleagues, future colleagues, and applicants to Kingfisher are treated equally regardless of age, gender, marital or civil partnership status, colour, ethnic or national origin, culture, religious belief, philosophical belief, political opinion, disability, gender identity, gender expression or sexual orientation.

We are open to flexible and agile working, both of hours and location. Therefore, we offer colleagues a blend of working from home and our offices, located in London, Southampton & Yeovil. Talk to us about how we can best support you!

We have a brand new opportunity for an Application Security Specialist to join our Security Operations team. This senior position will play a key role in driving improvements to and safeguarding Kingfisher's digital platforms, by embedding security into every stage of development. This role ensures our web, mobile, and API applications remain resilient against evolving threats, supporting Kingfisher's purpose of making home improvement accessible and secure for everyone.

This role will be based at our Kingfisher Head Office in Paddington, with an expectation of 12 days a month in the office.

Responsibilities

• Own and optimise Kingfisher's application security tools and services to maximise value.
• Lead operational oversight of application security testing across web, mobile, and API platforms.
• Drive the bug bounty programme and manage relationships with vendors and researchers.
• Coordinate penetration testing activities and partner with application owners to remediate findings.
• Integrate security into CI/CD pipelines and champion automation of security testing.
• Provide actionable metrics, KPIs, and insights to improve application security posture.
• Stay ahead of emerging threats and lead continuous improvement initiatives for application security.

Qualifications

• Proven experience in application security or software development within complex technology environments.
• Strong knowledge of secure coding practices and hands on experience with SAST, DAST, and related tooling.
• Practical experience integrating security into CI/CD pipelines in DevSecOps settings.
• Familiarity with common attack vectors (e.g., OWASP Top 10) and mitigation techniques.
• Experience with threat modelling and API security.

Be Customer Focused - constantly improving our customers' experience

We encourage you to apply for one of our roles even if you do not feel you meet 100% of the requirements.

Be Human - acting with humanity and care

I do the right thing.

Be Curious - thrive on learning, thinking beyond the obvious

• I build and share new ideas.
• I try new things and share my learnings.

Be Agile - working with trust, pace and agility

• I have courage to be creative.
• Done is better than perfect; I aim for 80/20.

Be Inclusive - acting inclusively in diverse teams to work together

• I embrace allyship.
• I have self awareness and a desire to learn.

Be Accountable - championing the plan to deliver results and growth

• I own my actions.
• I understand the Kingfisher plan and how it relates to my role.

Our Benefits

In return, we offer an inclusive environment, where what you can achieve is limited only by your imagination! We encourage new ideas, actively support experimentation, and strive to build an environment where everyone can be their best self. Find out more about Diversity & Inclusion at Kingfisher.

We also offer a competitive benefits package and plenty of opportunities to stretch and grow your career.

What We Offer. Private Health Care

Opportunity to receive up to family level cover with AXA. Join within three months of starting or at annual renewal in April. (This benefit is subject to Benefit In Kind taxation).

Kingfisher Pension Scheme

Immediate eligibility through auto enrolment. Contribute 8% to receive a max 14% from the Company.

25 Days' Holiday

25 days per annum plus bank holidays as stated in your contract (pro rated for part time colleagues).

Staff Discount

20% discount at B&Q and Screwfix. Eligible after 3 months service.

Kingfisher Share Incentive Plan (SIP)

Share ownership in a tax efficient way. Save between £10 to £150 per month. Join at any time once three months service is reached.

Life Assurance

x4 Salary plus benefit equal to value of your Retirement Account (if an active member of KPS MP) or x1 Salary if not active member.

Bonus

Competitive bonus scheme that aligns to work level of role.

Kingfisher Share Save

Save with the option to buy Kingfisher plc shares at the end of a 3 or 5 year period. Offered annually. Three months service is required at the annual invitation date, normally in October.

Our Behaviours

• Constantly improving our customer experience
• Acting with humanity and care
• Be curious-thriving on learning, thinking beyond the obvious
• Be inclusive-acting inclusively in diverse teams to achieve together
• Be agile-working with trust, pace and agility
• Be accountable-championing the plan to deliver results and growth

Training & Development

There are so many ways you can grow, learn, and develop here at Kingfisher. At whatever pace suits you.

Conversations with senior leaders Resources and tools to help you grow

Improving without instruments to help you learn is near impossible. That's why we make sure you have everything at your fingertips to find exactly what you need to keep growing.

Initiatives that measure development

With plans that ask you what you want to achieve and when you want to achieve them by, tracking progress and keeping development at the forefront of conversation is easy.

Find your path

The scale of group functions within Kingfisher is huge. That means you have the chance to build different career paths within multiple areas of the organisation.

Sharing is caring

We aren't selfish here at Kingfisher. Whatever your level of experience, you'll work with colleagues who are always welcoming and ready to share their knowledge whenever you need it.

Reach for the stars

So your ambitions are high? Good thing we have opportunities to find experiences in line with more senior roles and responsibilities. Here, you can evolve your career, no matter your level.

Why Kingfisher

We're an innovative, international retailer on a journey to actively make a difference. Always striving to take that next step. You can be part of the difference. From bottom to top you can progress in a collaborative environment. So, why not Kingfisher?

Application Process What to expect from our application process Step 1: Application

Send in your application via our Kingfisher Careers website.

Step 2: Review

A member of the Talent Acquisition team will then review your application and let you know if you have progressed to the next stage of the process.

Step 3: Interview 1

You'll then have a telephone interview/one to one conversation with a recruiter.

Step 4: Interview 2

As you progress, you'll be invited to attend a face to face or virtual interview.

Step 5: Feedback

Your recruiter will be in contact with feedback and, if successful, the details of your job offer!