About

• Overview
• We’re Kingfisher, A team made up of over 74,000 passionate people who bring Kingfisher - and all our other brands: B&Q, Screwfix, Brico Depot, Castorama and Koctas - to life. That’s right, we’re big, but we have ambitions to become even bigger and even better. We want to become the leading home improvement company and grow the largest community of home improvers in the world. And that’s where you come in.
• At Kingfisher our customers come from all walks of life, and so do we. We want to ensure that all colleagues, future colleagues, and applicants to Kingfisher are treated equally regardless of age, gender, marital or civil partnership status, colour, ethnic or national origin, culture, religious belief, philosophical belief, political opinion, disability, gender identity, gender expression or sexual orientation.
• We are open to flexible and agile working, both of hours and location. Therefore, we offer colleagues a blend of working from home and our offices, located in London, Southampton & Yeovil. Talk to us about how we can best support you!
• We have a brand new opportunity for an Application Security Specialist to join our Security Operations team. This senior position will play a key role in driving improvements to and safeguarding Kingfisher’s digital platforms, by embedding security into every stage of development. This role ensures our web, mobile, and API applications remain resilient against evolving threats, supporting Kingfisher’s purpose of making home improvement accessible and secure for everyone.
• This role will be based at our Kingfisher Head Office in Paddington, with an expectation of 12 days a month in the office.
• What's the job?
• Own and optimise Kingfisher’s application security tools and services to maximise value.
• Lead operational oversight of application security testing across web, mobile, and API platforms.
• Drive the bug bounty programme and manage relationships with vendors and researchers.
• Coordinate penetration testing activities and partner with application owners to remediate findings.
• Integrate security into CI/CD pipelines and champion automation of security testing.
• Provide actionable metrics, KPIs, and insights to improve application security posture.
• Stay ahead of emerging threats and lead continuous improvement initiatives for application security.
• What you'll bring

This role will suit a strong communicator with excellent analytical and problem-solving skills, with a passion for application security and ability to bring a high level of energy, enthusiasm and creativity. In addition, from a technical point of view we are looking for

• Proven experience in application security or software development within complex technology environments.
• Strong knowledge of secure coding practices and hands-on experience with SAST, DAST, and related tooling.
• Practical experience integrating security into CI/CD pipelines in DevSecOps settings.
• Familiarity with common attack vectors (e.g., OWASP Top 10) and mitigation techniques.
• Experience with threat modelling and API security.
• Be Customer Focused – constantly improving our customers’ experience
• I listen to my customers
• I use available data to help make decisions
• Be Human – acting with humanity and care
• I do the right thing
• I am respectful
• Be Curious – thrive on learning, thinking beyond the obvious
• I build and share new ideas
• I try new things and share my learnings
• Be Agile – working with trust, pace and agility
• I have courage to be creative
• Done is better than perfect, I aim for 80/20
• Be Inclusive – acting inclusively in diverse teams to work together
• I embrace allyship
• I have self-awareness and a desire to learn
• Be Accountable – championing the plan to deliver results and growth
• I own my actions
• I understand the Kingfisher plan and how it relates to my role
• At Kingfisher, we value the perspectives that any new team members bring, and we want to hear from you. We encourage you to apply for one of our roles even if you do not feel you meet 100% of the requirements.
• In return, we offer an inclusive environment, where what you can achieve is limited only by your imagination! We encourage new ideas, actively support experimentation, and strive to build an environment where everyone can be their best self. Find out more about Diversity & Inclusion at Kingfisher here!
• We also offer a competitive benefits package and plenty of opportunities to stretch and grow your career.
• Interested? Great, apply now and help us to Power the Possible.
• #LI-KO1