Enable job alerts via email!

DevSecOps / Application Security Engineer

JR United Kingdom

Derby

Remote

EUR 60,000 - 90,000

Full time

Yesterday

Be an early applicant

Boost your interview chances

Create a job specific, tailored resume for higher success rate.

Job summary

Une entreprise SaaS de niche recherche un Senior DevSecOps / Application Security Engineer pour diriger ses initiatives en matière de sécurité. Ce rôle implique l'intégration de la sécurité dans le processus de développement logiciel, l'amélioration des outils de sécurité et la collaboration avec des équipes techniques. Le candidat idéal a au moins 5 ans d'expérience en sécurité des applications et une passion pour la création de solutions sécurisées qui n'entravent pas la productivité.

Qualifications

Au moins 5 ans d'expérience en Application Security ou DevSecOps.
Expérience pratique avec des outils de sécurité.
Connaissance des frameworks modernes de développement.

Responsibilities

Automatiser et intégrer des contrôles de sécurité dans les workflows CI/CD.
Gérer des programmes de vulnérabilité logicielle.
Collaborer avec des développeurs sur des pratiques de codage sécurisé.

Skills

Application Security

DevSecOps

Secure SDLC

CI/CD processes

Communication

Cloud Security

Tools

GitHub Advanced Security

Veracode

Snyk

ZAP

Burp Suite

Social network you want to login/join with:

DevSecOps / Application Security Engineer, derby

col-narrow-left

Client:

Acumin

Location:

derby, United Kingdom

Job Category:

Other

EU work permit required:

Yes

col-narrow-right

Job Views:

Posted:

06.06.2025

Expiry Date:

21.07.2025

col-wide

Job Description:

Senior DevSecOps / Application Security Engineer

Location: Remote – UK or EMEA based

6 months+ Contract

Niche SaaS Tech company is seeking a Senior DevSecOps / Application Security Engineer to lead and develop their DevSecOps initiatives—enhancing secure software delivery in a fast-paced, cloud-native environment. You will be responsible for maintaining and improving security tools and automation within their SDLC and CI/CD pipelines, collaborating with software engineers, DevOps, and data scientists. The goal is to integrate security seamlessly into the software development process, making it a continuous, integral part of their workflow.

Responsibilities include:

Automate and embed security controls across CI/CD workflows
Integrate SAST, DAST, SCA, and threat modeling tools into DevSecOps pipelines
Work with developers to promote secure coding and privacy by design principles
Drive the adoption of secure development standards across the organization
Manage software vulnerability programs and bug bounty initiatives
Identify risks and enhance security posture through cross-functional collaboration
Support security efforts for cloud-native applications and machine learning projects on Azure and AWS
Manage AppSec policies, incident response, and monitor related KPIs/KRIs

Key Skills and Experience:

At least 5 years in Application Security or DevSecOps, with a strong background in secure SDLC and CI/CD processes
Hands-on experience with security tools such as GitHub Advanced Security, Veracode, Snyk, ZAP, Burp Suite
Knowledge of OWASP, MITRE, CWE frameworks, and modern development frameworks (C#, Java, Python, React)
Proficiency with scripting languages like Python, Ruby, or Rust
Excellent communication skills to liaise effectively with technical and non-technical stakeholders
A passion for creating scalable security solutions that empower teams without hindering productivity

Get your free, confidential resume review.

or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.