Enable job alerts via email!

DevSecOps / Application Security Engineer

JR United Kingdom

Stoke-on-Trent

Remote

GBP 60,000 - 90,000

Full time

2 days ago

Be an early applicant

Boost your interview chances

Create a job specific, tailored resume for higher success rate.

Job summary

A leading SaaS tech company seeks a Senior DevSecOps / Application Security Engineer to drive security initiatives in a cloud-native environment. This 6-month contract role involves embedding security practices in SDLC and CI/CD pipelines, collaborating with software engineers, and enhancing security posture. The ideal candidate will have at least 5 years of experience and be proficient in various security tools.

Qualifications

5+ years in Application Security or DevSecOps.
Hands-on experience with security tools.
Familiarity with OWASP and modern development frameworks.

Responsibilities

Integrate security tools in CI/CD workflows.
Collaborate with developers for secure coding.
Manage software vulnerability processes.

Skills

Secure SDLC

CI/CD

Communication

Automated Security

Vulnerability Management

Tools

GitHub Advanced Security

Veracode

Snyk

ZAP

Burp

Social network you want to login/join with:

DevSecOps / Application Security Engineer, Stoke-on-Trent

Client:

Acumin

Location:

Stoke-on-Trent, United Kingdom

Job Category:

Other

EU work permit required:

Yes

Job Views:

Posted:

10.06.2025

Expiry Date:

25.07.2025

Job Description:

Senior DevSecOps / Application Security Engineer

Location: Remote – UK or EMEA based

6 months+ Contract

Niche SaaS Tech company is seeking a Senior DevSecOps / Application Security Engineer to champion and drive their DevSecOps initiatives—shaping secure software delivery across a fast-moving, cloud-native environment. In this role, you will own and evolve security tooling and automation embedded in their SDLC and CI/CD pipelines, working closely with software engineers, DevOps, and data scientists. You will help ensure security is an integral, continuous part of how they build and ship software.

You will:

Embed and automate security controls across CI/CD workflows
Lead the integration of SAST, DAST, SCA, and threat modeling tools in DevSecOps pipelines
Collaborate with developers to enable secure coding and privacy by design
Drive adoption of secure development standards and practices across the organization
Operate and evolve software vulnerability management and bug bounty programs
Work cross-functionally to identify risks and improve security posture continuously
Support cloud-native app and ML security efforts across Azure and AWS
Own AppSec policies, incident response processes, and related KPIs/KRIs

Key Skills Required:

5+ years in AppSec or DevSecOps, with strong experience in secure SDLC and CI/CD
Hands-on knowledge of security tools like GitHub Advanced Security, Veracode, Snyk, ZAP, Burp
Familiarity with OWASP, MITRE, CWE, and modern development frameworks (C#, Java, Python, React)
Knowledge of scripting languages (Python, Ruby, Rust)
Excellent communication skills to bridge technical and business stakeholders
Passion for building scalable security solutions that enable teams without slowing them down

Get your free, confidential resume review.

or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.