Enable job alerts via email!

DevSecOps / Application Security Engineer

JR United Kingdom

Woking

Remote

GBP 60,000 - 90,000

Full time

2 days ago

Be an early applicant

Boost your interview chances

Create a job specific, tailored resume for higher success rate.

Job summary

A leading technology company in the UK is looking for a Senior DevSecOps / Application Security Engineer to lead their security initiatives. In this role, you will be responsible for embedding security controls throughout the software development lifecycle, driving secure coding practices, and managing vulnerability programs across cloud environments. This position offers the chance to work within a fast-paced environment, fostering both innovation and security.

Qualifications

5+ years in AppSec or DevSecOps.
Strong experience in secure SDLC and CI/CD.
Knowledge of scripting languages like Python, Ruby, Rust.

Responsibilities

Embed and automate security controls across CI/CD workflows.
Lead integration of security tools in DevSecOps pipelines.
Drive adoption of secure development standards across the organization.

Skills

Secure SDLC

CI/CD

Python

Secure Coding

Communication

Tools

GitHub Advanced Security

Veracode

Snyk

ZAP

Burp

Social network you want to login/join with:

DevSecOps / Application Security Engineer, woking

col-narrow-left

Client:

Acumin

Location:

woking, United Kingdom

Job Category:

Other

EU work permit required:

Yes

col-narrow-right

Job Views:

Posted:

06.06.2025

Expiry Date:

21.07.2025

col-wide

Job Description:

Senior DevSecOps / Application Security Engineer

Location: Remote – UK or EMEA based

6 months+ Contract

Niche SaaS Tech company are seeking a Senior DevSecOps / Application Security Engineer to champion and drive their DevSecOps initiatives—shaping secure software delivery across a fast-moving, cloud-native environment. In this role, you’ll own and evolve the security tooling and automation embedded in their SDLC and CI/CD pipelines, working closely with software engineers, DevOps, and data scientists. You'll help ensure security is not a final step—but an integral, continuous part of how they build and ship software.

You will:

Embed and automate security controls across CI/CD workflows
Lead the integration of SAST, DAST, SCA, and threat modeling tools in DevSecOps pipelines
Collaborate with developers to enable secure coding and privacy by design
Drive adoption of secure development standards and practices across the org
Operate and evolve our software vulnerability management and bug bounty programs
Work cross-functionally to identify risks and improve security posture continuously
Support cloud-native app and ML security efforts across Azure and AWS
Own AppSec policies, incident response processes, and related KPIs/KRIs

Key Skills Required:

5+ years in AppSec or DevSecOps, with strong experience in secure SDLC and CI/CD
Hands-on knowledge of security tools like GitHub Advanced Security, Veracode, Snyk, ZAP, Burp
Familiarity with OWASP, MITRE, CWE, and modern dev frameworks (C#, Java, Python, React)
Knowledge of scripting languages (Python, Ruby, Rust)
Excellent communication skills to bridge tech and business stakeholders
Passion for building scalable security solutions that enable teams, not slow them down

Get your free, confidential resume review.

or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.