Enable job alerts via email!

DevSecOps / Application Security Engineer

JR United Kingdom

Worcester

Remote

GBP 50,000 - 80,000

Full time

Yesterday

Be an early applicant

Boost your interview chances

Create a job specific, tailored resume for higher success rate.

Job summary

A leading company is seeking a Senior DevSecOps / Application Security Engineer to lead their DevSecOps initiatives in a fast-paced cloud environment. This role involves embedding security within the software development lifecycle and collaborating with cross-functional teams to ensure secure practices. Candidates should have strong experience in AppSec, familiarity with modern security tools, and be passionate about enabling teams with efficient security solutions.

Qualifications

5+ years in AppSec or DevSecOps with strong experience.
Hands-on knowledge of security tools.
Familiarity with OWASP, MITRE, and modern development frameworks.

Responsibilities

Embed and automate security controls across CI/CD workflows.
Collaborate with developers on secure coding practices.
Drive adoption of secure development standards across the organization.

Skills

Secure SDLC

CI/CD

AppSec

Communication

Automation

Scripting

Tools

GitHub Advanced Security

Veracode

Snyk

ZAP

Burp

Social network you want to login/join with:

DevSecOps / Application Security Engineer, Worcester

Client:

Acumin

Location:

Worcester, United Kingdom

Job Category:

Other

EU work permit required:

Yes

Job Views:

Posted:

06.06.2025

Expiry Date:

21.07.2025

Job Description:

Senior DevSecOps / Application Security Engineer

Location: Remote – UK or EMEA based

6 months+ Contract

Niche SaaS Tech company is seeking a Senior DevSecOps / Application Security Engineer to champion and drive their DevSecOps initiatives—shaping secure software delivery across a fast-moving, cloud-native environment. In this role, you’ll own and evolve the security tooling and automation embedded in their SDLC and CI/CD pipelines, working closely with software engineers, DevOps, and data scientists. You'll help ensure security is not a final step—but an integral, continuous part of how they build and ship software.

You will:

Embed and automate security controls across CI/CD workflows
Lead the integration of SAST, DAST, SCA, and threat modeling tools in DevSecOps pipelines
Collaborate with developers to enable secure coding and privacy by design
Drive adoption of secure development standards and practices across the organization
Operate and evolve our software vulnerability management and bug bounty programs
Work cross-functionally to identify risks and improve security posture continuously
Support cloud-native app and ML security efforts across Azure and AWS
Own AppSec policies, incident response processes, and related KPIs/KRIs

Key Skills Required:

5+ years in AppSec or DevSecOps, with strong experience in secure SDLC and CI/CD
Hands-on knowledge of security tools like GitHub Advanced Security, Veracode, Snyk, ZAP, Burp
Familiarity with OWASP, MITRE, CWE, and modern development frameworks (C#, Java, Python, React)
Knowledge of scripting languages (Python, Ruby, Rust)
Excellent communication skills to bridge tech and business stakeholders
Passion for building scalable security solutions that enable teams, not slow them down

Get your free, confidential resume review.

or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.