Social network you want to login/join with:
Senior Application Security Engineer, West Midlands
Client: Cloudsmith
Location: West Midlands, UK or Ireland (remote work within these locations)
Job Category:
Other
-
EU work permit required:
Yes
Job Views:
4
Posted:
31.05.2025
Expiry Date:
15.07.2025
Job Description:
Are you passionate about building and securing software? Do you enjoy stopping malicious actors and ensuring the integrity of software supply chains? If yes, then this role is for you.
This position is with a company specializing in the software supply chain, focusing on securing and delivering software efficiently worldwide.
Responsibilities include:
* Embedding security throughout the platform, from source code to production.
* Designing security controls for distributed, cloud-native systems.
* Leading threat modeling and security reviews, making them engaging for teams.
* Performing ethical penetration testing on services and infrastructure.
* Enhancing security automation and monitoring using tools like CircleCI, GitHub Actions, DataDog, AWS Security Hub, etc.
* Securing container runtimes, APIs, and artifact pipelines.
* Writing secure code, reviewing others’ code, and promoting secure coding practices.
* Building tools, automating tasks, and creating proof-of-concept exploits for fun.
Qualifications:
* Strong background in software development, particularly in Python and TypeScript.
* Deep knowledge of application security.
* Hands-on experience with SAST, DAST, RASP, and cloud security (preferably AWS).
* Understanding of container security, API security, Infrastructure as Code, and CI/CD pipelines.
* Experience with penetration testing, threat modeling, and developing security tools.
* Experience securing artifact systems or supply chains is a plus.
* Familiarity with Firecracker, gVisor, SCA, and data enclaves is a bonus.
* Belief that security should enable development, not hinder it.
* Diplomatic skills to collaborate effectively with engineering teams on the SDLC security.
This role is remote but based in Ireland or the UK. Applicants must be physically located in these regions; remote work from other countries is not permitted.
Work permit sponsorship is not available for this position.
#J-18808-Ljbffr