Senior application security engineer

Stevenage
JR United Kingdom
Security engineer
€80,000 - €100,000 a year
Posted: 4 June
Offer description

Social network you want to login/join with:


Senior Application Security Engineer, Stevenage

Client: Cloudsmith

Location: Stevenage, UK

Job Category: Other

-


EU work permit required:

Yes


Job Views:

4


Posted:

31.05.2025


Expiry Date:

15.07.2025


Job Description:

Some people like building things. Others like breaking them. You? You love both and more importantly, you love stopping bad actors from breaking the things you helped build. If that sounds like your vibe, we’ve got a job you’ll want to see.

This job is with the software supply chain company - securing and powering how software gets delivered everywhere.

What you'll do:

* Embed security across the platform, from source to production.
* Architect security controls across distributed, cloud-native systems.
* Lead threat modeling and security reviews (and get people to enjoy them).
* Perform penetration testing services and infrastructure security assessments (ethically, please).
* Extend security automation and monitoring with tools like CircleCI, GitHub Actions, DataDog, AWS Security Hub, etc.
* Harden everything from container runtimes to APIs to artifact pipelines.
* Write secure code, review others' code, and help everyone improve their secure coding practices.
* Build tools, automate repetitive tasks, and occasionally develop proof of concept exploits for fun.

You need:

* A background in software development. You are fundamentally a software engineer. Proficiency in Python and some TypeScript is preferred.
* Deep application security knowledge.
* Hands-on experience with SAST, DAST, RASP, and securing cloud environments (preferably AWS).
* Strong understanding of container security, API security, Infrastructure as Code (IaC), and CI/CD pipelines.
* Experience with penetration testing, threat modeling, and developing security tools.
* Bonus points for experience securing artifact systems or supply chains.
* Additional bonus for familiarity with Firecracker, gVisor, or advanced security tools like SCA and data enclaves.
* You believe security should enable, not block, engineering.
* You are diplomatic and able to work collaboratively with engineering teams to secure the SDLC without causing disruption.

This job is remote within the Island of Ireland or in the UK. You must be physically located here; remote work from outside these locations is not permitted.

Work permit sponsorship is not available.

#J-18808-Ljbffr

Apply
Create E-mail Alert
Job alert activated
Saved
Save
See more jobs
Similar jobs
Travel jobs in Stevenage
jobs Stevenage
jobs Hertfordshire
jobs England
Apply
Create E-mail Alert
Job alert activated
Saved
Save