Senior DevSecOps / Application Security Engineer
Is this the role you are looking for If so read on for more details, and make sure to apply today.
Location: Remote – UK or EMEA based
6 months+ Contract
Niche SaaS Tech company are seeking a Senior DevSecOps / Application Security Engineer to champion and drive their DevSecOps initiatives—shaping secure software delivery across a fast-moving, cloud-native environment. In this role, you’ll own and evolve the security tooling and automation embedded in their SDLC and CI/CD pipelines, working closely with software engineers, DevOps, and data scientists. You'll help ensure security is not a final step—but an integral, continuous part of how they build and ship software.
You will:
* Embed and automate security controls across CI/CD workflows
* Lead the integration of SAST, DAST, SCA, and threat modeling tools in DevSecOps pipelines
* Collaborate with developers to enable secure coding and privacy by design
* Drive adoption of secure development standards and practices across the org
* Operate and evolve our software vulnerability management and bug bounty programs
* Work cross-functionally to identify risks and improve security posture continuously
* Support cloud-native app and ML security efforts across Azure and AWS
* Own AppSec policies, incident response processes, and related KPIs/KRIs
Key Skills Required:
* 5+ years in AppSec or DevSecOps, with strong experience in secure SDLC and CI/CD
* Hands-on knowledge of security tools like GitHub Advanced Security, Veracode, Snyk, ZAP, Burp
* Familiarity with OWASP, MITRE, CWE, and modern dev frameworks (C#, Java, Python, React)
* Knowledge of scripting languages (Python, Ruby, Rust)
* Excellent communication skills to bridge tech and business stakeholders
* Passion for building scalable security solutions that enable teams, not slow them down