Social network you want to login/join with:
DevSecOps / Application Security Engineer, derby
col-narrow-left
Client:
Acumin
Location:
derby, United Kingdom
Job Category:
Other
-
EU work permit required:
Yes
col-narrow-right
Job Views:
3
Posted:
06.06.2025
Expiry Date:
21.07.2025
col-wide
Job Description:
Senior DevSecOps / Application Security Engineer
Location: Remote – UK or EMEA based
6 months+ Contract
Niche SaaS Tech company is seeking a Senior DevSecOps / Application Security Engineer to lead and develop their DevSecOps initiatives—enhancing secure software delivery in a fast-paced, cloud-native environment. You will be responsible for maintaining and improving security tools and automation within their SDLC and CI/CD pipelines, collaborating with software engineers, DevOps, and data scientists. The goal is to integrate security seamlessly into the software development process, making it a continuous, integral part of their workflow.
Responsibilities include:
* Automate and embed security controls across CI/CD workflows
* Integrate SAST, DAST, SCA, and threat modeling tools into DevSecOps pipelines
* Work with developers to promote secure coding and privacy by design principles
* Drive the adoption of secure development standards across the organization
* Manage software vulnerability programs and bug bounty initiatives
* Identify risks and enhance security posture through cross-functional collaboration
* Support security efforts for cloud-native applications and machine learning projects on Azure and AWS
* Manage AppSec policies, incident response, and monitor related KPIs/KRIs
Key Skills and Experience:
* At least 5 years in Application Security or DevSecOps, with a strong background in secure SDLC and CI/CD processes
* Hands-on experience with security tools such as GitHub Advanced Security, Veracode, Snyk, ZAP, Burp Suite
* Knowledge of OWASP, MITRE, CWE frameworks, and modern development frameworks (C#, Java, Python, React)
* Proficiency with scripting languages like Python, Ruby, or Rust
* Excellent communication skills to liaise effectively with technical and non-technical stakeholders
* A passion for creating scalable security solutions that empower teams without hindering productivity
#J-18808-Ljbffr