Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead application security initiatives and implement robust security measures across platforms.
- Company: Join Marks & Spencer, a pioneering retail leader transforming the industry for a digital future.
- Benefits: Enjoy a dynamic work environment with opportunities for growth and collaboration.
- Why this job: Be part of a mission to enhance security and make a real impact in the digital landscape.
- Qualifications: 3+ years in application security with expertise in key tools and strong analytical skills.
- Other info: We value inclusivity and support during the recruitment process for all candidates.
The predicted salary is between 43200 - 72000 £ per year.
The Specialist Application Security Engineer will play a pivotal role in ensuring the integrity and security of our applications across various platforms. You will lead the charge in implementing robust security measures, collaborating closely with cross-functional teams to fortify our defences against cyber threats.
What you'll do:
- Focused on application security initiatives across cloud and on-premises environments, employing a diverse suite of tools including Semgrep for SAST, Snyk for SCA, GHAS for secret scanning, Burp Suite for DAST, and scripting for automation.
- Forge partnerships with external vendors to optimize and seamlessly integrate security tools into our application security workflow, ensuring comprehensive coverage and operational efficiency.
- Drive the seamless integration of application security processes into development pipelines, leveraging Azure DevOps (ADO), GitHub Actions, and similar tools for streamlined automation.
- Actively contribute to the formulation and enforcement of application security policies and procedures, utilizing advanced tool capabilities to mitigate risks effectively.
- Engage with internal stakeholders to foster awareness and understanding of application security measures, emphasizing the pivotal role of tooling and automation in mitigating vulnerabilities.
Who you are:
- A minimum of 3 years of hands-on experience in application security, with a track record of leadership or significant contributions in similar roles.
- Proficiency in Semgrep for SAST, Snyk for SCA, GHAS for secret scanning, Burp Suite for DAST, and automation scripting.
- Understanding of application security principles and best practices.
- Experience integrating and optimizing security tools within development workflows, particularly within Azure DevOps and GitHub Actions environments.
- Strong analytical and problem-solving skills.
- Excellent communication and collaboration abilities.
- Ability to work independently and within teams in a dynamic environment.
Marks & Spencer strives to be an inclusive organisation, trusted and admired by our colleagues, customers and suppliers. Join us and make change happen.
Specialist Security Platform Engineer employer: ENGINEERINGUK
Contact Detail:
ENGINEERINGUK Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Specialist Security Platform Engineer
✨Tip Number 1
Familiarise yourself with the specific tools mentioned in the job description, such as Semgrep, Snyk, and Burp Suite. Having hands-on experience or even personal projects showcasing your skills with these tools can set you apart from other candidates.
✨Tip Number 2
Network with professionals in the application security field, especially those who have experience with Azure DevOps and GitHub Actions. Engaging in relevant online communities or attending industry events can help you gain insights and potentially get referrals.
✨Tip Number 3
Prepare to discuss your previous experiences in integrating security measures into development workflows. Be ready to share specific examples of how you've improved security processes in past roles, as this will demonstrate your practical knowledge and leadership capabilities.
✨Tip Number 4
Showcase your communication and collaboration skills during any interviews or discussions. Since the role involves working closely with cross-functional teams, being able to articulate your thoughts clearly and work well with others is crucial.
We think you need these skills to ace Specialist Security Platform Engineer
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights your experience in application security, particularly with tools like Semgrep, Snyk, and Burp Suite. Use specific examples to demonstrate your hands-on experience and leadership in similar roles.
Craft a Compelling Cover Letter: In your cover letter, express your passion for application security and how your skills align with the company's goals. Mention your experience with integrating security tools into development workflows and your ability to collaborate with cross-functional teams.
Showcase Relevant Projects: If you have worked on specific projects that involved application security initiatives, be sure to include these in your application. Detail your role, the tools used, and the outcomes achieved to illustrate your capabilities.
Highlight Soft Skills: Don't forget to mention your strong analytical, problem-solving, and communication skills. These are crucial for the role and will help demonstrate your ability to work effectively both independently and within teams.
How to prepare for a job interview at ENGINEERINGUK
✨Showcase Your Technical Skills
Be prepared to discuss your hands-on experience with tools like Semgrep, Snyk, and Burp Suite. Highlight specific projects where you implemented these tools to enhance application security.
✨Demonstrate Collaboration Experience
Since the role involves working closely with cross-functional teams, share examples of how you've successfully collaborated with others in previous roles. Emphasise your communication skills and ability to foster partnerships.
✨Understand the Company’s Security Culture
Research Marks & Spencer's approach to application security and their values. Be ready to discuss how your personal values align with theirs and how you can contribute to their mission of innovation and inclusivity.
✨Prepare for Scenario-Based Questions
Expect questions that assess your problem-solving abilities in real-world scenarios. Think of situations where you had to mitigate risks or integrate security processes into development workflows, and be ready to explain your thought process.
